Mar,
Please read this because this is a classic a case :
http://xyproblem.info/You have come here and asked a question because you are stuck and don't know how to fix things and users here are doing their best to assist you. Some of them having been using SME for over 20 years. You should try and trust what they say, and answer their questions precisely. They are not doing this for fun, and most are not getting paid either, unlike you.
You have not been very detailed, consistent, methodical or accurate with your comments and replies which makes it REALLY hard to help you.
Lets go back and remember your
ORIGINAL question:
Our internal users connect to the e-mail through secure pop / imap./
Currently the server accepts mails from internal users to internal users unauthenticated on port 25
Now look where we have got to. We finally discover your SME is in server-gateway running its own firewall, and behind a data center firewall, and not a local network in sight:
This appears to be a non standard use of SME server & it does not surprise me that you are having problems & that our suggestions do not work for you.
I dis agree because it is normal to keep your server in datacenter and the datacenter has thier own firewall
Now, you can disagree all you want, but the point you are missing is that SME is designed to be used in certain ways, and if you don't follow the methods then it will not function as you expect, no matter what you do.
Hmmm:
User1 is able to send mail to user2 without password and any authentications on port 25.
both: the server and the client are now on the same subnet.
it is a mail server located in EU and the local network is in different area.
So it is a server in a data center behind a firewall on the same subnet as the clients which are somewhere else entirely.
Really?
The email is an independent function regardless the other network or its location.
You don't understand much about email then. Yes, it is an independent "process". BUT how it works will depend on its network and location and a number of other factors.... as you have discovered.
What I think it is miss function in qmail.
Ok so which function in qmail is that? Or is it part of the xyproblem?
Your problem is not really understanding how SME (and email in general) works in the first place, and if we could "just fix qmail you would be OK".
"User doesn't know how to do X, but thinks they can fumble their way to a solution if they can just manage to do Y."
You have decided what the problem is, and how it can be fixed, without actually understanding any of it. All you want is confirmation bias, not a proper solution. No one here can fix that.
We will see on the other server which is I am working on.
That is entirely dependent on where it is and what you are actually trying to prove.
So, go right back to the start.
I suggest you run this and picpaste the content somewhere where we can look at it:
https://your.server.ip/server-manager/cgi-bin/bugreportI also suggest you draw a network layout which we can actually see. It might help people to visualize the situation. Server, firewall, subnets, etc etc
Can you also post the output of:
cat /var/service/qpsmtpd/config/peers/local |grep -n cvm-unix
This is where Authentication should be set, not qpsmtpd:
config show smtpd
config show ssmtpd
Thank you.