Quantcast
Channel: Symantec Connect - Messaging Gateway - Discussions
Viewing all 1067 articles
Browse latest View live

Can't use AD for Administrator authentication

December 14, 2015, 11:28 pm
$
0
0
I need a solution

Hello experts,

Bit of a head scratcher. I've created an AD data source for the purpose of authenticating my admins in the CC. Once I do this and attempt to add an administrator, I don't see any option for using my data source to authenticate the user? I've followed the steps from the admin guide (p 572 for data source, 776 fr adding the ldap admin) but I do not see an option to use the ad source for authentication; it just allows me to add a user with a local password.

I'm assuming I'm missing a step here but I'm not sure what.

0
1450171947
Search

New version 10.6.0-3 seems me to be incompatible with Exchange 2007

December 15, 2015, 4:57 am
$
0
0
I need a solution

I updated our SMG to the last version 10.6.0-3.

After that SMG stopped delivering the email to the servers with Exchange 2007. (SMG -> Exchange)

I get always the error:   Detail: 451 4.4.2 [internal] send HELO/EHLO failed

And the client got the EMPTY message "Delivered". (It is wrong).

In reverse direction all is O.K. (Exchange -> SMG)

Other servers seems me to function properly.

I have set "TLS attempt to deliver for all message". SSLv3 disabled.

The avoiding the previous setting, I tried to set extra domain with no TLS. It didn't help.

In the previous version 10.5.4-4 all functioned properly. (Also set TLS attempting and SSLv3 disabled).
 

Any idea for setting please? Or it is hard internal error?

Thank you.

PaJi

0

cannot access host configuration after update to latest version 10.6.0-3

December 14, 2015, 1:42 am
$
0
0
I need a solution
my SMG is VM installed on VMWare, and it was working until we updated to latest version, then users start complaining that they cant receive emails, so we loged in to the console and the emails logs are normal but it seems it does not route the emails to the Exchange server, so after browsing some tabs on the console that edit hostname return the below error.
wish someone can help.
 
 
 
 
Application Error
The application encountered an error. If you are the administrator, please check the log files for details.
 
