IPB

Welcome Guest ( Log In | Register )

 
Reply to this topicStart new topic
> Kaspersky Secure Mail Gateway [In progress]
amting
post 11.11.2015 17:40
Post #1


Advanced Member III
*****

Group: Members
Posts: 539
Joined: 4.05.2010




Hi All,

please help me, i try install kaspersky security mail gateway with topologi

internet--firewall--ksmg--mail server--klien

maillog error "Relay access denied"

Nov 12 00:00:42 ksmg postfix/smtpd[7889]: setting up TLS connection from unknown[45.116.137.30]
Nov 12 00:00:43 ksmg postfix/smtpd[7889]: Anonymous TLS connection established from unknown[45.116.137.30]: TLSv1.2 with cipher ADH-AES256-GCM-SHA384 (256/256 bits)
Nov 12 00:00:43 ksmg postfix/smtpd[7889]: NOQUEUE: reject: RCPT from unknown[45.116.137.30]: 554 5.7.1 <dyah@xxx.co.id>: Relay access denied; from=<susan@utraining-global.com> to=<dyah@xxx.co.id> proto=ESMTP helo=<mail.utraining-global.com>
Nov 12 00:00:44 ksmg postfix/smtpd[7889]: disconnect from unknown[45.116.137.30]
Nov 12 00:00:58 ksmg postfix/smtpd[7888]: connect from mail.bayubuanatravel.com[202.129.224.208]
Nov 12 00:00:58 ksmg postfix/smtpd[7888]: NOQUEUE: reject: RCPT from mail.bayubuanatravel.com[202.129.224.208]: 554 5.7.1 <oji.r@xxx.co.id>: Relay access denied; from=<Office@bdo.bayubuanatravel.com> to=<oji.r@xxx.co.id> proto=ESMTP helo=<mail.bayubuanatravel.com>
Nov 12 00:00:58 ksmg postfix/smtpd[7888]: disconnect from mail.bayubuanatravel.com[202.129.224.208]
Nov 12 00:01:03 ksmg postfix/smtpd[7880]: connect from e215.en25.com[209.167.231.215]
Nov 12 00:01:04 ksmg postfix/smtpd[7880]: NOQUEUE: reject: RCPT from e215.en25.com[209.167.231.215]: 554 5.7.1 <jajat.sudrajat@xxx.co.id>: Relay access denied; from=<monitor@go.terrapinn.com> to=<jajat.sudrajat@xxx.co.id> proto=ESMTP helo=<e215.en25.com>
Nov 12 00:01:09 ksmg postfix/smtpd[7880]: disconnect from e215.en25.com[209.167.231.215]
Nov 12 00:01:43 ksmg postfix/smtpd[7889]: connect from mail-wm0-f49.google.com[74.125.82.49]
Nov 12 00:01:44 ksmg postfix/smtpd[7889]: setting up TLS connection from mail-wm0-f49.google.com[74.125.82.49]
Nov 12 00:01:45 ksmg postfix/smtpd[7889]: Anonymous TLS connection established from mail-wm0-f49.google.com[74.125.82.49]: TLSv1.2 with cipher AES128-GCM-SHA256 (128/128 bits)
Nov 12 00:01:45 ksmg postfix/smtpd[7889]: NOQUEUE: reject: RCPT from mail-wm0-f49.google.com[74.125.82.49]: 554 5.7.1 <nulyda.moulisa@xxx.co.id>: Relay access denied; from=<eka.novian@gmail.com> to=<nulyda.moulisa@xxx.co.id> proto=ESMTP helo=<mail-wm0-f49.google.com>
Nov 12 00:01:46 ksmg postfix/smtpd[7889]: disconnect from mail-wm0-f49.google.com[74.125.82.49]
Nov 12 00:05:06 ksmg postfix/anvil[7890]: statistics: max connection rate 1/60s for (smtp:209.85.160.175) at Nov 12 00:00:00
Nov 12 00:05:06 ksmg postfix/anvil[7890]: statistics: max connection count 1 for (smtp:209.85.160.175) at Nov 12 00:00:00
Nov 12 00:05:06 ksmg postfix/anvil[7890]: statistics: max cache size 5 at Nov 12 00:00:58

Please advice
thanks
Go to the top of the page
 
+Quote Post
Artem Ershov
post 11.11.2015 19:43
Post #2


Technical Support Engineer
**************

Group: KL Russia
Posts: 6599
Joined: 15.06.2015




Hi,

Can you confirm that all requirements are met?

