Postfix smtpd_banner

Discussion in 'Server Operation' started by lehadi, May 9, 2006.

  1. lehadi

    lehadi New Member

    Hi,
    I have a probleme with my POSTFIX server installed in Redhat Entrprise Linux 3.
    The Postfix server is in DMZ protected by a PIX515E. It is NATed from private IP adress to a public IP adresse by the PIX. The recpetion and send a message is working. But, the probleme is the greeting message of POSTFIX. When I do a test from the LAN (Inside) with TELNET in port 25, the greeting message configured in postfix whith de smtpd_banner parametre in chown correctely :
    220 - myserver.com ESMTP Postfix

    When I do a test from Internet the greetin message is :
    220 - *********************

    ????

    Thanks,
    lehadi.
     
    lehadi, May 9, 2006
    #1
  2. falko

    falko Super Moderator Howtoforge Staff

    Do you forward port 25 from your router to the correct mail server? Maybe another mail server from your LAN is answering when you try to connect from the internet.
     
    falko, May 9, 2006
    #2
  3. lehadi

    lehadi New Member

    Send and recpetion of mail is working

    Hello falko,
    the send and recpetion of mail is working, my probleme is just de greeting message. In the PIX, I permit connexion from internet to my SMTP server and my SMTP server go to Internet to send message.

    thanks
     
    lehadi, May 9, 2006
    #3
  4. falko

    falko Super Moderator Howtoforge Staff

    Yes, but did you forward port 25 from your router to the correct mail server?
     
    falko, May 9, 2006
    #4
  5. lehadi

    lehadi New Member

    Permission ACCESS-LIST

    Hello,
    the command ACCESS-LIST in the CISCO-PIX515E allow (permit) a connexion from Internet to my mailserver. I receive mail from internet (yahoo, gmail,etc) and I can send e-mail to Internet. So the transmission of email throw the SMTP port is correct.

    Thanks,
    lehadi
     
    lehadi, May 14, 2006
    #5
  6. falko

    falko Super Moderator Howtoforge Staff

    And you are absolutely sure you forward port 25 to the correct mail server in your LAN? How many mail servers do you have in your LAN?
    What's in /etc/postfix/main.cf?
    Can you tell me your real domain?
     
    falko, May 14, 2006
    #6
  7. lehadi

    lehadi New Member

    Solved !

    Hi!

    The probleme was in the PIX515E. The PIX are doing a filtring in th application level. (The command wich cause the probleme is: fixup protocol smtp 25). So, certainly it bloque the HELO message of SMTP protocol.

    Tanks!
     
    lehadi, May 15, 2006
    #7
  8. lehadi

    lehadi New Member

    Some lines CISCO-PIX manual

    Hi!

    Some lines from CISCO-PIX515E wich explain the fixup command :
    " ....
    The fixup protocol smtp command enables the Mail Guard feature. This restricts mail servers to receiving the seven minimal commands defined in RFC 821, section 4.5.1 (HELO, MAIL, RCPT, DATA, RSET, NOOP, and QUIT). All other commands are rejected.
    As of version 5.1 and higher, the fixup protocol smtp command changes the characters in the server SMTP banner to asterisks except for the "2", "0", "0" characters.
    ....."
    Thanks,
    lehadi
     
    lehadi, May 15, 2006
    #8

Share This Page