exchange 2003 hosting multiple domains

Posted on 2004-03-31
Last Modified: 2010-03-05
My exchange 2003 server is working fine. I now have to host another domain on this server. The MX record for this second domain points to a different IP. i.e = = We own the IP's I have setup my firewall to for 1 to 1 NAT for the and configured my exchange server with another private ip address of I have also created a recipient policy with the new domain name and applied the policy to the users who need it, and i checked the box "this organization is responsible for" I then went to my default SMTP server, clicked the advanced tab, and added in the private ip so it would listen on it.

When i try and send an email to from an outside account I get a return message that says

Final-Recipient: RFC822; < >
Action: failed
Status: 5.1.1
Diagnostic-Code: smtp; 550 5.7.1 Unable to relay for

Am I on the right track here or way off?

Question by:kjman
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
  • 2

Expert Comment

ID: 10723428
Make sure that once you have created the policy, you right click on it and choose to apply this policy now, and hit yes, to apply now.

Might be one thing


Author Comment

ID: 10723698
Yea I did that, but still no luck. Am i on the right track here?
LVL 20

Expert Comment

ID: 10724784
you should point your MX record for DomainB to the same IP address as DomainA.

i.e DomainA-->  MX record= and
     DomainB---> MX record =

Since your exchange server is having 1 to 1 NAT with firewall. the mail for is arriving to the IP address and then passed on to your exchange server (NAT rule). But the mail for is arriving at IP address and ending up nowhere as your exchange is having 1 to 1 mapping with IP address
test your DNS report and MAIL test at
So change the MX record for domainB to IP address to allow the the e-mail flow.
change of MX record will take 48 hours to propogate to all the public DNS servers.

Hope this solves your problem .

Also check;EN-US;318635 for server configuration

Author Comment

ID: 10725195
But the mail for is arriving at IP address and ending up nowhere as your exchange is having 1 to 1 mapping with IP address

Well I created a separate 1 to 1 NAT rule for to map to so this would mean that I have two 1 to 1 NAT rules configured. one for maping to and one for maping to With this in place I can send emails to no sweat, and i know that the second 1 to 1 NAT rule on the firewall is setup correctly because when i send an email to I get a unable to realy message bounced back to me. This tells me that the port 25 is open on the firewall for but its exchagne that doesnt like

You are right though about making both domains MX records point to the same IP address, and i have done that. I think this will make things a bit less complicted, and easy to understand.


Accepted Solution

timiano earned 500 total points
ID: 10725791
Its almost certainly the recipient update service not adding the policy....I'm confused!, but then I suppose you are too :-)

Go into AD users and computers and check that the user you are sending to has that domain listed as one of its proxy addresses.  If not, go back into the policy and make sure the tick is in the box, and make sure you haven't got some funky ldap filter on it.


Featured Post

Are your AD admin tools letting you down?

Managing Active Directory can get complicated.  Often, the native tools for managing AD are just not up to the task.  The largest Active Directory installations in the world have relied on one tool to manage their day-to-day administration tasks: Hyena. Start your trial today.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This article lists the top 5 free OST to PST Converter Tools. These tools save a lot of time for users when they want to convert OST to PST after their exchange server is no longer available or some other critical issue with exchange server or impor…
Unified and professional email signatures help maintain a consistent company brand image to the outside world. This article shows how to create an email signature in Exchange Server 2010 using a transport rule and how to overcome native limitations …
In this video we show how to create an Accepted Domain in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Mail Flow >> Ac…
The video tutorial explains the basics of the Exchange server Database Availability groups. The components of this video include: 1. Automatic Failover 2. Failover Clustering 3. Active Manager

688 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question