1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

simple pop3 mail setup in server 2003

Discussion in 'Networks' started by kensaundm31, Nov 21, 2010.

  1. kensaundm31

    kensaundm31 Bit Poster

    35
    0
    2
    Hi,

    I know the post directly below this is asking the same question but the poster has left the building, so:

    sending mail seems to work i guess simply by my isp. But about receiving mail?

    I rented a domain name, and I have installed pop 3 service on my dc

    I already setup the mail port forwarding 25/110 ok but I dont really understand how exactly to edit mail mx records

    What do i need to change on the dns manager of the domain name I rented. i added my ip but do i delete the other one?:

    the @ for MX on here just says 'mail' Huh?

    [​IMG]

    none of the cbt videos even mention pop3 setup!
     
  2. zebulebu

    zebulebu Terabyte Poster

    3,748
    330
    187
    That's because no-one in their right mind uses it!
     
    Certifications: A few
    WIP: None - f*** 'em
  3. GSteer

    GSteer Megabyte Poster

    627
    31
    109
    From what I can see there you've got a couple of issues

    Firstly to clarify your last question: the mx record that says "mail" points at the mail. A record, this allows you to configure one A record for your public IP and then redirect other records to it. Ie you could have

    mail | A | PublicIP
    remote | A | mail
    rdp | A | mail

    and all three records would point at the PublicIP listed against the mail A record.

    1) You've got two mail.kshomelab.co.uk records which will conflict, one to their IP and one to yours, keep the naming unique, rename yours to mail2 or something similar. A common practise is to use mx0. mx1. etc for the MX records and mail0, mail1 etc for the actual mail A IP records.

    2) The lowest MX record takes priority, at the moment this is mx.kshomelab.co.uk (from the @ mx record 5), which means all mail will pump through to their servers, your other entry of (MX record 10) will only be used if the other one is not available.

    3) It looks like you're trying to configure mail to flow directly (SMTP on port 25) through to your public IP, this is not going to allow POP pickup from your domain host, this will direct all SMTP traffic to your IP, meaning you're going to need an Exchange box (or alternative) sitting on your side of your firewall waiting to accept SMTP traffic. Once your server has this mail in it's store then you could configure the Exchange POP3 services to serve clients if this is the setup you are after.

    4) If what you are trying to configure is pop pickup from your domain hosts servers then strip out that second MX record you've entered and configure a pop collector at your end (not advised and you'll rarely see this in the field) Slipstick has tools / info here: http://www.slipstick.com/exs/popconnect.asp

    Just to clarify your last question: the mx record that says "mail" points at the mail. A record, this allows you to configure one A record for your public IP and then redirect other records to it. Ie you could have

    mail | A | PublicIP
    remote | A | mail
    rdp | A | mail

    and all three records would point at the PublicIP listed against the mail A record.
     
    Last edited: Nov 21, 2010
    Certifications: BSc. (Comp. Sci.), MBCS, MCP [70-290], Specialist [74-324], Security+, Network+, A+, Tea Lord: Beverage Brewmaster | Courses: LFS101x Introduction to Linux (edX)
    WIP: CCNA Routing & Switching
  4. kensaundm31

    kensaundm31 Bit Poster

    35
    0
    2
    ok thats some good info gsteer, thanks. It helpded me undrstand it better.

    I have a copy of exchange 2003 i can use, but I wanted to work through the pop3/smtp basic method first.

    I read that it is best practice to have a hidden machine on the dmz to receive mail:

    "E-mail servers
    Because of the confidential nature of e-mail, storing it in the DMZ is a poor idea, and it is also a poor idea to store the user database there. Instead, e-mail should be stored on an internal e-mail server placed in a hidden area inside the DMZ (an area that cannot be accessed from the internet, but can be accessed from the e-mail server). Some people place the internal e-mail server in a LAN area, which is not good practice, because it does not allow for the best performance. Also it can be a security problem, because although this configuration provides security from external attacks, it does not protect from internal attacks (for example communication could be sniffed or spoofed).

    The mail server inside the DMZ should pass incoming mail to the secured/internal mail servers and this mail server should pass outgoing mail to the external mail servers."


