Solved

Exchage 2003 email rejected to some domains.

Posted on 2004-08-19
8
4,174 Views
Last Modified: 2012-05-05
HELP!  This is a new installation of Exchange 2003.  I can receive email from the internet, and can send it anywhere from a OWA.  HOWEVER when I try to send email from Outlook some goes through and some bounces back with Undeliverable #5.5.0 smtp;550.

To fix I have tried the following:

1. I set up the internal dns entry for mail.company.com with the public IP address and set up the mx mail.company.com.

2. I also ran the Exchange System Manager, Internet Email Wizard and I get an error:  To send internet email the selected server cannot be a bridgehead server  ID no: c103b530  Exchange System Manager.

Our IP was previously used as a relay but I am working on correcting that now.

What I don't understand is why it works with exchange OWA without problem, and fails to some domains when using outlook.  It is the same server!

Thanks

0
Comment
Question by:avsc
8 Comments
 
LVL 5

Assisted Solution

by:Dragonmen
Dragonmen earned 166 total points
ID: 11839466
Check your internet provider settings - if it is using some kind of mail (spam) control and rejects some emails.
Could also be that some domains are cached bad and not allowing the mail to reach it's recipients.
Try to telnet on the domains that have emails rejected and send email to that user:

telnet domainthatcanthavemailsent.com 25
helo domainthatcanthavemailsent.com
mail from: I@Me.com
rcpt to: "user email"
data
Just testing
.

It you get some error that means it's IP is not resolved ok.
0
 
LVL 3

Assisted Solution

by:tsorensen55
tsorensen55 earned 166 total points
ID: 11840889
You also might want to make sure that if you have it set in exchange to require authentication for outgoing mail, that it is setup properly in the outlook clients. OWA i believe already considers you having authenticated by logging in via the web so there are no settings to define there.
0
 

Author Comment

by:avsc
ID: 11844330
Dragonmen: Here is my results from the telnet.    The line that reads 250 2.1.5 "david@avsc.com"@slingmedia.com looks funny to me the way it is formatted. Is this right? or is this a clue to my problem?

220 slingscream.slingmedia.com Microsoft ESMTP MAIL Service, Version: 6.0.3790.0
 ready at  Thu, 19 Aug 2004 10:54:11 -0700
helo mail.slingmedia.com
250 slingscream.slingmedia.com Hello [208.54.100.241]
mail from: david@slingmedia.com
250 2.1.0 david@slingmedia.com....Sender OK
rcpt to: "david@avsc.com"
250 2.1.5 "david@avsc.com"@slingmedia.com
data
354 Start mail input; end with <CRLF>.<CRLF>
Just testing 1234
.
250 2.6.0 <SLINGSCREAMoYAPNXRP00000009@slingscream.slingmedia.com> Queued mail f
or delivery

tsorensen55: Could you walk me thourgh setting authentication on the server and on the client.  Thanks
0
Simplifying Server Workload Migrations

This use case outlines the migration challenges that organizations face and how the Acronis AnyData Engine supports physical-to-physical (P2P), physical-to-virtual (P2V), virtual to physical (V2P), and cross-virtual (V2V) migration scenarios to address these challenges.

 
LVL 16

Accepted Solution

by:
Nyaema earned 168 total points
ID: 11863840
set up the internal dns entry for mail.company.com with the internal IP address of the server and not the external

Also urgently sort out the IP relay problem...
because if your IP is registered as a relay,
you definately get some mail going out and others bouncing.
0
 

Author Comment

by:avsc
ID: 11865071
It seems that  the entry in the open relay database was causing the bounce.  I knew that was at least part of the problem, however the fact that I could send via the web client without a bounce still has me puzzled.  I had submitted changes to have the IP removed from the open relay before I posted this question so I will split the points between all who contributed.  Thanks to all for the input.
0
 
LVL 3

Expert Comment

by:tsorensen55
ID: 11869969
Do you still need the step by step instructions on setting up the server to require authentication for outgoing mail? Just let me know and I will get it posted ASAP.
0
 

Author Comment

by:avsc
ID: 11870877
tsorensen55: Yes,  I would like that.  Also, if you have any tips for securing OWA that would be great!
0
 
LVL 3

Expert Comment

by:tsorensen55
ID: 11872326
OK first things first, the exchange server part. Since you are running Exchange 03 I’ll do it step by step in how I see it on our Exchange 03 server.
1.      Open the Exchange System Administrator.
2.      Expand the Administrative Groups.
3.      Expand the domain.
4.      Expand Servers.
5.      Expand the server name.
6.      Expand Protocols.
7.      Expand SMTP.
8.      Right click on the Virtual SMTP Server.
9.      Left click on properties.
10.      Click on the access tab.
11.      Click on authentication button at top.
12.      the 3 check boxes we have selected are:
a.      Anonymous Access
b.      Basic Authentication (password sent in clear text)
c.      Integrated Windows Authentication
13.      Click on Users button at bottom of that screen
14.      Make sure authenticated users are listed.
15.      Click ok out of “Permissions for Submit and Relay window
16.      Click OK out of “Authentication” window
17.      Click on relay button at bottom of the “Default SMTP  Virtual Server Properties” window
18.      Select “Only the listed below” option. Ours we keep blank since everyone sends from either inside the company, or from across the VPN.
19.      We also have the box checked for “Allow all computers which successfully authenticate to relay, regardless of the list above.
20.      Click OK
21.      OK out of properties window.

That should take care of the Exchange server part. Now for the Outlook options. This only applies if the users’ Outlook is configured for pop. If they are setup to use exchange, then there is no need for setting up authentication type because they are already authenticated in just opening up the mailbox store when they open Outlook. Incase you have pop clients though, here are the steps.

1.      In outlook click on tools, and then email accounts
2.      Select view or change existing e-mail accounts at the wizard prompt and click next.
3.      Double-Click the appropriate account
4.      Click the more settings button near bottom right.
5.      Click on the Outgoing tab
6.      Select “my outgoing server requires authentication”
7.      Select “Use the same settings as incoming mail server

That should take care of the steps. As far as securing OWA, it works just like an Outlook client being configured to run connected to an exchange server. It already has the authentication embedded when you log on.
0

Featured Post

Enterprise Mobility and BYOD For Dummies

Like “For Dummies” books, you can read this in whatever order you choose and learn about mobility and BYOD; and how to put a competitive mobile infrastructure in place. Developed for SMBs and large enterprises alike, you will find helpful use cases, planning, and implementation.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Today, still in the boom of Apple, PC's and products, nearly 50% of the computer users use Windows as graphical operating systems. If you are among those users who love windows, but are grappling to keep the system's hard drive optimized, then you s…
All of the resources available today make learning a new digital media easier than ever-- if you know where to begin. This is a clear, simple guide to a few of the basic digital art mediums and how to begin learning them on your own.
This video demonstrates how to use each tool, their shortcuts, where and when to use them, and how to use the keyboard to improve workflow.
This is used to tweak the memory usage for your computer, it is used for servers more so than workstations but just be careful editing registry settings as it may cause irreversible results. I hold no responsibility for anything you do to the regist…

809 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question