 
 class java.lang.NullPointerException: null
	at com.symantec.smg.controlcenter.host.smtp.SmtpConnectorSettingsManager.retrieve(SmtpConnectorSettingsManager.java:134)
	at com.symantec.smg.controlcenter.host.ScannerAction.retrieveApplianceEditInfo(ScannerAction.java:5626)
	at com.symantec.smg.controlcenter.host.ScannerAction.viewEditPages(ScannerAction.java:1784)
	at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
	at sun.reflect.NativeMethodAccessorImpl.invoke(Unknown Source)
	at sun.reflect.DelegatingMethodAccessorImpl.invoke(Unknown Source)
	at java.lang.reflect.Method.invoke(Unknown Source)
	at org.apache.struts.actions.DispatchAction.dispatchMethod(DispatchAction.java:274)
	at com.symantec.smg.controlcenter.internal.action.DefaultAction.dispatchMethod(DefaultAction.java:97)
	at org.apache.struts.actions.DispatchAction.execute(DispatchAction.java:194)
	at org.apache.struts.action.RequestProcessor.processActionPerform(RequestProcessor.java:419)
	at org.apache.struts.action.RequestProcessor.process(RequestProcessor.java:224)
	at org.apache.struts.action.ActionServlet.process(ActionServlet.java:1194)
	at org.apache.struts.action.ActionServlet.doPost(ActionServlet.java:432)
	at javax.servlet.http.HttpServlet.service(HttpServlet.java:650)
	at javax.servlet.http.HttpServlet.service(HttpServlet.java:731)
	at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:303)
	at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:208)
	at org.apache.tomcat.websocket.server.WsFilter.doFilter(WsFilter.java:52)
	at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:241)
	at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:208)
	at org.apache.catalina.core.ApplicationDispatcher.invoke(ApplicationDispatcher.java:748)
	at org.apache.catalina.core.ApplicationDispatcher.processRequest(ApplicationDispatcher.java:486)
	at org.apache.catalina.core.ApplicationDispatcher.doForward(ApplicationDispatcher.java:411)
	at org.apache.catalina.core.ApplicationDispatcher.forward(ApplicationDispatcher.java:338)
	at org.apache.struts.action.RequestProcessor.doForward(RequestProcessor.java:1063)
	at org.apache.struts.action.RequestProcessor.internalModuleRelativeForward(RequestProcessor.java:1001)
	at org.apache.struts.action.RequestProcessor.processForward(RequestProcessor.java:560)
	at org.apache.struts.action.RequestProcessor.process(RequestProcessor.java:209)
	at org.apache.struts.action.ActionServlet.process(ActionServlet.java:1194)
	at org.apache.struts.action.ActionServlet.doPost(ActionServlet.java:432)
	at javax.servlet.http.HttpServlet.service(HttpServlet.java:650)
	at javax.servlet.http.HttpServlet.service(HttpServlet.java:731)
	at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:303)
	at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:208)
	at org.apache.tomcat.websocket.server.WsFilter.doFilter(WsFilter.java:52)
	at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:241)
	at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:208)
	at com.symantec.smg.controlcenter.accesscontrol.AdministratorRoleChecker.doFilter(AdministratorRoleChecker.java:210)
	at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:241)
	at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:208)
	at com.symantec.smg.controlcenter.internal.http.SessionChecker.doFilter(SessionChecker.java:146)
	at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:241)
	at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:208)
	at com.symantec.smg.controlcenter.internal.http.CacheBuster.doFilter(CacheBuster.java:97)
	at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:241)
	at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:208)
	at com.symantec.smg.controlcenter.internal.http.CharacterEncoder.doFilter(CharacterEncoder.java:93)
	at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:241)
	at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:208)
	at com.symantec.smg.controlcenter.internal.struts.Struts1ParamFilter.doFilter(Struts1ParamFilter.java:44)
	at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:241)
	at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:208)
	at com.symantec.smg.controlcenter.accesscontrol.HostACL.doFilter(HostACL.java:331)
	at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:241)
	at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:208)
	at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:220)
	at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:122)
	at org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:505)
	at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:170)
	at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:103)
	at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:116)
	at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:423)
	at org.apache.coyote.http11.AbstractHttp11Processor.process(AbstractHttp11Processor.java:1079)
	at org.apache.coyote.AbstractProtocol$AbstractConnectionHandler.process(AbstractProtocol.java:620)
	at org.apache.tomcat.util.net.JIoEndpoint$SocketProcessor.run(JIoEndpoint.java:318)
	at java.util.concurrent.ThreadPoolExecutor.runWorker(Unknown Source)
	at java.util.concurrent.ThreadPoolExecutor$Worker.run(Unknown Source)
	at org.apache.tomcat.util.threads.TaskThread$WrappingRunnable.run(TaskThread.java:61)
	at java.lang.Thread.run(Unknown Source)
0

Get notifications when a message is rejected due to size?

December 16, 2015, 3:15 pm
$
0
0
I need a solution

Is there a way to get notifications when a message is rejected due to size?

We are currently limiting inbound messages to 10MB or less and would like to notify recipients when an e-mail addressed to them was denied due to size.

I tried creating a policy that would send a notification when a message exceeded that size, but it didn't work. I imagine that it is rejected before policies are applied.

0

Attempted Delivery to: default-non-local-route 422 license expired

December 17, 2015, 10:02 pm
$
0
0
I need a solution

Hi All,

My user complaints that they cannot send some email to one particular sender with some attachment. Hence they reeived the NDR like the following:

Delivery is delayed to these recipients or groups:CFO@Customer.com

Subject: RE: Company Pty Ltd - URGENT

This message hasn't been delivered yet. Delivery will continue to be attempted.

So I open the Brightmail gateway, I found out that it has got Success with Errors Details:

Transient Delivery Attempts Failure 
Attempted Delivery to: default-non-local-route  ​

422 license expired 

Does that means the target email server license is expired and our Brightmail is holding on the email ?

0

10.6.0-3 A certificate chain can not be built for the certificate being imported

December 20, 2015, 2:26 pm
$
0
0
I need a solution

I upgraded to the new version 10.6.0-3 from 10.5.4-4, and now I got problems related to SSL certificates:

I have a wildcard certificate, which requires CA certificates to be uploaded into SMG. In version 10.5.4-4 I uploaded the CA certificates, and then uploaded our wildcard certificate and everything worked.