BR


--------------------
In english: GSI report | AVZ report | KSC10 Traces | KES10 Traces | KSC9 Traces | KES8 Traces(RUS) | klnagchk log(RUS)
На русском: Отчет GSI | Лог AVZ | Трассировки KSC10 | Трассировки KES10 | Трассировки KSC9 |Трассировки KES8 | Отчет утилиты klnagchk

Please evaluate support help by using "Rating" option!
Пожалуйста, оцените оказанную помощь, используя опцию "Rating" в названии топика!


Подписаться на новости о корпоративных продуктах
Go to the top of the page
 
+Quote Post
Helmut
post 11.11.2015 20:49
Post #3


Gold Beta Tester
***************

Group: Moderators
Posts: 15303
Joined: 23.06.2005




This error looks for a misconfiguration: 554 5.7.1 <dyah@xxx.co.id>: Relay access denied

Can you post the configuration? # /opt/kaspersky/klms/bin/klms-control --export-settings -f <file_name>
Go to the top of the page
 
+Quote Post
amting
post 12.11.2015 07:06
Post #4


Advanced Member III
*****

Group: Members
Posts: 539
Joined: 4.05.2010




QUOTE(Helmut @ 11.11.2015 19:49) *
This error looks for a misconfiguration: 554 5.7.1 <dyah@xxx.co.id>: Relay access denied

Can you post the configuration? # /opt/kaspersky/klms/bin/klms-control --export-settings -f <file_name>


attach settings
Attached File(s)
Attached File  KSMG_settings.zip ( 3,34K ) Number of downloads: 12
 
Go to the top of the page
 
+Quote Post
Evgeny Medvedev
post 12.11.2015 09:16
Post #5


Forum Elite
**************

Group: Members
Posts: 9218
Joined: 21.07.2009
From: Kaspersky Lab, Russia




QUOTE(amting @ 12.11.2015 06:06) *
attach settings


Hi,

May I also ask to confirm that you are following the deployment guide starting from p.20 ?

Thank You!


--------------------
In english: GSI report | AVZ report | KSC10 Traces | KES10 Traces | KSC9 Traces | KES8 Traces(RUS) | klnagchk log(RUS)
На русском: Отчет GSI | Лог AVZ | Трассировки KSC10 | Трассировки KES10 | Трассировки KSC9 |Трассировки KES8 | Отчет утилиты klnagchk

Пожалуйста, оцените оказанную помощь, используя опцию "Rating" в названиях топика!
Please evaluate support help by using "Rating" option!
Go to the top of the page
 
+Quote Post
amting
post 12.11.2015 09:22
Post #6


Advanced Member III
*****

Group: Members
Posts: 539
Joined: 4.05.2010




QUOTE(Evgeny Medvedev @ 12.11.2015 08:16) *
Hi,

May I also ask to confirm that you are following the deployment guide starting from p.20 ?

Thank You!


yes i follow p 20.
Go to the top of the page
 
+Quote Post
amting
post 12.11.2015 09:57
Post #7


Advanced Member III
*****

Group: Members
Posts: 539
Joined: 4.05.2010




hi all,

now problem relay acces denied.. solved..

now i have problem date.. please advice


Attached File(s)
Attached File  Date.png ( 77,43K ) Number of downloads: 27
 
Go to the top of the page
 
+Quote Post
Helmut
post 12.11.2015 11:32
Post #8


Gold Beta Tester
***************

Group: Moderators
Posts: 15303
Joined: 23.06.2005




What was the problem with the relay access denied?
Go to the top of the page
 
+Quote Post
rohardy
post 9.05.2017 12:50
Post #9


Member
**

Group: Members
Posts: 21
Joined: 18.03.2015
From: Indonesia




QUOTE(Helmut @ 12.11.2015 14:32) *
What was the problem with the relay access denied?



hello i have a problem about kaspersky secure mail gateway
this is still POC
can you help me why KSMG can not screening email?
ip gateway 10.1.6.254
ip mailbox 10.1.6.6
i sent the setting and screen capture