    I actually have a dmz and am forwarding ports through a physical router and a rras lan router/firewall. I have a working websrvr on the dmz

    At the moment I just want point everything at the dc on the private lan, then implement the dmz store later after I understand the basics.

    The other thing that is confusing me is the dns suffixes. So sent a mail from my dc account to my isp email, but if i send one back to kensoft.local (dnsname of private domain) I dont see how anything can know where that is?

    So i guess I have to use the homelab.co.uk suffix. So should i rename the pop3 server to the homelab.co.uk for asthetics sake?
     
  5. GSteer

    GSteer Megabyte Poster

    627
    31
    109
    Your Exchange server should be configured to handle the homelab.co.uk domain, if your internal domain is .local then your Default Policies in the Exchange server should be set to configure each user with a set of SMTP address in their "Email Addresses" tab under the AD user object, you should see a list such as

    SMTP:userX@domain.local
    SMTP:userX@homelab.co.uk
    X400:loadofstuffherethatcangenerallybeignored

    If you're configuring Exchange then I'm going to presume you're using Outlook as the client, at this point you'd configure them for Exchange Server account not a POP account. When you send email the client sends it to the Exchange server, which will do a local AD lookup to see if it needs to route the email to a local user or route it outbound to great outside (note there is a seperate configuration you need to add if there are any users outside of the local domain with @homelab.co.uk email addresses but that's another topic).
     
    Certifications: BSc. (Comp. Sci.), MBCS, MCP [70-290], Specialist [74-324], Security+, Network+, A+, Tea Lord: Beverage Brewmaster | Courses: LFS101x Introduction to Linux (edX)
    WIP: CCNA Routing & Switching
  6. kensaundm31

    kensaundm31 Bit Poster

    35
    0
    2
    ok. Thanks for the help.
     
  7. GSteer

    GSteer Megabyte Poster

    627
    31
    109
    Np, let us know how it goes.
     
    Certifications: BSc. (Comp. Sci.), MBCS, MCP [70-290], Specialist [74-324], Security+, Network+, A+, Tea Lord: Beverage Brewmaster | Courses: LFS101x Introduction to Linux (edX)
    WIP: CCNA Routing & Switching
  8. kensaundm31

    kensaundm31 Bit Poster

    35
    0
    2
    I'm still trying to be able to receive mail to the domain.

    But i get this error:

    Delivery to the following recipient failed permanently:

    ksaunders@kshomelab.co.uk

    Technical details of permanent failure:
    Google tried to deliver your message, but it was rejected by the recipient domain. We recommend contacting the other email provider for further information about the cause of this error. The error that the other server returned was: 550 550 5.7.1 <ksaunders@kshomelab.co.uk>... Relaying denied (state 14).

    ----- Original message -----

    MIME-Version: 1.0
    Received: by 10.231.12.8 with SMTP id v8mr7147077ibv.96.1290447690193; Mon, 22
    Nov 2010 09:41:30 -0800 (PST)
    Received: by 10.231.14.204 with HTTP; Mon, 22 Nov 2010 09:41:30 -0800 (PST)
    X-Originating-IP: [my actual ip]
    Date: Mon, 22 Nov 2010 17:41:30 +0000
    Message-ID: <AANLkTimoXDfGeYh-Fw=akqTCMtBNWh=eqDQ4td-0ovg+@mail.gmail.com>
    Subject: e
    From: Kenny Saunders <kenny.saunders@virginmedia.com>
    To: Kenny Saunders <ksaunders@kshomelab.co.uk>
    Content-Type: multipart/alternative; boundary=0022152d7f8d2cdc0d0495a7c437


    You can see my ip so the forwarding from my rented domain has propagated.

    When i installed pop3 it asked me for the domain name I put kshomelab.co.uk. But the actual domain name of my private domain is kensoft.local. Is that a problem?

    ksaunders is the activedirectory username and when i created the mailbox i did not tick 'create associated user'.



    Here is a pic of the details:

    [​IMG]
     
  9. kensaundm31

    kensaundm31 Bit Poster

    35
    0
    2
    Oh, er... its working now.

    I forgot to turn on the dc firewall.:oops:

    cool: i got mail! :biggrin

    Cheers.
     

Share This Page

Loading...