Port 1352
- Sort by:
- Date ▼
- Title
- Recommendations
- Comments
- Visits
Sending SMTP to secureserver.net from dedicated Domino outbound SMTP servers
A wise man once blogged about an issue with routing outbound SMTP to godaddy hosted domains (messages that route via smtp 5 years later the problem persists. Even though the IP being used for outbound SMTP is not, nor has ever been, "blocked" by anyone, you will still see the following after the initial SMTP handshake (turn up outbound SMTP debugging, if necessary):
SMTPClient: ReceiveResponse: 554 Your access to this mail system has been rejected due to spam or virus content. If you believe that this failure is in error, please submit an unblock request at htt Going to the URL yields an ever-so-helpful, "Thank You. [ip address that was entered] is not blocked at this time. It may have been unblocked due to an earlier request. If you have additional questions please call 480-624-2500." Well, your SMTP server says it's still blocked, so what gives? So, I called the number, and talked to "Mark." It took a while for what I was calling about to click with Mark, but, eventually he insisted that because I couldn't send him an example of a bounced message with a message header that that the problem had to be on my side. I tried to explain that there wouldn't be a header for a message that was not actually routed to their systems (and if it were routed to their systems we wouldn't be having this call in the first place). Sending the chunk from the log showing that it was their side that was preventing the delivery didn't help convince him. Anyway, nothing was solved during the call. Here's the solution: Even if your outbound SMTP server is not intended to accept inbound SMTP from outside your internal network, you have to open port 25 for the server's public IP. If you choose to do this ( in my situation, I had to since godaddy doesn't appear to be changing their non-standard approach any time soon), and you don't want to truly expose your server to public SMTP traffic, be sure the server's configuration doc is in order. For example, Router/SMTP > Restrictions and Controls > SMTP Inbound Controls > Inbound Connection Controls (section) > Allow connections only from the following SMTP internet hostnames/IP addresses (field) In an environment where this list can be large, I like to use a group for this value and then make modifications to the group, as necessary. In this case, I knew that only 2 IP addresses would ever need to route inbound SMTP to this server (the two servers that are specifically set up to do this in the DMZ), so I entered the two IP addresses [in brackets] and restarted the router/smtp and... voilà.
Now godaddy gets a response to their helo (even though the response is basically "you will NEVER send SMTP back through me"), and the oubound mail is accepted by smtp |
|
Bug in Barracuda 250 response after hostname/domain changeI encountered the following bug today in a Barracuda SMTP 250 response after the default host name and domain is changed (Basic > IP Configuration > Domain Configuration)... Updates to this field are properly reflected in the initial 220 handshake, but the 250 response continues to refer to the previously configured host name and domain. Barracuda is logging it as a code bug and will hopefully be resolving it in a future firmware release, but the good news is that the workaround is simple, which is: Restart the Barracuda
|
|
A treasure trove of ID Vault knowledgeYou read the Admin help, you attended the Lotusphere sessions; now take your knowledge of ID Vault to the next level. Check out... Wiki article contributions by Nancy E Kho For instance, lets say you just noticed a plethora of replication conflicts in your ID Vault. After the initial panic subsides, what do you do? Delete the rep conflicts? Nope! The next time the user modifies her ID file and resynchronizes with the ID vault, the vault will automatically merge the multiple entries, ending up with only one entry in the vault. (This answer was taken from here.) Enjoy! |
|
When failover failsUm, Houston...
|
|
Password prompt bug in Traveler for AndroidSeeing an intermittent Traveler prompt on your Android device, "Your Lotus Notes ID password is required to sign or encrypt the email"? There's a fix for that. You can either wait for the next official release or open a PMR and ask for the latest "interim fix" build of Traveler for Android. (One that includes the fix for LO61077 - DELETE SIGNED MAIL ON ANDROID CAUSES PROMPT.) In many cases, the prompt is seen after an extended lull in the normal sync schedule (i.e. during the first sync in the morning or after your device has been out of range for a while) for a user that has received any digitally signed messages. Note that this prompt will occur regardless of having the Notes ID in the mail file or the ID vault. |
|
Re: Traveler for Android Activation ProblemIn response to: Traveler for Android Activation Problem Hi Mat, Harald, and Craig. |
|
Traveler for Android Activation Problem
Ever seen/heard of the installation and configuration working all the way up to this screen, but not allowing the user to enable the sync options?
