• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 3039
  • Last Modified:

5.4.0 NDRs when sending to one domain (nextel.blackberry.net)

I still desperately trying to get this issue resolved...

Here is the deal.. I have a single Exchange 2003 server on Server 2003 that is also the DC and DNS server for a small business. The company just got a few BlackBerrys through Nextel. The problem is we cannot send to the blackberry addresses from inside the internal network. The domain we are sending to is user@nextel.blackberry.net. My end goal is to setup a Exchange 2003 contact to forward any messages coming into our user1@domain.com to the user1@nextel.blackberry.net address.The exact NDS is as follows:

Your message did not reach some or all of the intended recipients.

Subject: test
Sent: 5/3/2005 9:58 AM

The following recipient(s) could not be reached:

  John Doe (Blackberry Email) on 5/3/2005 9:58 AM
  The destination server for this recipient could not be found in Domain Name Service (DNS). Please verify the email address and retry. If that fails, contact your administrator.
  <emailserver.domain.com #5.4.0>

I can email any other external domain fine. I don't understand why this one is not working. I don't know of any other name.domain.com to try (not sure of that even matters). I tried to send to the nextel.blackberry.net domain from many other locations (work, school, ect.) and it works fine. I did a NSLOOKUP I get a reply, yet the email still does get delivered when I send test messages from here:



Microsoft Windows [Version 5.2.3790]
(C) Copyright 1985-2003 Microsoft Corp.

C:\Documents and Settings\justin>nslookup -q=mx nextel.blackberry.net
Server:  server.domain.com
Address:  192.168.8.5

Non-authoritative answer:
nextel.blackberry.net   MX preference = 10, mail exchanger = mx01.bwc.na.blackbe
rry.net
nextel.blackberry.net   MX preference = 10, mail exchanger = mx02.bwc.na.blackbe
rry.net
nextel.blackberry.net   MX preference = 10, mail exchanger = mx03.bwc.na.blackbe
rry.net
nextel.blackberry.net   MX preference = 10, mail exchanger = mx04.bwc.na.blackbe
rry.net
nextel.blackberry.net   MX preference = 10, mail exchanger = mx05.bwc.na.blackbe
rry.net
nextel.blackberry.net   MX preference = 10, mail exchanger = mx06.bwc.na.blackbe
rry.net
nextel.blackberry.net   MX preference = 10, mail exchanger = mx07.bwc.na.blackbe
rry.net
nextel.blackberry.net   MX preference = 10, mail exchanger = mx08.bwc.na.blackbe
rry.net

mx01.bwc.na.blackberry.net      internet address = 206.51.26.128
mx01.bwc.na.blackberry.net      internet address = 206.51.26.154
mx01.bwc.na.blackberry.net      internet address = 206.51.26.134
mx02.bwc.na.blackberry.net      internet address = 206.51.26.129
mx02.bwc.na.blackberry.net      internet address = 206.51.26.208
mx02.bwc.na.blackberry.net      internet address = 206.51.26.135
mx03.bwc.na.blackberry.net      internet address = 206.51.26.130
mx03.bwc.na.blackberry.net      internet address = 206.51.26.214
mx03.bwc.na.blackberry.net      internet address = 206.51.26.136
mx04.bwc.na.blackberry.net      internet address = 206.51.26.131
mx04.bwc.na.blackberry.net      internet address = 206.51.26.215
mx04.bwc.na.blackberry.net      internet address = 206.51.26.137
mx05.bwc.na.blackberry.net      internet address = 206.51.26.132
mx05.bwc.na.blackberry.net      internet address = 206.51.26.223

C:\Documents and Settings\justin>


I few people recommended I setup a custom SMTP connector to route email destined to nextel.blackberry.com through my ISP SMTP gateway (smtp.popp.net). I did that per the instructions below, but still no luck.

http://www.amset.info/exchange/smtp-connector.asp

Telnet test results:

nextel.blackberry.net fails

C:\Documents and Settings\justin>telnet nextel.blackberry.net 25
Connecting To nextel.blackberry.net...Could not open connection to the host,
port 25: Connect failed



mx01.bwc.na.blackberry.net  is ok

220 mx01.bwc.na.blackberry.net ESMTP Sendmail 8.13.1/8.13.0; Tue, 17 May 2005 00
:12:17 GMT

There seems to be a problem with the nextel name somehow. Is there a way to tell exchange to connect to the mx record when send mail to the nextel domain?

