Manualshelf

Troubleshooting guide

ManualsBrandsBay Networks ManualsComputer equipmentBayRS
71727374757677787980
Chapter 7 Troubleshooting Security Servers and Content Security
Troubleshooting Common SMTP Security Server problems
Advanced Technical Reference Guide 4.1 June 2000 73
R stands for Ready file, which is a file that is ready to be sent on.
E stands for Error file, a file that cannot be sent for some reason and needs to be processed.
6. The SMTP Security Server receives a file that starts with T and turns it into an R type.
7. The dequeuer takes the R file and sends it on, or processes it into an E file.
8. The mail dequeuer opens a new connection to the final SMTP server and to the CVP server (if requested).
9. If CVP connection requested, the mail dequeuer receives the file back from the CVP server and completes
the session by sending the message to the final SMTP server.
Troubleshooting Common SMTP Security Server problems
SMTP Security Server problems may arise in three places:
1. Connection between the Email Client and the VPN-1/FireWall-1 SMTP Security Server
2. Connection between the VPN-1/FireWall-1 Mail Dequeuer and the Anti Virus Server
3. Connection between the VPN-1/FireWall-1 Mail Dequeuer and the Final Email Server
Connection between the Email Client and the Firewall SMTP Security
Server fails
To troubleshoot the connection between Email Client and the VPN-1/FireWall-1 SMTP Security Server:
1. Look in the Log Viewer to see if the email connection is accepted from the appropriate rule in the Rule
Base. Also check the 'Info' column of the Log Viewer. This is where the connection is described in more
details (see “Appendix C: Log Viewer "info" Messages,” page 189).
2. Make sure the email has completed the queuing process and has a name of T#### (where ### is the email
order number, given by VPN-1/FireWall-1) under the spool directory. This is located under the default
installation directory of:
\winnt\fw\spool for Windows NT
/etc/fw/spool for UNIX
3. If there is no file in this directory after the email has been sent by the Client, and the log file displays that
the SMTP connection has been accepted, make sure the SMTP Security Server has been configured
correctly. Validate this by running the following:
\winnt\fw\bin\fwconfig for Windows NT
/etc/fw/bin/fwconfig for UNIX
Make sure the SMTP Security Server is defined to start with the other VPN-1/FireWall-1 Security Servers.
Thiswillplacea"asmtpd" entry into the directory:
\winnt\fw\conf\fwauthd.conf for Windows NT
/etc/fw/conf/fwauthd.conf for UNIX
If this entry does not exist add the following line to the fwauthd.conf file:
25 in.asmtpd wait 0
4. Run TELNET to the Mail Server on port 25 to see if the SMTP Security Server works. Enter the command
"help" or "?" to see VPN-1/FireWall-1 SMTP Server replies.
See the SecureKnowledge Solution (ID: 10022.0.1775714.2480161) in the Check Point Technical Services site