Service Integration - Local Mail Relay

Overview

You should consider using Windows Server's IIS SMTP server as a local mail relay on your MOVEit DMZ system if any of the following conditions apply.

• Uploads are taking much longer than expected
• You have a slow or busy mail server
• You may be sending 20 or more email notifications out for a single upload
• Your mail server requires an advanced method of authentication for relaying mail
• Your MOVEit DMZ server has more than 100 users (this is generally the reason we recommend sites of any size set their email server to localhost)

MOVEit DMZ sends out new file notifications and upload confirmations immediately after saving the related file to disk. While this approach affords near real time response, it also forces MOVEit DMZ to wait for each message to be sent before another can be attempted. When MOVEit DMZ is dealing with busy mail servers or a lot of recipients, the upload process will spend more time sending email than saving files. To keep MOVEit DMZ from having to wait up to 10 seconds for each message to be sent, we can instead spool these messages to the local SMTP server, which will then spool these mail messages out to real email servers when they are better able to accept the traffic.

If a local mail relay server is configured, DMZ can use this to queue up outgoing mail instead of going directly to the main mail server. This frees DMZ up to move on to other tasks, and can provide a noticeable improvement in responsiveness for most file transfer operations.

Instructions

1. Ensure that you have the SMTP Server component installed in your local IIS server. Using the Server Manager from Administrative Tools, select Features > Add Features and select SMTP Server.

   

   Note: If SMTP Server is already installed, you will see it already selected, grayed out, with (Installed) after it.

   The Add Features Wizard displays.

   

2. Click Add Required Role Services and then click Next > Install.

   

   

   

3. After installation completes, click Close.
4. Click Start and in the Search Programs and Files box type IIS.
5. Select Internet Information Services (IIS) 6.0 Manager. You should see a [SMTP Virtual Server #1] node in your IIS administration window under the local machine.

   

6. Right-click [SMTP Virtual Server #1] and click Properties.
7. In the Properties window, select the Access tab.

   

8. In the Access tab, click Connection. Restrict access to the SMTP server by selecting the Only The List Below option and adding the localhost IP address 127.0.0.1 to the access list. Click OK to exit the window.

   

9. In the Access tab, click Relay. Restrict relay access to the SMTP server by selecting the Only The List Below option and adding the localhost IP address 127.0.0.1 to the access list. Make sure the Successful Authentication Relay option is turned off at the bottom of this window. Click OK to exit the window.

   

10. In the Properties window, switch to the Messages tab. In the Messages tab, turn off all the message limits.

    

11. In the Properties window, switch to the Delivery tab. In the Delivery tab, change the default delivery intervals and timeouts to smaller values. Recommended values are shown in the image below.

    

12. In the Delivery tab, click Advanced. Set the Fully Qualified Domain Name setting to the name of your MOVEit DMZ server. Set the Smart Host setting to the name of your main SMTP server.

    

13. Click OK to exit the window. Configuration of the SMTP server is now complete. Click OK in the Properties window and make sure the SMTP service is started.
14. The final step is configuring your DMZ server to use the new local SMTP service. Open the MOVEit DMZ Config program (Start -> Programs -> MOVEit DMZ) and switch to the Email tab. Enter localhost as the Server name. Click OK to exit the Config program. The change should happen immediately; no restart is required.

    

Tuning

You will probably want to tinker with the outgoing connection limit (default is 1000) if one of your goals is to keep MOVEit DMZ from overloading your real mail server. (Typical throttled values are from 1-5.) To alter this setting, open the SMTP properties, go to the General tab and open the connection dialog.

Finished

Your local SMTP relay server should now be set up, and your MOVEit DMZ server configured to use it.

Troubleshooting

An easy way to troubleshoot your mail relay loop is to run the reporterrors.exe executable found in your \MOVEitDMZ\Scheduler folder from the command line. This utility will either send a very short message to the error email address configured in your MOVEit DMZ Config program or report a connection problem regarding the email server.

Problem: Cannot connect to local mail relay.

Solution 1: Open the Services from Start | Programs | Administrative Tools. Make sure the Simple Mail Transport Protocol service is started and that it is set up to start Automatically.

Solution 2: Open the Internet Services Manager from Start | Programs | Administrative Tools. Make sure the Default SMTP Virtual Server is NOT stopped.

Solution 3: Open the Internet Services Manager from Start | Programs | Administrative Tools. Right-click on Default SMTP Virtual Server and select Properties. In the General tab make sure the IP Address is set for All Unassigned.

Solution 4: Go to the command line and type netstat -a -n. Look for any TCP entries with a local address ENDING with :25. If there are none, the SMTP server failed to bind to its listening port; reboot the server.

If the reporterrors.exe utility reports that it is sending email OK, but the mail messages are not actually reaching their destination, open the local SMTP server queue folder and look for messages there which correspond with your test messages. (The queue folder is usually named something like c:\inetpub\mailroot\queue.)

Problem: Mail is being queued on the local SMTP server and is not being delivered.

Solution 1: Make sure your SMART HOST contains the value which used to be the MAIL SERVER field in your MOVEit DMZ configuration.

Solution 2: Make sure the Attempt Direct Delivery box (near the Smart Host setting) is NOT CHECKED.

Solution 3: Look for entries in your SYSTEM event log from SMTP or SMTPSVC which complain about DNS problem. If you see events like these, change the SMART HOST (described above) to an IP address surrounded by square brackets. (e.g. [66.170.5.142])

You can also use the MOVEit DMZ Check utility to test mail relay loops. In version 4.0 it acquired the ability to test email relay against an email address you type in while the program is running, so it may be the better tool to use if you suspect trouble with particular email addresses.