After the update, SMG seems to be unable to build the certificate chain: I have a java application that sends email using authentification and starttls using port 587, which worked fine before the SMG upgrade, and now it doesn't. With openssl I checked starttls on port 25 and bam, no certificate chain is being sent, so my wildcard certificate can not be validated.

What have I tried so far:

  1. Upload my wild certificate again, getting the error "The following warning(s) have been detected:
    A certificate chain can not be built for the certificate being imported."
  2. Upload again the CA certificates (are 3, from COMODO), and tried again uploading my wildcard certificate. CA certs upload OK, but my wildcard cert not. Same result.
  3. Using "Restore" in CA tab, I restored the first CA COMODO certificate (so all other CA certs are deleted and only this one is now present), and afterwards uploaded the other 2 CA from COMODO. This was to delete other certs in case they were interfering. Then I tried to upload my wildcard certificate, and got the same error (...chain can not be built...)
  4. I rebooted the SMG system to try this again: no luck.
  5. Investigated the CLI commands available, and using SSH I executed "delete keystore" to remove using this way the certificate. Trying uploading again and nothing... I can't find more command line options related to certs. (openssl is not available)

My private key is 2048 bit in length.

Any ideas? Please help! I got 3 SMG running, and got this problem in all three of them!

0

Mail sent endless in 1 minute interval / Wrong Status Code / Retry interval unobserved

December 20, 2015, 11:49 pm
$
0
0
I need a solution

Hi,

I got some problems with e-mail that are sporadically sent endless in a 1 minute intervall until the maximum time of 2 days for no deliviery is reached. The minimum retry intervall is configured to 10 minutes.

- the Retry count is not correct in these messages  - it stays at "1"

- the messages are errored with the following errorcode "451 4.4.2 [internal] no body response " but reciepient recieves the message every time completly.

- it mostly happen when a mail is sent to multiple recipients of an external domain, and mostly when there is an attachment in the mail.

We are running version 10.5.4-4

0

Where is version 10.6?

January 1, 2016, 6:55 pm
$
0
0
I need a solution

Looks like there's still some issues with version 10.6 so I'm not anxious to upgrade right away, but I am curious how I'm supposed to obtain this version.  I logged in with my latest serial # (Protection Suite 4.1) but I'm only seeing version 10.5 for download.

My existing SMG 10.5.4-4 install is saying no new version available.

Any idea why I'm not seeing version 10.6 yet?

0
Search

Symantec Messaging Gateway - message sent when virus is detected

January 5, 2016, 11:16 pm
$
0
0
I need a solution

we have a Symantec Messaging Gateway version 10.5.3-4

When the product detects a virus, a message is send to the recipient

for example:

 
 
"This message has been processed by Symantec AntiVirus.

Invoice Copy.ace was infected with the malicious virus Infostealer.Limitail and has been deleted because the file cannot be cleaned. "

 
It´s possible edit or delete this message? I was looking at the settings but I can´t find that.
 

0

Buying SMG :)

January 7, 2016, 7:00 am
$
0
0
I need a solution

I signed up for a trial as a VM, which has now expired.  No one has contacted me to actually buy this software.  Looking around, it says I have to talk to a reseller -- which I don't have.  I tried to open a support ticket, but the form hangs on requiring a "valid product version" -- "10.6.0" makes the little javascript wheel spin forever, and it won't open a case without it.  I tried "N/A" or "1" or any number of guesses, but I can't open a ticket.

Who will take my money?  :)

0

Increase disk size of virtual SMG?

January 8, 2016, 10:26 am
$
0
0
I need a solution

I started getting "low disk space" warnings and I see that the virtual appliance only comes with 20GB.  Is there a simple way to increase the size of the disk, or do I have to reinstall?  I obviously have plenty of space available on the host.  I deleted some cores, but I'm not sure if that helped a lot or a little: there's no "df" or equivalent in the admin interface?

0

SMG 10.6-5 TLS-Problem

January 12, 2016, 3:52 am
$
0
0
I need a solution

We upgraded SMG (on ESX) to newest version 10.6-5 and now we have problems receiving TLS mails from a few customers. They receive a TLS-Handshake error.