Attached File(s)
Attached File  Monitor_1.jpg ( 123,62K ) Number of downloads: 10
Attached File  Monitor_2.jpg ( 137,65K ) Number of downloads: 8
 
Go to the top of the page
 
+Quote Post
rohardy
post 9.05.2017 12:51
Post #10


Member
**

Group: Members
Posts: 21
Joined: 18.03.2015
From: Indonesia




QUOTE(rohardy @ 9.05.2017 15:50) *
hello i have a problem about kaspersky secure mail gateway
this is still POC
can you help me why KSMG can not screening email?
ip gateway 10.1.6.254
ip mailbox 10.1.6.6
i sent the setting and screen capture


and this setting
Attached File(s)
Attached File  KSMG_settings__1_.rar ( 3,19K ) Number of downloads: 2
 
Go to the top of the page
 
+Quote Post
Nikolay Arinchev
post 9.05.2017 14:29
Post #11


Technical Support Specialist
**************

Group: KL Russia
Posts: 11682
Joined: 5.10.2009




Hi,

Could you please confirm that your e-mail passed throw KSMG?
You can double-check an e-mail header, it should contain KSMG verdict.

Thank you!


--------------------
In english: GSI report | AVZ report | KSC10 Traces | KES10 Traces | KSC9 Traces | KES8 Traces(RUS) | klnagchk log(RUS)

На русском: Отчет GSI | Лог AVZ | Трассировки KSC10 | Трассировки KES10 | Трассировки KSC9 |Трассировки KES8 | Отчет утилиты klnagchk

Подписаться на новости о корпоративных продуктах

Please evaluate support help by using "Rating" option!
Пожалуйста, оцените оказанную помощь, используя опцию "Rating" в названии топика!
Go to the top of the page
 
+Quote Post
rohardy
post 10.05.2017 04:48
Post #12


Member
**

Group: Members
Posts: 21
Joined: 18.03.2015
From: Indonesia




QUOTE(Nikolay Arinchev @ 9.05.2017 17:29) *
Hi,

Could you please confirm that your e-mail passed throw KSMG?
You can double-check an e-mail header, it should contain KSMG verdict.

Thank you!


Sorry i still do not understand
What does it mean?
I try to follow the commands according to the existing tutorial
Is there something wrong with their email?
Their mailbox uses the exchange
And their gateways use office 365

Thank u for your respon
Go to the top of the page
 
+Quote Post
Dmitry Eremeev
post 10.05.2017 08:32
Post #13


Technical Support Specialist
**************

Group: KL Russia
Posts: 11266
Joined: 30.07.2014
From: Moscow




QUOTE(rohardy @ 9.05.2017 11:50) *
hello i have a problem about kaspersky secure mail gateway
this is still POC
can you help me why KSMG can not screening email?
ip gateway 10.1.6.254
ip mailbox 10.1.6.6
i sent the setting and screen capture


Hello,

please attach a sample of header - http://support.kaspersky.com/12313
Thank you.


--------------------
In english: GSI report | AVZ report | KSC10 Traces | KES10 Traces | KSC9 Traces | KES8 Traces(RUS) | klnagchk log(RUS)

На русском: Отчет GSI | Лог AVZ | Трассировки KSC10 | Трассировки KES10 | Трассировки KSC9 |Трассировки KES8 | Отчет утилиты klnagchk

Подписаться на новости о корпоративных продуктах

Пожалуйста, оцените оказанную помощь, используя опцию "Rating" в названии топика!

Please evaluate support help by using "Rating" option!


Go to the top of the page
 
+Quote Post
rohardy
post 19.05.2017 08:04
Post #14


Member
**

Group: Members
Posts: 21
Joined: 18.03.2015
From: Indonesia




QUOTE(Dmitry Eremeev @ 10.05.2017 11:32) *
Hello,

please attach a sample of header - http://support.kaspersky.com/12313
Thank you.


Hello Dmitry,

Can you please check whether there is still a wrong log?
I have followed all the solutions.



