NEWBIE:- non-NAT and smtp query?

TheMSsForum.com: The Microsoft Software Forum

Hi everyone,
Following continuous problems with the SBS POP3 connector I am upgrading my
ADSL connection to allow incoming SMTP mail and have my own mail server.
Trouble is the smtp option is non-NAT and I am unsure about how to set it
up. I just need email and Internet access for all clients. Previously I just
had one IP address as the POP3 mail connection was NAT based. I have now
been issued with four IP addresses by my ISP. I understand I need one for
the SMTP mail server, but what do I do with the other three?
Obviously without the protection of NAT I will need to use the ISA firewall
which I do anyway. My router book and ISP helpfiles are all geared towards
issuing each client with its own IP address in a standard non-sbs type
network. All my 17 clients are issued addresses by the DHCP server in the
range 10.0.0.1- upwards presumably this is unchanged. Is there a good step
by step guide to setting it up? Do I need to disable NAT in my router which
has NAT enable by default?

Many thanks, David
Top

Re: NEWBIE:- non-NAT and smtp query? by Javier

Javier
Mon Oct 06 07:04:07 CDT 2003

David,

1) You only need 1 external puiblic IP (the other 3 are not necessary... so
don't do a thing with them).
2) You *can* still use NAT in front of ISA with SMTP... just instruct your
firewall to forward port 25 to your server's external NIC (BTW-> When you
are using ISA too you are effectively using a double NAT).
3) Remember to rerun ICW to get SMTP functionality

I assume that your Router/Firewall is connected to the external NIC (and not
to the hub/switch) and that the SBS server has 2 NICs.

If you still have questions post back...

--
-Javier

<< SBS ROCKS !!! >>

"David" <david@pyecrust-nospamplease.com> wrote in message
news:blrk43$j3t$1$8302bc10@news.demon.co.uk...
> Hi everyone,
> Following continuous problems with the SBS POP3 connector I am upgrading
my
> ADSL connection to allow incoming SMTP mail and have my own mail server.
> Trouble is the smtp option is non-NAT and I am unsure about how to set it
> up. I just need email and Internet access for all clients. Previously I
just
> had one IP address as the POP3 mail connection was NAT based. I have now
> been issued with four IP addresses by my ISP. I understand I need one for
> the SMTP mail server, but what do I do with the other three?
> Obviously without the protection of NAT I will need to use the ISA
firewall
> which I do anyway. My router book and ISP helpfiles are all geared towards
> issuing each client with its own IP address in a standard non-sbs type
> network. All my 17 clients are issued addresses by the DHCP server in the
> range 10.0.0.1- upwards presumably this is unchanged. Is there a good step
> by step guide to setting it up? Do I need to disable NAT in my router
which
> has NAT enable by default?
>
> Many thanks, David
>
>


Top

Re: NEWBIE:- non-NAT and smtp query? by David

David
Mon Oct 06 07:39:28 CDT 2003

Thanks Javier,
Thats good news. I do have two NICs and the router is on the external NIC.
(I wouldn't dare post to this group without two NICs!!)
Everything works fine its just that the POP3 connector causes bouncing and
looping of emails especially from other servers with emails containing bcc
and cc recipients, hence the upgrade to smtp.
Just checked the info from my ISP and they have given me one IP addresses
for the mail server (mailgate) and one for the router? Presumably I dont do
anything about that?
Do I leave NAT enabled in my router?
How do I tell ISA to forward port 25 to the ext NIC, is it an access policy,
I find them a bit intimidating?
Many thanks for your help, David