We have TLS active in MSG since two years (with disabled SSLv3), all worked fine until we did the upgrade. Now we noticed, that the problem coheres with the "Disable SSL v3" setting in SMG. When we deactivate this setting (so enabling SSL v3) the problem is solved. But this is not an acceptable solution.

You can reproduce this behavior by testing your own SMG 10.6-5 with the TLS test on https://de.ssl-tools.net/mailservers. Whe SSL v3 is disabled, you will get an handshake error and the test fails. When SSL v3 is enabled, the test result is ok, but you will receive a warning, that weak protokoll SSL v3 is active... Great!

Any ideas or same problem somwhere? Thanks...

0

Rejected By MTA and Mimecast

January 12, 2016, 11:06 am
$
0
0
I need a solution

We are always fighting issues with receiving emails from mimecast servers.

The error we see is Rejected by MTA. 

Capture.JPG

An IP lookup shows connection class 4 with all emails being differed.

the sender is getting this message.

could not be delivered. The problem appears to be :
-- Recipient server unavailable or busy

Additional information follows :
-- 4.3.2 try again later

This condition occurred after 30 attempt(s) to deliver over a period of 92 hour(s).

If you sent the email to multiple recipients, you will receive one of these messages for each one which failed delivery,  otherwise they have been sent.

This enhanced system notification has been specially generated for you by Mimecast - the brain for your email.

Any useful suggestions?

0

how to retrieve deleted emails from spam quarantine folder

January 13, 2016, 1:39 am
$
0
0
I need a solution

Hi,

By mistake Delete all Suspected Email from Spam Quarantine Folder, Kindly help me to retieve it.

Urgent Please

Thanks

0

Symantec Messaging Gateway vs DLP Network Prevent Email

January 14, 2016, 8:50 am
$
0
0
I need a solution

Hi,

I was just wondering when Data Loss Prevention and content control capabilites are present in Symantec Messaging Gateway then whats the benefit of integrating it with DLP Network Prevent for Email? What is the advantage or added benefit of integrating it with DLP Network Prevent for Email? The only one i can think is Unstructured Data Matching (IDM). Apart from that i don't know of any extra benefit. Can anyone help me out here? Thanks.

0
Search

Symantec Messaging Gateway blocked language

January 14, 2016, 11:48 am
$
0
0
I need a solution

Hi,

We are having random issues with Symantec Messaging Gateway Version 10.5.4 for some users where email arriving from external senders is blocked and deleted because of language.  The language of the email is English and there is no other language or attachments.  There is also no misspelled words.  This is further complicated because the specific email is addressed to multiple people and at times other users receive the email without problems.  I have tried to adjust the language settings inclusive and not exclusive but I don't want to allow all language because my company does'nt have a need to recieve emails in other languages other than english.   It is being blocked on the default policy group and currently set to 'Do not receive mail in the following languages' and all languages except for english are selected.

This is the only text in the email -

"Per David,  we are going live Jan 18 2016. "

 

Thanks

Mike

0

SMG 10.5.2 - Gather Status information programmatically

January 14, 2016, 8:31 pm
$
0
0
I need a solution

Hi,

is there a way to get status information of the Gateway programmatically?

For instance from a webservice which sends back XML or JSON?

Thanks in advance

Ruben

0

SMG 10.5.2 - SNMP configuration

January 14, 2016, 8:45 pm

503: Service unavailable when registering license

January 19, 2016, 11:27 am
$
0
0
I need a solution

Hi all,

I'm trying to register a new license on SMG because it expired. I've been trying for around three weeks and I keep getting 503. I checked that I can ping the SMG servers and telnet 443 to register.brightmail.com from the SMG linux box. Any ideas?

Regards,

Ricardo 

0

Mime/base64 format problem

January 21, 2016, 7:30 am
$
0
0
I need a solution

Hi

I have problem with a message having wrong format and attached file is in base64 format.

"This message is in MIME format. Since your mail reader does not understand this format, some or all of this message may not be legible."

It is a message with a small textfile.

If I look in Message Audit log I found the message without attachment. See attached image.

Does this mean that SMG is receiving the message without attachment and the error is on the sender side?

SMG version: 10.6.0-5

//Peter

0

Viewing all 1067 articles
Browse latest View live
Search
<script src="https://jsc.adskeeper.com/r/s/rssing.com.1596347.js" async> </script>