Who knows how to configure KSMG Exchange?

Good evening.

A bunch of MS Exchange 2010 + OFT. The first mail server, and the second - antispam. Decided to replace the OFT-virus Kaspersky Security Mail Gateway. He perfectly accepts and filters the mail, but I can't send mail. Writes: Unable Relay. I understand that obviously the problem is the authentication on the Exchange server, but Kaspersky is included in the allowed network and registered as a relay to Exchange.
There is an assumption that you must configure authentication on the Exchange, but you can not do without her? The fact that there is no password for SSH to configure it.
March 19th 20 at 08:22
2 answers
March 19th 20 at 08:24
Like they even have the documentation in Russian:
Integration of Kaspersky Secure Mail Gateway in pochtovoe...
  • Directly, when Kaspersky Secure Mail Gateway is used as a border gateway.
  • Through an edge gateway that is running the SMTP test e-mail addresses of message recipients.
  • Through the border gateway, which is disabled SMTP-verify e-mail addresses of message recipients.

From your message it is not clear how you have it built into the system. Who writes Unable Relay...
Configured directly, as a border gateway. The bump gives Exchange. - Rico76 commented on March 19th 20 at 08:27
@Rico76,
I find it difficult to you than that to help, I see that there are 4 steps.
I think step 1 you did - added local domains, otherwise I would not go mail inside
Think step 2 you've done - otherwise your KSMG would not know where to forwardit whadaya new mail to local domains.
But step 3 under suspicion, for there I feel I need to add or subnet the entire local network (if you trust), or the IP addresses of the exchange servers in your organization that needs to send mail through this Riley out. And here if added, perhaps with an error, or added subnet, but the setting is not applied, or something else.
I don't think in Casper that is extraordinary. Just a front-end later.
In the end there is support, where you can write, I think will help you. - sanford.Runte commented on March 19th 20 at 08:30
March 19th 20 at 08:26
There is an opinion that you want your mail server to only accept mail from a relay server (corny its IP on CAS to add)
No authorization for the relay you do not need.
Works according to the principle, got the mail, checked, and determined to whom (the domain), sent to the PI email server which is fixed for a given domain.

Find more questions by tags Microsoft ExchangeMail server