Mail and SMTP auth (RFC 1918 error) ?

Similar Messages

• Mail and SMTP server settings of ASA Certificate Authority for cisco anyconnect VPN

                     Dear All,
  i have the folloing case :
  i am using ASA as Certificate authority for cisco anyconnect VPN users,the authentication happens based on the local database of the ASA,
  i want to issue a new certificate every 72 hours for the users ,and i want to send the one time password via email to each user.
  so what the setting of the mail and smtp server should be ,
  was i understand i should put my smtp server ip address then i have to create the local users again under(Remte VPN VPN--Certificate management--Local certificate authority --Manage user Database) along with their email addresses to send the one time passsword to them via their emails.
  i sent the email manually ,hwo can automate sending the OTP to our VPN users automatically vi their emails?
  Best regards,

  Thanks Jennifer.
  I did manage to configure LDAP attribute map to the specific group policy.
  Nevertheless, I was thinking whether I can have fixed IP address tied to individual user.
  Using legacy Cisco VPN Client, I can do it using IPSEC(IKEv1) Connection profile, where I set Pre-Shared Key and Client Address Pools. Each Client Address Pools has only 1 fix IP address.
  Example: let say my username is LLH.
  Connection Profile for me is : LLH-Connection-Profile, my profile is protected by preshared key.
  Client Address Pool for me is : LLH-pool, and the IP is 172.16.1.11
  Only me know the preshared key and only me can login with my Connection Profile.
  Using AnyConnect, I have problem. User can use any connection profile because I cannot set preshared key for AnyConnect. In that case, I cannot control who can use my Connection Profile and pretend to be me.
  Example:
  AnyConnect Connection Profile for me is : LLH-Connection-Profile, without any password
  Client Address Pool for me is : LLH-pool, IP is 172.16.1.11
  Any body can use LLH-Connection-Profile, login with another user name, let say user-abc which is a valid user in LDAP server. In that case, ASA assign 172.16.1.11 to user-abc and this user-abc can access server which only allow my IP to access.
  I hope above description can paint the scenario clearer.
  Thanks in advance for all the help and comment given.

• OS X's Mail app and SMTP auth

  We're having a problem with OS X's Mail app connecting to Tiger Server's mail server. We have the server set up to not always require SMTP auth (all SMTP auth settings unchecked in Settings > Advanced > Security), and to allow relay from only a given set of networks (Settings > Relay). In theory, this means that if you're on one of the specified networks, you're not required to authenticate, otherwise you are. This according to Apple's documentation.
  From a bit of packet sniffing, it looks like:
  1. If a user on an allowed network tries to send mail through the server, the server does not return authorization as an option.
  2. If the user has password authentication specified in Mail's SMTP Server settings, it refuses to send. If they set SMTP auth to None, the Mail app will send.
  IOW, Mail doesn't send if Authorization is enabled in the Mail app, but not given as an option by the mail server. Has anyone else seen this? Is this a bug in Mail or Postfix?

  If you have networks entered in
  'Accept SMTP relay only from these hosts and
  networks'
  Clients on these networks don't need to authenticate
  for local delivery or relay.
  So it does what you are looking for.
  Jeff
  Well, goddarn it - so it does!
  I was testing various permutation (10.3.4) just recently and it just wouldn't relay without auth if any of them was selected (honest!). That was with the trusted relay....
  ...but I just tried it again and it's fine!
  I had put it down to just another 'glitch' in the documentation.
  Oh well - glad you were there to point it out Jeff!
  Whilst we are on the subject - do you know of any way to tie authentication (outwith trusted network) to specified users? I was thinking there might be a Postfix parameter for this (sorry, I should just look them all up but maybe someone knows it already)?
  Thank, and sorry for any earlier confusion!
  -david.

• Eem on cisco 877, trouble with mail server action and smtp auth

  hello all,
  i'm using a router 877 at home and i really need to check out what this router do during the day.
  So some time ago i configured it using some eem actions and sending to me email, without any problems.
  Yesterday I changed my internet provider and now i need to use smtp autheticantion to send emails.
  I read about how to authenticate, like username:password@host and also made a fast search here, without solve my problem.
  I need to put as username the email of the provider like: [email protected]:[email protected]
  So, i want to know if someone had the same problem and solved it. Of course i couldn't use @ two times or eem would think that host.com is my smtp server! And right now is going in this way!
  My IOS version is 15.1(2)T2, eem version is 3.1.
  Hope someone could help me!
  Thank you in advance.
  Sandro

