Test Mail getting failed

cancel
Showing results for 
Search instead for 
Did you mean: 

Test Mail getting failed

L3 Networker

Dear Team,

 

We have tried to create a email scheduler, We don't have a local SMTP server. We getting the below error,

 

VishnuPS_0-1630582731903.jpeg

 

Please find the packet flow below.

 

c2s flow:
                source:      10.1.1.5 [LAN]
                dst:         172.217.194.109
                proto:       6
                sport:       56175           dport:      25
                state:       INIT            type:       FLOW
                src user:    unknown
                dst user:    unknown
                ecmp id:     8000

        s2c flow:
                source:      172.217.194.109 [WAN]
                dst:         182.74.53.90
                proto:       6
                sport:       25              dport:      64050
                state:       INIT            type:       FLOW
                src user:    unknown
                dst user:    unknown

        start time                           : Thu Sep  2 14:27:23 2021
        timeout                              : 15 sec
        total byte count(c2s)                : 541
        total byte count(s2c)                : 700
        layer7 packet count(c2s)             : 7
        layer7 packet count(s2c)             : 8
        vsys                                 : vsys1
        application                          : gmail-base
        rule                                 : PaloAlto-Management-Email
        service timeout override(index)      : False
        session to be logged at end          : True
        session in session ager              : False
        session updated by HA peer           : False
        address/port translation             : source
        nat-rule                             : Outgoing_Internet-Airtel(vsys1)
        layer7 processing                    : enabled
        URL filtering enabled                : True
        URL category                         : any
        session via syn-cookies              : False
        session terminated on host           : False
        session traverses tunnel             : False
        session terminate tunnel             : False
        captive portal session               : False
        ingress interface                    : ethernet1/1
        egress interface                     : ethernet1/3
        session QoS rule                     : N/A (class 4)
      tracker stage firewall               : TCP FIN
        end-reason                           : tcp-fin

 

Packet flow seems good but still getting test mail error like unable to send mail via gateway smtp.gmail.com

 

 

Regards,

Vishnu

 

2 ACCEPTED SOLUTIONS

Accepted Solutions

L3 Networker

Hi

What PANOS version are you running?

Please note that PAN 9.1 and below only support standard SMTP (unauthenticated).

In PANOS 10.0 and above you can now configure SMTP over TLS, different destination ports and SMTP authentication - all of which you need when sending through Gmail.

Palo Alto's help page:

https://docs.paloaltonetworks.com/pan-os/10-0/pan-os-admin/monitoring/configure-email-alerts.html

Gmail's help page (note step 2 - outgoing):

https://support.google.com/mail/answer/7126229?hl=en#zippy=%2Cstep-change-smtp-other-settings-in-you...

 

Hope this helps,

Shai

View solution in original post

L4 Transporter

+1 to the above, my NGFWs running 10.0.6 are able to auth to smtp.gmail.com as where the NGFWs running 9.1.x are not and require internal server.

 

 

Help the community! Add tags & mark solutions please.

View solution in original post

2 REPLIES 2

L3 Networker

Hi

What PANOS version are you running?

Please note that PAN 9.1 and below only support standard SMTP (unauthenticated).

In PANOS 10.0 and above you can now configure SMTP over TLS, different destination ports and SMTP authentication - all of which you need when sending through Gmail.

Palo Alto's help page:

https://docs.paloaltonetworks.com/pan-os/10-0/pan-os-admin/monitoring/configure-email-alerts.html

Gmail's help page (note step 2 - outgoing):

https://support.google.com/mail/answer/7126229?hl=en#zippy=%2Cstep-change-smtp-other-settings-in-you...

 

Hope this helps,

Shai

View solution in original post

L4 Transporter

+1 to the above, my NGFWs running 10.0.6 are able to auth to smtp.gmail.com as where the NGFWs running 9.1.x are not and require internal server.

 

 

Help the community! Add tags & mark solutions please.

View solution in original post

Like what you see?

Show your appreciation!

Click Like if a post is helpful to you or if you just want to show your support.

Click Accept as Solution to acknowledge that the answer to your question has been provided.

The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!

These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!

The LIVEcommunity thanks you for your participation!