thedude 10 Posted May 20, 2009 Share Posted May 20, 2009 I helped a friend cleanup his small business network. He was having problems with viruses and other security problems so we decided to install a local win2k3 server to run a sophos antivirus console to centrally manage all his PCs (7). He also needed to run a MYSQL DB locally due to internet security problems. So...Now we have a win2k3 server running the AV console and the DB as well as acting as a file/print server-non AD. One of the problems I have run into is that I have a need to send log files via email from the various monitored devices on the local network. The problem is that his ISP requires SMTP login even when connected to their network. Some of the devices don't support SMTP login. I would like to receive log files via email from these devices since I'm not working at his office normally. This way the devices could alert me to potential problems. One solution would be to install the MS SMTP service and use the local server as a SMTP server. However, this is not something I've done in the past and I'm nervous about the security implications. Presently the firewall blocks all access to the local network. However if I installed the SMTP service I would inherently have to allow at least port 25 and I think 110. If I run a port scan on the router's IP from outside the LAN I get a absolutely no indication that anything exists on that IP. Obviously I don't want to give spammers an open SMTP relay to play with. I also have no need to receive mail on the local server...I just need the ability to send mail, but I would rather have right security. Does anyone have a better idea on how to handle this problem? Quote Link to post Share on other sites
goodspeed 10 Posted May 20, 2009 Share Posted May 20, 2009 You want to talk to Jason Anderson. He is GAWD!! :thumbup: P.S. I'll let him know. :pirate: Quote Link to post Share on other sites
acadamis2000 10 Posted May 20, 2009 Share Posted May 20, 2009 By chance is the server running Server 2003 Small Business? What type of firewall is being used for this network? I am not too familiar with using the SMTP Server with 2003 but I know Exchange 2003 and 2007 very well, that's why I am wondering what edition he is running. Here is a good article on configuration with the computer in a workgroup like you say it is. If he is running the server, why is it not a domain controller? Here is a few articles on the configuration and installation and so on. If you have any questions further, please email me at jason@andernetwork.com. I do not hang out on forums normally so email is best way. http://www.ilopia.com/Articles/WindowsServer2003/EmailServer.aspx Quote Link to post Share on other sites
thedude 10 Posted May 20, 2009 Author Share Posted May 20, 2009 acadamis-We are running win2k3 server enterprise edition. (we had a copy laying around) The firewall is a Netgear Prosafe SRXN3205 Link Here I bought this router/firewall due to its VPN ability for remote support. I didn't install it as a domain controller because the clients on the network are all using the "personal" editions of WINXP and Vista. I had read that guide. I guess my main question is the security/reliability of the windows smtp server...since the server is very protected (relatively speaking) behind the firewall am I just opening up a can of worms I don't need by poking a hole in the firewall for the SMTP service? Quote Link to post Share on other sites
Throktar 10 Posted May 20, 2009 Share Posted May 20, 2009 So you set it to use SSL for encryption like on port 465 on the outgoing end of the SMTP connection. Set each client to authenticate to that port using SSL. Quote Link to post Share on other sites