May 19 02:35:07 klms opendkim[1791]: OpenDKIM Filter v2.10.3 starting (args: -x /etc/opendkim.conf -P /var/run/opendkim/opendkim.pid)
May 19 02:35:09 klms postfix/postfix-script[1937]: starting the Postfix mail system
May 19 02:35:09 klms postfix/master[1938]: daemon started -- version 2.6.6, configuration /etc/postfix
May 19 09:43:51 mtcsmgap01a KSMG: external directory services disabled
May 19 09:43:52 mtcsmgap01a KSMG: product started in configuration mode
May 19 09:43:54 mtcsmgap01a KSMG: settings changed: app-settings
May 19 09:43:54 mtcsmgap01a KSMG: settings changed: task 2 "Backup"
May 19 09:43:54 mtcsmgap01a KSMG: settings changed: task 3 "ScanLogic"
May 19 09:43:54 mtcsmgap01a KSMG: settings changed: task 4 "Facade"
May 19 09:43:56 mtcsmgap01a KSMG: Event logging stopped
May 19 09:44:09 mtcsmgap01a KSMG: external directory services disabled
May 19 09:44:13 mtcsmgap01a KSMG: Anti-Spam bases applied: publishing-time="2015-09-24T19:58:08"
May 19 09:44:13 mtcsmgap01a KSMG: Anti-Spam bases are obsoleted: 602 days
May 19 09:44:41 mtcsmgap01a KSMG: Anti-Virus bases applied: primary_index-publishing-time="24092015 1308", publishing-time="2015-09-24T10:55:00", record-count=6543093
May 19 09:44:41 mtcsmgap01a KSMG: Anti-Virus bases are obsoleted: 602 days
May 19 09:44:45 mtcsmgap01a KSMG: product started
May 19 09:44:45 mtcsmgap01a KSMG: real-time scan started
May 19 09:44:45 mtcsmgap01a klms-smtp_proxy: /opt/kaspersky/klms/libexec/klms-smtp_proxy started, pid = 4240, recieving on unix:/var/run/klms/klms_smtp_sock, sending to unix:/var/spool/postfix/public/klms_forward_sock, timeout = 10, threads number = 20, scanner = unix:/var/run/klms/klms_scanner_sock
May 19 09:44:46 mtcsmgap01a postfix/postfix-script[4292]: stopping the Postfix mail system
May 19 09:44:46 mtcsmgap01a postfix/master[1938]: terminating on signal 15
May 19 09:44:46 mtcsmgap01a postfix/postfix-script[4365]: starting the Postfix mail system
May 19 09:44:46 mtcsmgap01a postfix/master[4366]: daemon started -- version 2.6.6, configuration /etc/postfix
May 19 09:44:46 mtcsmgap01a KSMG: settings changed: app-settings
May 19 09:44:46 mtcsmgap01a postfix/pickup[4370]: ADEE5A0002: uid=496 from=<klms@localhost>
May 19 09:44:46 mtcsmgap01a postfix/cleanup[4390]: ADEE5A0002: message-id=<20170519024446.ADEE5A0002@mtcsmgap01a.ksmg.sucorsekuritas.com>
May 19 09:44:46 mtcsmgap01a postfix/qmgr[4371]: ADEE5A0002: from=<klms@localhost.ksmg.sucorsekuritas.com>, size=778, nrcpt=1 (queue active)
May 19 09:44:46 mtcsmgap01a postfix/pickup[4370]: B3C11A0003: uid=496 from=<klms@localhost>
May 19 09:44:46 mtcsmgap01a postfix/cleanup[4390]: B3C11A0003: message-id=<20170519024446.B3C11A0003@mtcsmgap01a.ksmg.sucorsekuritas.com>
May 19 09:44:46 mtcsmgap01a postfix/qmgr[4371]: B3C11A0003: from=<klms@localhost.ksmg.sucorsekuritas.com>, size=776, nrcpt=1 (queue active)
May 19 09:44:46 mtcsmgap01a KSMG: settings changed: app-settings
May 19 09:44:46 mtcsmgap01a postfix/local[4397]: ADEE5A0002: to=<root@mtcsmgap01a.ksmg.sucorsekuritas.com>, orig_to=<postmaster@localhost>, relay=local, delay=0.12, delays=0.09/0.01/0/0.01, dsn=2.0.0, status=sent (delivered to mailbox)
May 19 09:44:46 mtcsmgap01a postfix/qmgr[4371]: ADEE5A0002: removed