Note that they can select between Removable/Internal without a problem. Device is a Droid X (Verizon). Server is 8.5.2.2. No SSL, device security exempt. We've been successful enabling other Android devices (including 4 other Droid X's).  |
|
Nothing from nothing is nothingI have an idle Traveler server (it was set up for a pending roll-out a while ago and it has been completely unused, so far). tell traveler status The Lotus Notes Traveler task has been running since Sun Feb 20 23:36:05 EST 2011. There have been no successful device syncs since Lotus Notes Traveler was started. Yellow Status Messages The response times for opening databases on mail server are above the acceptable threshold. The overall status of Lotus Notes Traveler is Yellow. Hmmm, a bad response time for something that hasn't even happened, yet? That doesn't bode well. I'm still looking for a way to clear stale [read "stale, useless, and misleading] info like that by doing something short of restarting Traveler. Surely there's a better way.
|
|
Clearing Traveler Status MessagesIt is well documented that you can use a command to determine the status of a Traveler Server: tell traveler status Then, you may see something like the following: The Lotus Notes Traveler task has been running since Fri Mar 04 21:59:23 EST 2011. The last successful device sync was on Tue Mar 08 16:36:52 EST 2011. Yellow Status Messages 57 errors have been logged for user CN=Martin Elli The overall status of Lotus Notes Traveler is Yellow. Once you've made an attempt to resolve the user's issue, how do you get the server to "reset" the overall status?
TIA |
|
iNotes password idiosyncrasy Have you ever experienced a situation where a user changes their Notes password and then their Internet Password never updates, even though Internet Password Updates are otherwise working correctly? One thing to check is if the user just happened to use the "(" character when they updated their Notes password. Why would that matter? Well, because "(" isn't a valid character to use at the start of your Internet Password.  Now, you probably wouldn't see this in the server log or DDM or anywhere else after the user has made the change that ends up breaking the Internet Password. But, sure enough, ask the user and you may very well find out that they used that character at the beginning of their new Notes password (which, unless you have specifically prevented that character in a custom password policy). With that in mind, does anyone know if there is a definitive list of similarly prohibited characters for iNotes passwords?
|
|
Replies from Traveler missing "replied to" icon I know it's nit-picky, but it would be nice if the "Message replied to" icon was added to a message (in Notes) after I've replied to a message using Traveler. Not really worth opening a PMR for that (not at this time, anyway). Perhaps it's unique to my combination of events.  |
|
Traveler 8.5.2.1 Fix1 (already?)Just noticed that there's a "Fix1" for Traveler 8.5.2.1... <edit to original blogpost> <start excerpt of the readme file that's zipped up in the fix download> IBM Lotus Notes Traveler Interim Fix README FIX VERSION: 8.5.2.1 FIX BUILD LEVEL Client: 201012142305 FIX BUILD LEVEL LMI: 201012142159 PREREQUISITES Lotus Notes Traveler server version 8.5.2.1 already installed. FIX LIST: - L057088 - Problem installing Android if SSL cert contains special characters. <end excerpt of the readme file that's zipped up in the fix download>   |
|
Re: For LS11 Attendees Staying at Disney HotelsIn response to: For LS11 Attendees Staying at Disney Hotels David, U R my hero. BTW, Friday is the 14th, so anyone reading this: you have another day or so to take advantage of the Disney Magical Express offer without worrying that the packet won't reach you in time. |
|
Got crashed? |
|
Look what snuck into 8.5.2 (debug) compact options Back in May, yours truly tweeted:
Doing a "l compact mail -n
-v -c -ZU -W 8 -# 2" Now I just want a switch that singles out
databases that don't already have -n -v -ZU set. I never would have imagined that my wish wasn't too far off from something that I just noticed becomes available in 8.5.2. The -ODS switch. This switch "perform[s] a copy-style compact only if the current ODS is less than desired default ODS." I haven't had any time to test the switch, but it will be good to know exactly what it does/doesn't do. For instance, will it ignore just the -c for databases already at the default ODS, or ignore those databases altogether. I have a hunch; but only a round of testing will provide the definitive answer. Brilliant, IBM. Keep up the good work with improving this and other server tasks.
|
