@resto 

Welcome to this user forum for BT Retail phone and broadband customers.

Are you a BT Business Customer?

I would guess that its BT preventing mail spam being generated, by blocking those ports, and only allowing http and https connections. 

Hi Keith,

No, residential. I just want to read my email on my phone!

Is there a way of opening a ticket to get them to re-open the ports?

Thank you, appreciate you replying.

@resto 

I have no idea, maybe another forum member can help?

This is just a customer to customer help forum, everyone here, including myself, are just customers.

The only BT Employees are the forum moderators.

Hi Keith,

Yeah, I get that & apprecite you replying.

I guess I just need the actual support avenue to go down 🙂 Struggling to find that, hence posting here.

Thank you.

@resto 

I will do some assumptions here so if any of these are wrong then do forgive me.

Assuming that the Mail Server in question is one you are hosting at your home address. And you are trying to get to this from your home, I believe I understand what is happening.

From outside your LAN, anywhere else on the internet, you will be going to the DNS name which then resolves through Dynamic DNS to your assigned public IP address and filter through your Smart Hub to your mail server on your LAN. No issue.

From internal you are looking for the DNS name that resolves through Dynamic DNS to your external public IP address which your Smart Hub already knows is you. So modern routers have a firewall rule inbuilt and hidden to stop this loop, as you will be ‘public IP’ as the source and the same ‘Public IP’ as the destination. Could be the http and https it is picking up is therefore the LAN side of the Smart Hub itself.

You could test this to a certain extent by using a VPN or iCloud Private Relay on an Apple device, and from your LAN then trying the same thing. As the source address will then be different it should allow you to reach the destination.

This does therefore mean you would need to rethink how to get to your mail server as it won’t work internally unless your LAN DNS is replaced by a local one that basically tells anything on the lan that mail.externaladdress.com actually resolved to 192.168.1.1 (or whatever private address of your mail server) instead of public IP address of your BT Router.

Sorry, I should have mentioned that this is a public machine, in a data centre.

@resto then ignore everything I said 😄

Just thinking about this, though. It is doubtful that BT would be Firewalling ‘outgoing’ connections to anywhere. I could understand ‘incoming’ connections, but why would they care to restrict connections going out of their network to a random data centre, to an IP address they wouldn’t know about, and yet allow HTTP and HTTPS? Somehow seems unlikely.

What might be more likely is that you have a firewall set up at the data centre that is restricting access from certain IP addresses for ‘incoming’ connections to only http or https. Whether you did this, or perhaps the datacentre. As to why or how, I don’t know, as your IP would be dynamically assigned from BT. But I would check the firewall settings on and around your mail server and ask the hosting company why they might be blocking access.