"Javier Gomez" <javier_gomez@remove.this.bit.engineer.com> wrote in message
news:eU5IzHAjDHA.748@TK2MSFTNGP11.phx.gbl...
> David,
>
> 1) You only need 1 external puiblic IP (the other 3 are not necessary...
so
> don't do a thing with them).
> 2) You *can* still use NAT in front of ISA with SMTP... just instruct your
> firewall to forward port 25 to your server's external NIC (BTW-> When you
> are using ISA too you are effectively using a double NAT).
> 3) Remember to rerun ICW to get SMTP functionality
>
> I assume that your Router/Firewall is connected to the external NIC (and
not
> to the hub/switch) and that the SBS server has 2 NICs.
>
> If you still have questions post back...
>
> --
> -Javier
>
> << SBS ROCKS !!! >>
>
> "David" <david@pyecrust-nospamplease.com> wrote in message
> news:blrk43$j3t$1$8302bc10@news.demon.co.uk...
> > Hi everyone,
> > Following continuous problems with the SBS POP3 connector I am upgrading
> my
> > ADSL connection to allow incoming SMTP mail and have my own mail server.
> > Trouble is the smtp option is non-NAT and I am unsure about how to set
it
> > up. I just need email and Internet access for all clients. Previously I
> just
> > had one IP address as the POP3 mail connection was NAT based. I have now
> > been issued with four IP addresses by my ISP. I understand I need one
for
> > the SMTP mail server, but what do I do with the other three?
> > Obviously without the protection of NAT I will need to use the ISA
> firewall
> > which I do anyway. My router book and ISP helpfiles are all geared
towards
> > issuing each client with its own IP address in a standard non-sbs type
> > network. All my 17 clients are issued addresses by the DHCP server in
the
> > range 10.0.0.1- upwards presumably this is unchanged. Is there a good
step
> > by step guide to setting it up? Do I need to disable NAT in my router
> which
> > has NAT enable by default?
> >
> > Many thanks, David
> >
> >
>
>


Top

Re: NEWBIE:- non-NAT and smtp query? by Javier

Javier
Mon Oct 06 08:56:05 CDT 2003

> Thats good news. I do have two NICs and the router is on the external NIC.
> (I wouldn't dare post to this group without two NICs!!)

He he he... this NG has a mind of it's own. :-)

> Everything works fine its just that the POP3 connector causes bouncing and
> looping of emails especially from other servers with emails containing bcc
> and cc recipients, hence the upgrade to smtp.

Yes... good reason to change to SMTP

> Just checked the info from my ISP and they have given me one IP addresses
> for the mail server (mailgate) and one for the router? Presumably I dont
do
> anything about that?

I'm not sure... maybe someone else knows about that terminology. What I *do*
know is that you need to know your external IP address (which I suppose is
the router one and it is static... right???) and you need the MX record of
your domain pointed to that IP address. I just checked the domain that you
are using for posting and it doesn't appear to have an MX record associated
with it.

> Do I leave NAT enabled in my router?
Yes. Additonally... IN THE ROUTER-> You need to forward port 25 to the
external NIC.

> How do I tell ISA to forward port 25 to the ext NIC, is it an access
policy,
> I find them a bit intimidating?

I can understand... but it is not in ISA that you have to do this. The
router is the one supposed to forward port 25 to the external nic. In ISA
you need only to allow port 25 traffic... which should be done by using the
ICW and setting it up for SMTP mail.

> Many thanks for your help, David

Post back if you still have questions :-)

Cheers,

--
-Javier

<< SBS ROCKS !!! >>


Top

Re: NEWBIE:- non-NAT and smtp query? by David

David
Tue Oct 07 05:14:47 CDT 2003


Many thanks Javier, thats very helpful
Cheers, David

"Javier Gomez" <javier_gomez@remove.this.bit.engineer.com> wrote in message
news:#rqoCGBjDHA.1672@TK2MSFTNGP09.phx.gbl...
> > Thats good news. I do have two NICs and the router is on the external
NIC.
> > (I wouldn't dare post to this group without two NICs!!)
>
> He he he... this NG has a mind of it's own. :-)
>
> > Everything works fine its just that the POP3 connector causes bouncing
and
> > looping of emails especially from other servers with emails containing
bcc
> > and cc recipients, hence the upgrade to smtp.
>
> Yes... good reason to change to SMTP
>
> > Just checked the info from my ISP and they have given me one IP
addresses
> > for the mail server (mailgate) and one for the router? Presumably I dont
> do
> > anything about that?
>
> I'm not sure... maybe someone else knows about that terminology. What I
*do*
> know is that you need to know your external IP address (which I suppose is
> the router one and it is static... right???) and you need the MX record of
> your domain pointed to that IP address. I just checked the domain that you
> are using for posting and it doesn't appear to have an MX record
associated
> with it.
>
> > Do I leave NAT enabled in my router?
> Yes. Additonally... IN THE ROUTER-> You need to forward port 25 to the
> external NIC.
>
> > How do I tell ISA to forward port 25 to the ext NIC, is it an access
> policy,
> > I find them a bit intimidating?
>
> I can understand... but it is not in ISA that you have to do this. The
> router is the one supposed to forward port 25 to the external nic. In ISA
> you need only to allow port 25 traffic... which should be done by using
the
> ICW and setting it