Mailing List SIMS@mail.stalker.com Message #12318
From: Paul Didzerekis <hostmaster@3-rivers.com>
Subject: Re: Open relay detected within your network
Date: Tue, 7 Jan 2003 16:56:25 -0800
To: SIMS Discussions <SIMS@mail.stalker.com>
Odd.  My secondary forwards to the primary with caravel.bc.ca =
caravel.bc.ca.smtp (as do all the other domains it handles).  It also
has such router entries for higher priority MX's offsite.  I also have
the IP for my secondary in the client list of my primary.

After submitting both IP's to ORDB.org I'm reported as clean.

"This is an automatically generated email

The host you submitted at ORDB.org (216.13.201.247), has been thoroughly
checked, and does not seem to permit relaying.

Please note however, that this may be caused by extreme delays at
the servers end... "

Perhaps you have another issue causing the open relay?


I don't know what else to check.  The only way that I was able to get our backup to pass the open relay test at ordb.org was to remove the router line and remove the backup from the primary client host list. Like I have said before if I have either of the above the opposite way we fail the relay test.  I have every anti-spam feature turned on on both machines.

I am at a loss as to what to do at this point, but I do know there is a problem that appear to be a bug in SIMS,

For one thing I ran older versions of SIMS previously without using the router .smtp line and was able to have the secondary machine do backup service for the primary.  The .smtp router line is a somewhat new feature that never was needed before.  Can someone from Stalker tell us if it is really necessary to use that router entry?  I can't remember if we had anything special in the router for our backup to perform backup service before or not but I have a feeling that we didn't need to do anything special.  I think that the proper DNS MX entry was all that was needed previously.

I just looked at the router section of the SIMS manual and found the following:

"Finally, if no record is found, the messages is routed. If the domain name is not empty, the messages is routed to the SMTP module for delivery to the E-mail address specified by the resulting local and domain parts."

That seems to mean that if the message was not meant for a local account on the backup server then SIMS SMTP module will try to send the message on to the proper SMTP server, my primary.  So it would seem to me that if the primary was down then the foreign SMTP server would then deliver the message to the second level MX machine per DNS settings, my backup.  Then because it was not meant for local delivery, the backup would try to send it to the primary server until the time out value was reached per the retry value set in the SMTP module.

Can someone from Stalker (or Bill Cole) verify whether or not I am correct on this?

thanks,
--
Paul Didzerekis
Owner, Three Rivers Internet
http://www.3-rivers.com or http://www.threeriversinternet.com
Professional website hosting, authoring, & consulting.
       E-commerce using our exclusive EasyCartSystem
FREE website hosting for non-profits at http://nonprofitmac.com/
LOCAL PHONE 946-3163         ******       TOLL FREE 800-426-6646
Subscribe (FEED) Subscribe (DIGEST) Subscribe (INDEX) Unsubscribe Mail to Listmaster