This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences

Test Mail getting failed

cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

Test Mail getting failed

Go to solution
VishnuPS
L3 Networker

‎09-02-2021 04:41 AM

Dear Team,

 

We have tried to create a email scheduler, We don't have a local SMTP server. We getting the below error,

 

VishnuPS_0-1630582731903.jpeg

 

Please find the packet flow below.

 

c2s flow:
                source:      10.1.1.5 [LAN]
                dst:         172.217.194.109
                proto:       6
                sport:       56175           dport:      25
                state:       INIT            type:       FLOW
                src user:    unknown
                dst user:    unknown
                ecmp id:     8000

        s2c flow:
                source:      172.217.194.109 [WAN]
                dst:         182.74.53.90
                proto:       6
                sport:       25              dport:      64050
                state:       INIT            type:       FLOW
                src user:    unknown
                dst user:    unknown

        start time                           : Thu Sep  2 14:27:23 2021
        timeout                              : 15 sec
        total byte count(c2s)                : 541
        total byte count(s2c)                : 700
        layer7 packet count(c2s)             : 7
        layer7 packet count(s2c)             : 8
        vsys                                 : vsys1
        application                          : gmail-base
        rule                                 : PaloAlto-Management-Email
        service timeout override(index)      : False
        session to be logged at end          : True
        session in session ager              : False
        session updated by HA peer           : False
        address/port translation             : source
        nat-rule                             : Outgoing_Internet-Airtel(vsys1)
        layer7 processing                    : enabled
        URL filtering enabled                : True
        URL category                         : any
        session via syn-cookies              : False
        session terminated on host           : False
        session traverses tunnel             : False
        session terminate tunnel             : False
        captive portal session               : False
        ingress interface                    : ethernet1/1
        egress interface                     : ethernet1/3
        session QoS rule                     : N/A (class 4)
      tracker stage firewall               : TCP FIN
        end-reason                           : tcp-fin

 

Packet flow seems good but still getting test mail error like unable to send mail via gateway smtp.gmail.com

 

 

Regards,

Vishnu

 

0 Likes Likes
2 accepted solutions

Accepted Solutions

Go to solution
ShaiW
L4 Transporter

‎09-02-2021 05:37 AM

Hi

What PANOS version are you running?

Please note that PAN 9.1 and below only support standard SMTP (unauthenticated).

In PANOS 10.0 and above you can now configure SMTP over TLS, different destination ports and SMTP authentication - all of which you need when sending through Gmail.

Palo Alto's help page:

https://docs.paloaltonetworks.com/pan-os/10-0/pan-os-admin/monitoring/configure-email-alerts.html

Gmail's help page (note step 2 - outgoing):

https://support.google.com/mail/answer/7126229?hl=en#zippy=%2Cstep-change-smtp-other-settings-in-you...

 

Hope this helps,

Shai

View solution in original post

0 Likes Likes

Go to solution
LAYER_8
L5 Sessionator

‎09-03-2021 09:49 AM

+1 to the above, my NGFWs running 10.0.6 are able to auth to smtp.gmail.com as where the NGFWs running 9.1.x are not and require internal server.

 

 

Help the community! Add tags and mark solutions please.

View solution in original post

0 Likes Likes
2 REPLIES 2

Go to solution
ShaiW
L4 Transporter

‎09-02-2021 05:37 AM

Hi

What PANOS version are you running?

Please note that PAN 9.1 and below only support standard SMTP (unauthenticated).

In PANOS 10.0 and above you can now configure SMTP over TLS, different destination ports and SMTP authentication - all of which you need when sending through Gmail.

Palo Alto's help page:

https://docs.paloaltonetworks.com/pan-os/10-0/pan-os-admin/monitoring/configure-email-alerts.html

Gmail's help page (note step 2 - outgoing):

https://support.google.com/mail/answer/7126229?hl=en#zippy=%2Cstep-change-smtp-other-settings-in-you...

 

Hope this helps,

Shai

0 Likes Likes

Go to solution
LAYER_8
L5 Sessionator

‎09-03-2021 09:49 AM

+1 to the above, my NGFWs running 10.0.6 are able to auth to smtp.gmail.com as where the NGFWs running 9.1.x are not and require internal server.

 

 

Help the community! Add tags and mark solutions please.
0 Likes Likes
  • 2 accepted solutions
  • 7561 Views
  • 2 replies
  • 0 Likes
Like what you see?

Show your appreciation!

Click Like if a post is helpful to you or if you just want to show your support.

Click Accept as Solution to acknowledge that the answer to your question has been provided.

The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!

These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!

The LIVEcommunity thanks you for your participation!

LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2024 - Palo Alto Networks