  Hello,
  Thank you very much in advance for any help you can offer. Debugging I get this but stunnel.conf is edited and started
  %HA_EM-3-FMPD_SMTP: Error occured when sending mail to SMTP server: smtp.gmail.com : error in reply from SMTP server
  Router Cisco 877 with IOS version is 12.4(15)T16
  Router Config:
  ip host gmail.com pc_host*
  track 1 rtr 1 reachability
  delay down 10 up 60
  ip route 0.0.0.0 0.0.0.0 Dialer0 track 1
  ip sla 1
  icmp-echo 8.8.8.8 source-interface Dialer0
  timeout 2000
  frequency 4
  ip sla schedule 1 life forever start-time now
  event manager environment to@gmail
  event manager environment [email protected]
  event manager environment smtp.gmail.com*
  event manager applet TRACK-1-OK
  event track 1 state up
  action 1.0 mail server "smtp.gmail.com" to "[email protected]" from "[email protected]" subject "E2E up/down" body "DSL is UP"*
  * I use several possible key combinations:
  ip host smtp.gmail.com pc_host
  event manager environment [email protected]:[email protected]
  action 1.0 mail server "[email protected]:[email protected]" to "[email protected]" from "[email protected]" subject "E2E up/down" body "DSL is UP"*
  stunnel.conf config:
  cert = stunnel.pem
  socket = l:TCP_NODELAY=1
  socket = r:TCP_NODELAY=1
  client = yes
  options = NO_SSLv2
  [pop3s]
  accept  = 110
  connect = pop.gmail.com:995
  [imaps]
  accept  = 143
  connect = pop.gmail.com:993
  [ssmtp]
  accept  = 25
  connect = smtp.gmail.com:465
  Greetings,
  Guiller

• Pop before smtp and smtp auth

  Hi Jay,
  hope all is well with you.
  what is pop before smtp and how to see if it is enabled?
  what is smtp auth and how to see if it is enabled? Is it enabled by default on MS 6.x?
  what happens if smtp auth is not enabled? Will my mail server be a relay?
  Is there any additional configuration that should be done on messaging server to allow connection for dial-up users?
  thanks,

  Hi Jay,
  hope all is well with you.
  what is pop before smtp and how to see if it is
  enabled?Pop before SMTP is a very old, and little used method for "authenticating" users. There is virtually no reason to turn this on, anymore.
  It's done through the MMP, and is the only reason to actually use the SMTP proxy that's part of MMP.
  I would not go there unless your environment requires it. Most do not. Most clients support SMTP authentication, which is much better, and is on by default.
  >
  what is smtp auth and how to see if it is enabled? Is
  it enabled by default on MS 6.x?See above. Yes, smtp authentication is on by default.
  >
  what happens if smtp auth is not enabled? Will my
  mail server be a relay?Totally different issue.
  No.
  If smtp auth is off, if you have external users, they likely will not be allowed to send to other external users..
  >
  Is there any additional configuration that should be
  done on messaging server to allow connection for
  dial-up users?If "dial-up users" means that they come from ip addresses outside your network, then smtp auth will allow them full access.
  thanks,

