Unable to send and or receive email through TMG 2010 into an Exchange 2003 FBA
Facts:
Exchange 2003 Mailbox server on Windows 2003 RII
Exchange 2003 FBA- on Windows 2003 RII -- gateway is TMG's internal leg 192.168.1.2
TMG 2010 on windows 2008 RII: two legs - one on same lan with Exchange servers: 192.168.1.2 and external leg 172.16.1.3 NATed to an external facing firewall to a public IP.
Issue:
AM able to Telnet from TMG into the internet smtp servers on port 25
Am able to telnet from TMG into the exchange FBA's IP and on port 25
CANNOT: Telnet from TMG on it's own external leg 172.16.1.3 25 neither can i reach the public ip from the internet
CANNOT: Telnet from the FBA to TMG's external IP on port 25
logs on TMG: while attemting to telnet TMG from the internet
Failed Connection Attempt
TMG Box 4/18/2011 2:02:00 PM
Log type:
Firewall service
Status: No connection could be made because the target machine actively refused it.
Rule: [System] Allow SMTP traffic to the local host for mail protection and filtering
Source:
External (41.x.x.x:39504)
Destination:
Local Host (172.16.1.3:25)
Protocol: SMTP
logs of TMG: from the FBA
Initiated Connection
TMG 4/18/2011 5:56:34 PM
Log type:
Firewall service
Status: The operation completed successfully.
Rule: [System] Allow SMTP traffic to the local host for mail protection and filtering
Source:
Internal (192.168.1.7:1802)
Destination:
Local Host (172.16.1.3:25)
Protocol: SMTP
Then:
<object id="{AA54A692-5AC6-4FCA-8DA1-18F1C67B75AC}" classid="CLSID:7B800019-6212-41DC-B208-520B501FBFB2" width="100%" height="100%" testkey="ISA_LIST_CONTROL_{41601c15-d9f2-4e54-9156-1f595d751fca}"
data="data:application/x-oleobject;base64,GQCAexJi3EGyCFILUB+/sgEDAABdWwAATAwAAA==" name="IsaListView"> </object>
<object id="{FBDEC32D-461A-4575-9784-076F3C68EFD9}" style="display: block;" classid="CLSID:7B800019-6212-41DC-B208-520B501FBFB2" width="100%" height="100%" testkey="ISA_LIST_CONTROL_{8739D9AE-A25E-4210-951E-16CD61B9057B}"
data="data:application/x-oleobject;base64,GQCAexJi3EGyCFILUB+/sgEDAADhWwAAWxcAAA==" name="IsaListView"> </object>
Closed Connection
TMG 4/18/2011 5:56:34 PM
Log type:
Firewall service
Status: A connection was abortively closed after one of the peers sent an RST packet.
Rule: [System] Allow SMTP traffic to the local host for mail protection and filtering
Source:
Internal (192.168.1.7:1802)
Destination:
Local Host (172.16.1.3:25)
Protocol: SMTP
Firewall policies done:
Outbound Rule: All smtp from FBA to external & Local host all users
Inbound Rule: allow smtp server from External to FBA
NO email policy/smtp routes configured for am not inteding to use any edge functionality on the TMG
i want to simply publish my FBA to send and receive email please.
NguriJN
April 18th, 2011 10:46am
Hi NguriJN,
Please confirm that the port for smtp is opened.
Per the information you referred, it seems there is not proper configuration on the TMG server.
Some information for you:
http://www.isaserver.org/articles/2004unihomedowapart1.html
It related with ISA, but also meet on TMG.
If you still have some issue, please feel free let use known.
Regards!
Gavin
TechNet Subscriber Supportin
forum
If you have any feedback on our support, please contact
tngfb@microsoft.com
Please remember to click Mark as Answer on the post that helps you, and to click Unmark as Answer if a marked post does not actually answer your question. This can be beneficial to other community members reading the thread.
Free Windows Admin Tool Kit Click here and download it now
April 19th, 2011 6:19am
Hi NguriJN,
Please confirm that the port for smtp is opened.
Per the information you referred, it seems there is not proper configuration on the TMG server.
Some information for you:
http://www.isaserver.org/articles/2004unihomedowapart1.html
It related with ISA, but also meet on TMG.
If you still have some issue, please feel free let us known.
Regards!
Gavin
TechNet Subscriber Supportin
forum
If you have any feedback on our support, please contact
tngfb@microsoft.com
Please remember to click “Mark as Answer” on the post that helps you, and to click “Unmark as Answer” if a marked post does not actually answer your question. This can be beneficial to other community members reading the thread.
April 19th, 2011 1:18pm
Hallo Gavin:
Am sorry i tool long -- a situation-personal came up and had to temporally leave office to handle.
am back and this is the update:
1. Thanks for your leading to this suggested document -- it made me think though it did/does not apply directly to my situation-- since my TMG is two legged and using the template of backend firewall -- two legs - one internal to lan and the othe external
and NATed to the front end firewall (cisco) that is then internet facing.
I had to create two rules/firewall rules:
1. SMTP protocal from the "external" to Internal -- TMG
2. SMTP protocal from "anywhere" to the FBA
these two got me to
a) able to telnet TMG's external leg from FBA on port 25 --thus mails began flowing out/ outbound
b) telnet public IP natted to TMG's external leg and thus mails began flowing in/ inbound
I really am glad!! For some strange reason -- there's NO MUCH documentation even on the MSFT site as well as ISA.org relating to TMG's publishing of exchange 2003 and even docs relating to exchange 2010/ 07 are scanty -- one is left really doing trial and
error.
With that behind me am now faced with OWA issues -- i have followed to the letter the document
http://blog.meigh.eu/2010/03/15/publishing-outlook-web-access-with-microsoft-forefront-tmg.aspx
and am getting
a) log in page from the internal - lan and TMG as well but once i log in i get an IIS error "page under construction"
b) externally it's worse -- no log in page and a rude "page not found error" :-(
do you have an idea on this too?
-----
Nguri
NguriJN
Free Windows Admin Tool Kit Click here and download it now
May 4th, 2011 4:51pm
Hallo Garvin:
after enough trips onto the internet i have the inbound and outbound email via FE (ms Exchange 2003 SPII) published onto TMG 2010 sp1 roll-up update1 works now.
what is pretty funcky is that -- inbound email works ON CONDITION that it has zero attachements; for any mail with an attachment never gets delivered!
so i have been forced to revert back to an ISA 2006 publishing so as to control business downtime.
I desperately need to have this working; I really must migrate to TMG 2010 and fast -- kindly assist me!NguriJN
May 7th, 2011 11:15am