CONFIGURING


Changing the inbound SMTP port settings

Inbound port settings affect how other SMTP hosts connect to HCL Domino®. For inbound connections, you can specify TCP/IP port settings and TLS port settings. For both ports you can define port numbers, port status, and the supported authentication methods.

Configuring SMTP authentication options on servers that use Internet Site documents

About this task

On servers that use Internet Site documents, the SMTP service obtains port authentication settings from the Security tab of the SMTP Inbound Site document, rather than from the Server document. As a result, when Internet Site documents are used, you cannot use the Server document to configure TCP/IP and TLS authentication settings for the SMTP port. Settings in the Server document still provide the port numbers and status for the SMTP TCP/IP and TLS ports, and enable the SMTP ports to honor server access restrictions.

To determine whether the use of Internet Site documents is enabled for a server, check the value of the Load Internet configurations from Server\Internet Sites documents field on the Basics tab of the Server document. If this field is set to Enabled, the server uses Internet Site documents to configure all of its Internet protocols (SMTP, IMAP, POP3, and so forth).

If the server uses Internet Site documents, then you must use Site documents to configure all Internet protocols on the server. If an SMTP Site document is not present in the Domino Directory, or the authentication options in a configured SMTP Site document are set to No, users cannot connect to the SMTP service. In each case, SMTP clients receive the error This site is not enabled on the server. when attempting to connect to the SMTP service:

Changing the default port number

About this task

By default, after you enable the SMTP task, it "listens" for client connections on TCP/IP port 25 on the Domino server. The default SMTP TLS port is port 465. In some cases -- for example, on partitioned servers -- you might need to specify a port number other than the default to avoid conflicts. You might also change the default port to a nonstandard port number to hide it from clients attempting to connect to the default port or if another application uses the default port on the server.

Disabling the SMTP inbound TCP/IP port or TLS port prevents other servers from accessing the SMTP Listener on that port.

Note: On servers with multiple TCP/IP ports, by default, the SMTP service uses the port listed first in the NOTES.INI file as the preferred path. You can configure the service to use a different port.

Changing the default SMTP greeting

About this task

You can modify the default reply that the SMTP service sends in response to a connecting host. By default, the Domino SMTP server reveals its host name and software version to connecting clients. For security reasons, you can change the default greeting so that the server does not disclose essential information. Use the variable SMTPGreeting in the NOTES.INI file to customize the SMTP service greeting.

To change inbound SMTP TCP/IP port settings

About this task

Keep the following in mind when selecting options:


Procedure

1. From the Domino Administrator, click the Configuration tab and then open the Server document for the server that runs the SMTP service.

2. Click the Ports -> Internet Ports -> Mail tab.

3. In the Mail (SMTP Inbound) column, complete these fields, and then click Save & Close:


4. Restart the SMTP task to put the new settings into effect.
Results

If you change the default SMTP port, inbound SMTP connections fail if the connecting host is not configured to use the new port. See the related links for information about configuring Domino servers to connect to nonstandard SMTP ports.

To change inbound SMTP TLS port settings

About this task

If you change the default TLS port, inbound SMTP TLS connections fail unless the connecting host is configured to use the new port.

Procedure

1. Familiarize yourself with the Domino security model.

2. To secure SMTP sessions using TLS, set up TLS on the Domino server.

3. From the Domino Administrator, click the Configuration tab and then open the Server document for the server that runs the SMTP service.

4. Click the Ports -> Internet Ports -> Mail tab.

5. In the Mail (SMTP Inbound) column, complete these fields, and then click Save & Close:


6. Restart the SMTP task to put the new settings into effect.
Related concepts
Understanding Internet site documents on Domino servers
Changing SMTP port settings
Customizing SMTP Routing
Overview of Domino security
TLS security
Name-and-password authentication for Internet/intranet clients
Restricting SMTP inbound routing

Related tasks
Binding an Internet service to an IP address
Specifying enforcement of inbound relay controls
Supporting inbound SMTP extensions
Stopping and starting the Domino SMTP service
Updating the SMTP configuration
Changing outbound SMTP port settings
Creating an Internet site document