• Issues with Mail and SMTP and Gmail Accounts

  So this isn't a question....more like a solution that I had to figure out. 
  We have multiple gmail accounts in our family and after upgrading to OSC Yosemite our gmail accounts wen't haywire.  My wife was sending emails that eventually were sent from my gmail account (mass neighborhood emails at that.....and all replies came to me instead of her).  I spent about 2 hours investigating and put together several different threads that finally fixed out problem.  The root of the issue is that you can share the same Incoming Mail Server for all of your gmail accounts and your mail will go to the accounts that it is supposed to go to, but you have to have individual Outgoing Mail Servers for each of your accounts otherwise all outgoing mail will come from one account only.  I don't know why this happened, it is a pain in the butt, but here's how I fixed it with 3 gmail accounts running through 1 mac.    
  1st - you need to remove all of your gmail accounts from mail via Internet Accounts in Settings. Just highlight the account and hit the minus sign at the bottom.  You won't lose anything if you have your gmail settings set to default which backs everything up to Google's servers....it will all load back to you mac and it will all be available online at gmail.com
  2nd - you need to add back all of your accounts one at a time (and follow all of the following steps for each account before adding another).  Select the plus sign and choose Google (for gmail accounts only). 
  3rd - Give your gmail account a recognizable name in the "Name" field (if you have multiple Gmail accounts to add, you will want to distinguish between them).
  4th - type in your username ([email protected]) and password.  Make sure to add the suffix @gmail.com. 
  5th - Check the boxes that you want to add to your mac (mail, contacts, calendars, messages, notes). 
  6th - Click the "Details" button to ensure that you have an adequate description (see # 3 above) if you are going to have multiple gmail accounts to add. 
  7th - Open the Mail app.
  8th - From Mail Preferences/Account Information Tab - make sure that you account is Enabled (check box next to "Enable Account", make sure that you have an adequate description name, email address is correct, Incoming mail server is imap.gmail.com, Username is your normal gmail login username (absent any suffix like .gmail.com), password is your gmail password. 
  9th - Then, from Preferences click on the Advanced tab and....Uncheck "Automatically detect and maintain account settings".
  10th - Then, go back to Account Information Tab and.....from the Outgoing Mail Server (SMTP) dropdown box, select Edit SMTP List....
  11th -  You need to create an individual SMTP Server Account for each gmail account that you plan to add.
  12th - To do this click the plus button.  Server Name should always be smtp.gmail.com.  Type in your own Description (I recommend naming it after the gmail account that you plan to attach it to). 
  13th - TLS Certificate should be "None"
  14th - Click the Advanced Tab - From here, uncheck the box for "Automatically detect and maintain account settings".  Then make sure Port is 587 (default is 25 for some ungodly reason).  Check the box for "Use SSL".
  15th - Set authentication to "Password".  User name MUST contain a suffice (i.e [email protected]).  Password is your normal gmail password. 
  16th - Click OK. 
  17th - Now your back at Preferences/Account Information - Link your account to the SMTP server that you just created by using the dropdown box next to Outgoing Mail Server (SMTP). 
  18th - Save all changes and close out of Mail App. 
  19th - Restart Mail and recheck steps 8-15....for some reason my passwords kept getting erased, but they eventually saved and took. 
  20th - Add another gmail account by following these steps and then recheck all along the way for passwords, suffixes, everything.  You will want to make sure that your accounts are all properly linked to their respective Outgoing Mail Servers (hence the distinct naming descriptions).   
  21st - Once you have added multiple accounts send email between them to make sure that they are being sent from and received to the correct accounts. 

  Wow! Oh my goodness Patrick, thank you so much man. That's a ton of informatiion to take the time to write out step by step and share with strangers.  I really, really am grateful to you.  I've been dealing with this for a month, half the month I kept changing my passwords and kept assuming I was making some mistake.  It used to work fine.  About a week ago I started looking for a solution and couldn't find one that worked. 
  You have changed that sir!  I'm good to go, stress level will lower when I am on my Mac, and I'm so glad to not have all these messages popping back up that I was done with! 
  Muchos Gracias Amigo!  Owe you one...

• GSS4480 and CSS using RFC 1918 addressing

  We are in the process of testing out a load balancing/redundancy setup using the GSS4480 and a CSS11506. Right now the CSS is setup with RFC 1918 addressing and we NAT out to the internet using a Checkpoint firewall. If I setup my VIP answer file to poll the 1918 address of the CSS, then that will be the answer that is given out when a client requests a name lookup which won't work. There has to be a way to configure this or then all diagrams I have seen are using internet routable name spaces. Looking at the docs and playing with the GUI I don't see any way of configuring it to use RFC 1918 addressing behind the firewall and still give out internet routable domain names. The docs show's the GSS and CSS being behind firewalls. I guess I am just missing something. Can the CSS be configured to link the RFC1918 address to a public address for KAP-AP purposes? Also is there any issues with NATing to RFC 1918 addresses for the health probes to other GSS's. We would like the health probes to go out over the internet not over our back end. Thanks

  our issue really isn't the DNS request as more it is the APP session between the GSS and CSS. We have 2 GSS devices that will be located at different data centers. Going by how the GSS docs say they work, the primary GSS synchronizes its database to the secondary when it comes online. With this the case we can't give our GSS(s) 1918 addresses since they'll be in different locations the secondary won't be able to reach the 1918 address of the primary. We have not proven this, but going on what the documentation says this is how it works. Now if we can configure our GSS(s) with 1918 addresses and just NAT their connection as they go out the FW and that's how they learn of each other then that issue becomes moot.
  Going with our current problem here's the rest. Since the GSS(s) are outside the firewall they are polling CSS(s) that are located behind the firewall. All NAT is done on the FW so the CSS is completely 1918 addressed. The GSS is polling the circuit IP of the CSS which is a real address that the FW NATs to the 1918 address. The problem arises when the GSS queries the CSS the request is received, however it's for a real address and not a 1918 address.
  We thought about duplicating all the content rules with the real addresses as the VIP; this works, but since the users aren't going through those rules the GSS is never going to get anything more than 2 on the load.