May 19 09:44:47 mtcsmgap01a postfix/local[4398]: B3C11A0003: to=<root@mtcsmgap01a.ksmg.sucorsekuritas.com>, orig_to=<postmaster@localhost>, relay=local, delay=0.95, delays=0.06/0.02/0/0.87, dsn=2.0.0, status=sent (delivered to mailbox)
May 19 09:44:47 mtcsmgap01a postfix/qmgr[4371]: B3C11A0003: removed
May 19 09:44:48 mtcsmgap01a KSMG: Anti-Spam bases applied: publishing-time="2015-09-24T19:58:08"
May 19 09:44:48 mtcsmgap01a KSMG: Anti-Spam bases are obsoleted: 602 days
May 19 09:45:00 mtcsmgap01a KSMG: bases update error: License error
May 19 09:46:21 mtcsmgap01a postfix/postfix-script[4563]: stopping the Postfix mail system
May 19 09:46:21 mtcsmgap01a postfix/master[4366]: terminating on signal 15
May 19 09:46:21 mtcsmgap01a postfix/postfix-script[4636]: starting the Postfix mail system
May 19 09:46:21 mtcsmgap01a postfix/master[4637]: daemon started -- version 2.6.6, configuration /etc/postfix
May 19 09:46:21 mtcsmgap01a KSMG: settings changed: app-settings
May 19 09:50:00 mtcsmgap01a KSMG: bases update error: License error
May 19 09:51:03 mtcsmgap01a KSMG: license key installed: serial="0C7E-0006C7-5536D563", key-type="Trial", functionality-level="Full functionality"
May 19 09:51:04 mtcsmgap01a KSMG: license key is ok: serial="0C7E-0006C7-5536D563", functionalityLevel="Full functionality"
May 19 09:51:35 mtcsmgap01a KSMG: settings changed: task 11 "Updater"
May 19 10:01:24 mtcsmgap01a KSMG: Anti-Virus bases applied: primary_index-publishing-time="19052017 0256", publishing-time="2017-05-19T00:56:00", record-count=9573989
May 19 10:01:24 mtcsmgap01a KSMG: Anti-Virus bases are up to date
May 19 10:01:45 mtcsmgap01a KSMG: Anti-Spam bases applied: publishing-time="2017-05-19T09:50:06"
May 19 10:01:45 mtcsmgap01a KSMG: Anti-Spam bases are up to date
May 19 10:01:47 mtcsmgap01a KSMG: Anti-Virus bases updated
May 19 10:01:47 mtcsmgap01a KSMG: Anti-Spam bases updated
May 19 10:04:08 mtcsmgap01a postfix/postfix-script[6567]: stopping the Postfix mail system
May 19 10:04:08 mtcsmgap01a postfix/master[4637]: terminating on signal 15
May 19 10:04:08 mtcsmgap01a postfix/postfix-script[6640]: starting the Postfix mail system
May 19 10:04:08 mtcsmgap01a postfix/master[6641]: daemon started -- version 2.6.6, configuration /etc/postfix
May 19 10:04:13 mtcsmgap01a postfix/postfix-script[6672]: stopping the Postfix mail system
May 19 10:04:13 mtcsmgap01a postfix/master[6641]: terminating on signal 15
May 19 10:04:13 mtcsmgap01a postfix/postfix-script[6745]: starting the Postfix mail system
May 19 10:04:13 mtcsmgap01a postfix/master[6746]: daemon started -- version 2.6.6, configuration /etc/postfix
May 19 10:04:15 mtcsmgap01a KSMG: settings changed: task 3 "ScanLogic"
May 19 10:16:02 mtcsmgap01a KSMG: settings changed: app-settings
May 19 10:16:54 mtcsmgap01a KSMG: settings changed: app-settings
May 19 10:27:39 mtcsmgap01a KSMG: Flush all messages in MTA queues: success
May 19 10:30:50 mtcsmgap01a postfix/postfix-script[9428]: stopping the Postfix mail system
May 19 10:30:50 mtcsmgap01a postfix/master[6746]: terminating on signal 15
May 19 10:30:51 mtcsmgap01a postfix/postfix-script[9503]: starting the Postfix mail system
May 19 10:30:51 mtcsmgap01a postfix/master[9504]: daemon started -- version 2.6.6, configuration /etc/postfix
Go to the top of the page
 
+Quote Post

Reply to this topicStart new topic

 



Lo-Fi Version Time is now: 24.05.2017 04:26