#5.7.1 smtp;550 5.7.1 Unable to relay

Try this....open you System Manager...Click on servers...then your server...Then expand your Protocols, and click on your SMTP folder....right click on your Default SMTP Virtual Server and go to properties...Click on the Access Tab and then relay and make sure that your "Allow all computers that successfully authenticate to relay, reguardless of the list above.  That should fix it...

I am getting the following NDR error message returned ocassionally.  
"You do not have permission to send to this recipient. For assistance, contact your system administrator.
<mail1.company.com #5.7.1 smtp;550 5.7.1 Unable to relay for jboxer@usercompany.com"

Sending to the same email address works sometimes and sometimes not.    

I've looked into MS' KB and could not find any solutions.    

We're using exchange 2K, SP3 on Win2K Serv SP3.  I have two domains.  The other domain is win Nt sp6.
I have checked the following suggested fix and this setting was already set.  

Try this....open you System Manager...Click on servers...then your server...Then expand your Protocols, and click on your SMTP folder....right click on your Default SMTP Virtual Server and go to properties...Click on the Access Tab and then relay and make sure that your "Allow all computers that successfully authenticate to relay, reguardless of the list above.  

Any other suggestions or ideas?

Thanks in advance.

new user, new question - no freebies here ;)

This should solve your problem. I have just had the same issue and solved it.

Now I you say that you have 2 domains, I am not sure if you mean 2 windows domain or 2 FQDN on your server.

However what you need to do is change the following your the last server that your email travels thru before leaving your domain.

1.) Goto your Exchange administrator MMC.
2.) Under your administrative group and %YourServerName% open the Protocols folder and under SMTP, goto the properties of your Default SMTP Virtual server.
3.) Click on "Delievery" tab and then the "Advanced" button.
4.) under Fully-qualified domain name.  Put in...  "%YourServerName%.company.com"
5.) Press OK and test.

Cheers

I've tried everything mentioned above and am still having intermittent email, any other suggestions?  

Is your mail going out through a Antispam type setup or are you using DNS?

Concerning the FQDN:

>>  4.) under Fully-qualified domain name.  Put in...  "%YourServerName%.company.com"

    Does the server name need to be internal server name or the external?  When I put the internal server name, it does not pass the test.

Thanks,
    DAve

it should pass the test if it is formatted correctly:

name.domain.local
name.domain.com
name.domain.org
etc...

Pick the correct format

I am having the very same difficulty. Exchange 2000 Ent. with over 4500 mailboxes. When we send OUT we are getting this message. If we resend the email it will eventually go to the external receiving server. Never internally does this happen.

Have already in place the fully qualified domain name and Anonymous access checked in the Access Control portion of the virtual server.

All of the email that this happens with have been other private networks. And is only intermittant. Our only guess thus far has been that the receiving server was busy at the time of first transmission. Second (sometimes third) transmission works.

Am using Spam Server.
Surf Control Spam Filter software with Surf Control Server (their hardware) adminstered internally.
Any help with this would be greatly appreciated.

Candrso, what are the messages you getting? and routing path / FQDN's?  

do any of the undeliverable messages have this server listed, spamhaus.org? I found that my organization's IP was listed on this blacklist and we received many undeliverable and delayed e-mails. check the site out.

            You do not have permission to send to this recipient.  For assistance, contact your system administrator.
            <MyServer@MyDomain.com #5.7.1 smtp;550 5.7.1 Unable to relay for OutsideUser@OutsideDomain.com>

These are not relayed messages.
Which blacklist was it that you found you were on? I found one that we were on, but it is just some person who decided to put a list out there. Not a reputable company. He has the right to put whomever he wants on this list at his discretion.

Candrso,

Did you ever find a resolution for this "unable to relay" issue?

No, I haven't, el jeffe. You would be the first to know if I did.

candrso,

Try this....open you System Manager...Click on servers...then your server...Then expand your Protocols, and click on your SMTP folder....right click on your Default SMTP Virtual Server and go to properties...Click on the Access Tab and then relay and make sure that your "Allow all computers that successfully authenticate to relay, reguardless of the list above.  That should fix it...

mgcarney,

Thank you for the response.  The "Allow all...." under the Relay Restrictions area is already checked and has been checked for some time.  Is there anything else you can thing of?  Perhaps something in conjunction with the "Allow all..." function?

now do you have any computer granting relay?  If not try selecting only the list below and granting the server ip address the relay permissions under the access tab advanced settings...

and is everyone set up to authenticate in their outlook or outlook express smtp tab of the advanced settings?

If not, in outlook click on tools, email accounts select the email account and then click change.    Click on More Settings, then under the outgoing server tab check My outgoing server (SMTP) requires authentication.  Make sure the radio button Use same settings as my incoming mail server...then press OK.  That may be your problem.

There are no hosts specified for relay in the Relay Restrictions area.  Also, all Outlook hosts should be set up for authentication and we do not use outlook express.  The issue is intermittant and not related to specific users... it's very difficult to troubleshoot because it cannot be forcibly replicated.

try switching to GroupWise...

Go to DNSStuff.com and do a spam database lookup for your external IP's. Do you have more than 1 gateway. That would explain the intermittancy.

hi,
Your message did not reach some or all of the intended recipients.

      Subject:      test6
      Sent:      6/11/2008 8:49 AM

The following recipient(s) cannot be reached:

      xyz@abc.com on 6/11/2008 8:50 AM
            There was a SMTP communication problem with the recipient's email server.  Please contact your system administrator.
            <hertland.com #5.5.0 smtp;550 Rule imposed mailbox access for xyz@abc.com refused, FQDN required>

I asolved above issue by keeping mail.hertland.com in fully qualified domain name in advanced tab of virtual smtp connector.
jay

Is Checking the Allow all computer who authenticates regardless of the list above to relay not a spammer's invitation?

We have had similar issues when our WAN link to rest of the companies Exchange servers has been down.  If you say it is intermittent then it is unlikely to be setting issue. Check your conectivity to email routing partners.