• How to make email client account setup automatically select inbound mail and smtp server.

  I have the mail service successfully running on OS X Server 10.8.2.  I am able to send and receive email as well as setup email accounts on various email clients (iphone, ipad, mac, etc).  I notice that when I set up a new account that I have to specify both the inbound and smtp mail servers as well as specifying the user id for each.  I am using an SSL certificate that appears to be working.  The ports are selected (993/995 and 587) automatically and the default is to use SSL.
  However, when I set up a Comcast account - (configured as "other") - I only have to enter Full name, email address and password - and from this it is able to determine that the incoming mail server is "mail.comcast.net" and outgoing smtp server is "smtp.comcast.net".  It also fills in the userid and password for both inbound and smtp servers - as well as the ports.  I have been trying to get this to work automatically when setting up accounts for my mail server - but have not been able to figure out how to do this - or if it is possible.
  In googling - I have found that I can set up several different SRV records such as (_submission._tcp, _imap._tcp, _imaps._tcp, _pop3._tcp, _pop3s._tcp) and these are supposed to provide this functionality to email clients that are able to use the SRV records.  I have set these up externally at my registered domain provider - and I am able to query them via nslookup, dig and host.
  Is Comcast using some other special method of providing the server names to the mail client setup - or am I doing something wrong - or is this a functionality that needs to be supported on the mail server side as well.  I am relatively new to mail servers and trying to work my way through the learning process.

  Understand the functionality you are wanting, basically one can use Outlook / Exchange mail server as an example. It just happens.
  As I understand in the background the DNS _SRV records point to a machine which serves up an XML file and that is the information which tells the client how to configure itself.
  I did some research before posting my first reply and found that, in the Apple client situation, even when someone setup the the SRV records + the XML it didn't work seamlessly.
  https://discussions.apple.com/message/12949449#12949449
  Here's some other links that give some more background.
  https://groups.google.com/forum/#!msg/macenterprise/qIKUMxMae8o/iLnIkMgeOX0J
  http://www.virtuworks.com/how-to-setup-outlook-autodiscovery-for-your-domain/
  If you were going to persue it you will need to find out the format for the autodiscovery XML file. Also the XML file will have to be hosted on your server, you couldn't likely put it on the public DNS server.

• Nokia 5310 - Email client and SMTP-AUTH

  Dear Everybody,
  Afore I buy the 5310 would someone tell me whether the Email client supports,
  i) SMTP-AUTH
  ii) SMTP-AUTH over SSL
  iii) IMAP over SSL
  iv) Allows the import of Self-Signed SSL certificates.
  Regards, Neocron

  I went to the google link (thank you for posting that), but I thought it was an IMAP not POP. I don't really know the difference, but the link to get your e-mail settings said the incoming was imap.gmail.com. I'm so confused
  Laura

• Can't send email on yahoo mail, keeps switching to windows mail and smtp errors ?

  When browsing using Firefox if I try and send URL or email it automatically tries to send it on Windows Mail rather then the Yahoo mail I normally use, then windows mail can't send any email out saying smtp error. Can send yahoo mail fine ?

