Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 6 replies
  • Subscribers 3 subscribers
  • Views 13226 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

"Relay Access Denied" for all inbound email

SalishSwede

I recently was having trouble with my UTM and reinstalled it.

I've restored the configuration from the old device and am seeing all my mail blocked with the error: Relay access denied.

 

This is strange.  I can't figure out what the cause is.  the SMTP logs are mostly empty.  The firewall logs show the acceptance of the inbound smtp connections on port 52525 and I have a NAT rule that redirects these connections to port 25, but I can find no other evidence of the traffic.  It appears to vanish.

 

The senders get the bounce with the "Relay access denied" message.

 

Can anyone help with this puzzle?

 

Thanks

~Doug



This thread was automatically locked due to age.
Parents
  • 0 in reply to SalishSwede

    A manual telnet session shows something about the nature of the problem.
    doug@DeskMint ~ $ telnet delivery2.ore.mailhop.org 25
    Trying 54.186.60.165...
    Connected to delivery2.ore.mailhop.org.
    Escape character is '^]'.
    220 my.utm.address ESMTP ready.
    EHLO my.mailserver.com
    250-wahine.ravennasprings.com Hello myworkstationaddress.mydomain.com [10.1.2.3]
    250-SIZE 524288000
    250-8BITMIME
    250-PIPELINING
    250-AUTH PLAIN LOGIN
    250-STARTTLS
    250 HELP
    MAIL FROM: my.remote.email_address@gmail.com
    250 OK
    RCPT TO:my_local_email_address@my_domain.com
    250 Accepted
    Data
    354 Enter message, ending with "." on a line by itself
    Hello, this is a message from a telnet session.
    This should work ok and it appears to be working.
    I wonder just what the problem is.
    If this all works, email in general should be working.
    I'm puzzled.
    .
    451 Temporary local problem, please try again!

Reply
  • 0 in reply to SalishSwede

    A manual telnet session shows something about the nature of the problem.
    doug@DeskMint ~ $ telnet delivery2.ore.mailhop.org 25
    Trying 54.186.60.165...
    Connected to delivery2.ore.mailhop.org.
    Escape character is '^]'.
    220 my.utm.address ESMTP ready.
    EHLO my.mailserver.com
    250-wahine.ravennasprings.com Hello myworkstationaddress.mydomain.com [10.1.2.3]
    250-SIZE 524288000
    250-8BITMIME
    250-PIPELINING
    250-AUTH PLAIN LOGIN
    250-STARTTLS
    250 HELP
    MAIL FROM: my.remote.email_address@gmail.com
    250 OK
    RCPT TO:my_local_email_address@my_domain.com
    250 Accepted
    Data
    354 Enter message, ending with "." on a line by itself
    Hello, this is a message from a telnet session.
    This should work ok and it appears to be working.
    I wonder just what the problem is.
    If this all works, email in general should be working.
    I'm puzzled.
    .
    451 Temporary local problem, please try again!

Children
  • 0 in reply to SalishSwede

    This is strange.  I can't figure out what the cause is.  the SMTP logs are mostly empty.  The firewall logs show the acceptance of the inbound smtp connections on port 52525 and I have a NAT rule that redirects these connections to port 25, but I can find no other evidence of the traffic.  It appears to vanish.

     

    Firstly remove your nat and firewall rules. You do not need them if you have the smtp proxy enabled.
    Then ensure that you have the accepted domains filled in and the internal mail server listed in the smtp proxy settings.

  • 0 in reply to Louis-M

    On accepted domains do not use wildcards!

    So if your domain is mycompany.com just put mycompany.com and NOT *.mycompany.com

  • 0 in reply to SalishSwede

    I deleted my suggestion above to simply disable greylisting.  I didn't see that the code was 451, so it could be other things, too.  Check that your IP isn't on a blacklist.

    Cheers - Bob

     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
Unfiltered HTML