  http://support.mozilla.com/en-US/kb/Changing+the+e-mail+program+used+by+Firefox

• SSO between EP and ECC-- JCo RFC Provider- Error-- JCO_ERROR_SERVER_STARTUP

  Hello Everyone
  I am setting Up SSO between my EP 7.0 and my ECC 6.0 system. During the phase JCO RFC PRovider i am giving the following values:
  The following was done;
  1. start Visual Administrator -> Service : Choose JCo RFC Provider
  2. Created JCo RFC provider:
  Program ID: SAPJ2EE_Port
  Gateway host: EPDEV ( host of my EP System)
  Gateway service: sapgw00
  Server Count 5
  Application Server Host: ERP6 ( Host of my ECC System)
  System Number: 00
  Client: 000
  Language: EN
  User: SAPJSF
  Password: ..
  When i click on SET i am getting the error " ERROR When ADDING TO BUNDLE" Check LOG FOR DETAILS".
  I checked the DEFAULTTRACE.TRC and get the following MEssage :
  Date , Time , Message , Severity , Category , Location , Application , User
  03/01/2011 , 3:33:30:101 , Error changing bundle SAPJ2EE_PORT , Error , /System/Server , com.sap.engine.services.rfcengine.RFCRuntimeInterfaceImpl.addBundle(BundleConfiguration conf) ,  , Administrator
  03/01/2011 , 3:33:30:085 , com.sap.mw.jco.JCO$Exception: (129) JCO_ERROR_SERVER_STARTUP: Server startup failed at Tue Mar 01 03:33:30 PST 2011.
  This is caused by either a) erroneous server settings, b) the backend system has been shutdown, c) network problems. Will try next startup in 1 seconds.
  Could not start server: Connect to SAP gateway failed
  Connect parameters: TPNAME=SAPJ2EE_PORT GWHOST=EPDEV GWSERV=sapgw00
  ERROR       partner 'EPDEV:sapgw00' not reached
  TIME        Tue Mar 01 03:33:30 2011
  RELEASE     700
  COMPONENT   NI (network interface)
  VERSION     38
  RC          -10
  MODULE      nixxi.cpp
  LINE        2823
  DETAIL      NiPConnect2
  SYSTEM CALL connect
  ERRNO       10061
  ERRNO TEXT  WSAECONNREFUSED: Connection refused
  COUNTER     1
  I have configured my SLD as well. Any suggestions. Please Advise.

  Hi Ahmed,
  Please do check the validity of the certificate.
  Please do cross check these steps again.
  1.     Transaction u2013 STRUSTSSO2 (Trust Manager for Logon Ticket)
  2.     Double Click Owner certificate. It gets reflected under the certificate tab.
  3.                  Choose Format Binary
  4.                  Choose File Path.
  5.                  Enter the File Name
  6.                 saved in local drive.
  You can import into portal as x.509 certificate.
  check this thread -
  Certificate no longer has signature (use restriction)
  Renew certificate via SAP MarketPlace, and install from tcode slicense.  If you are working on a trial version, there is a SAP license request application form. Fill the form with the hardware key. you will get the new license via email. Install using slicense. Then try exporting the certificate.
  Thanks,
  Divya
  Edited by: Divya V on Mar 10, 2011 11:25 AM

• Mail and smtp servers

  Am I very happy to see a, for me, major update of the Mail application.
  In the Preferences, Accounts, Information about this account, it was (and is still) possible to specify the smtp server to use.
  What is new is the possibility to check or uncheck the "use only this smtp server" (I translate freely from my French system).
  Doing a simple upgrade of Tiger to Leopard, these options where checked in my case.
  As soon as I unchecked this option, each new message or reply got a new pulldown menu of all smtp server names making it specially easy when using my MacBook Pro on the go.
  This is a feature I was waiting for since the birth of Mail.

  Sorry! This should be in the Leopard forum...

• Mail and SMTP

  Does Mail handle what in a translation from Swedish would be "authentisised SMTP". This means that I will be able to receive and post mail via different broadbands, not only via my own company.

  Hi
  Yes. If I've understood you correctly? Secure POP, SMTP and are all supported. You can even use Kerberos. Provided the Mail Server is configured to accept such.
  Tony

• Apple Mail and SMTP servers

  I have several identities set up in one Gmail account that I would like to use with Yosemite Mail. I also have two SMTP servers set up for outgoing mail -- one for Gmail, one for work. Is there any way that I can change the settings so that Yosemite Mail automatically chooses the right SMTP server depending on whether I am using my work identity or my Gmail identity? Thanks!

  Hey Dan,
  You can edit and change the outgoing SMTP servers in mail. To do that take a look at the article below to walk you through changing it as well as making it to where you choose what outgoing server that you want to use when sending mail. 
  Mail (Yosemite): Verify an account’s outgoing mail server
  http://support.apple.com/kb/PH19182
  Take care,
  -Norm G.

• Mail and SMTP Not Working

  Hi,
  On my new Macbook Pro I can't get SMTP from my POP account. Incoming works fine. I tried ports 25, 0, 110, and 587. Why won't it work?

  Hi! I assume that the problem is that you can't send mail? Have you checked with your isp to make sure your settings are correct? Tom