Any ideas?
0
Justin Durrant
Asked:
Justin Durrant
  • 28
  • 25
1 Solution
 
VahikCommented:
go to ur dns server and create a new zone for nextel.balckbery.net and put all the
information that u got from NSLOOKUP in that zone and try again...
0
 
Justin DurrantSr. Engineer - Windows Server/VirtualizationAuthor Commented:

Ok,

I added the following to the "Forward all mail through this connector to the following smart hosts":

[206.51.26.128],[206.51.26.154],[206.51.26.134]

In the address space tab I have:

nextel.blackberry.net

Still no luck....

Next I did what ahik recommended and created a new nextel.blackberry.net primary zone and created a mx record for mx01.bwc.na.blackberry.net

This also failed... :(

Justin
0
 
VahikCommented:
do u have dns entry in ur smtp virtual server? also do u have smart host entry on ur smtp
server?  
also did u try ipconfig /flushdns and ipconfig /registerdns on ur exchange server??
also did u try to clear ur dns catche???
maybe there is a problem with ur root hints entries????

0
Making Bulk Changes to Active Directory

Watch this video to see how easy it is to make mass changes to Active Directory from an external text file without using complicated scripts.

 
Justin DurrantSr. Engineer - Windows Server/VirtualizationAuthor Commented:
All i did was what I posted above. I did not flushdns or cleay my dns cache. Can you elaborate a little more on how to do the things you stated on my smtp virtual server? Sorry, I am still somewhat new to exchange. :)
0
 
VahikCommented:
you flush dns catche on ur dns server...in DNS right click on server name and u will see
the option.you will also see the option for root hints..
ipconfig /flush dns u perform on ur exchange server from command promt
smtp virtual server...in ur ESM right click on the smatp virtual server\click on properties
then click on delivery\advanced and then u will see the option to configure external dns
servers...make sure it is emty
at the same location u will see the option for smart host ...make sure that is also emty..

0
 
Justin DurrantSr. Engineer - Windows Server/VirtualizationAuthor Commented:
ok..

emtp? are you saying empty? :)
0
 
VahikCommented:
sorry...yes empty..  is it??
0
 
Justin DurrantSr. Engineer - Windows Server/VirtualizationAuthor Commented:
I am not at the server currently.. i will check tonight and get back to you.

Thx
0
 
Justin DurrantSr. Engineer - Windows Server/VirtualizationAuthor Commented:
Ok,

I flushed the DNS on the server and using ipconfig /flushdns.. I still get the NDR

Under delivery\advanced I have the following settings:

Maximum Hop: 30

Masq Domain: Blank

FQDM: server.domain.com

Smart Host: Blank

Perform DNS on incomign messages: Unchecked

Configure External DNS servers: Servers are 208.254.148.69 and .100 (same forwarders that DNS has)


0
 
VahikCommented:
NO NO NO....take out external DNS server in smtp virtual server....that is NO NO...causes
a lota routing problem...did u have this there all the times?? or u just configured it???
0
 
VahikCommented:
also remember any changes to smtp server requires a restart...
0
 
Justin DurrantSr. Engineer - Windows Server/VirtualizationAuthor Commented:
its always been there and i have never had an issue in the 2 yrs exchange has been in
0
 
Justin DurrantSr. Engineer - Windows Server/VirtualizationAuthor Commented:
Ok.. I am removing the external dns and rebooting now.
0
 
VahikCommented:
dont forget....PRAY....it helps..hahaha
0
 
Justin DurrantSr. Engineer - Windows Server/VirtualizationAuthor Commented:
removed external dns.. rebooted.. still get the NDR :(
0
 
VahikCommented:
OH boy...ok lets see...
the domain is good...because u have tested from outside and it works...and u have no problem with any other domain...yet sending to that domain fails...even connector
did not help....and u can telenet to the ip address and send a direct message and that also works....but exchange has problem....
listen enable diagnostics logging in exchange...for now that is all i can think of...this
is very starnge...
0
 
VahikCommented:
one more thing ..if u create a poe account on an isp...not a web interface like google
and using ur outlook can u send an email to that user from inside ur network???
0
 
VahikCommented:
i meant to say pop3 account
0
 
VahikCommented:
u know why i made the last suggestion?? if outlook can send that email...that means
ur dns and public dns is working just fine...and the problem is with exchange server
if not then there is nothing wrong with exchange setup and something wrong with
ur dns and isp's dns server not being able to resolve that name...
0
 
Justin DurrantSr. Engineer - Windows Server/VirtualizationAuthor Commented:
I know.. very strange indeed. I will try from a POP account tonight. That will tell me if its Exchange. Thanks for sticking with me!
0
 
Justin DurrantSr. Engineer - Windows Server/VirtualizationAuthor Commented:
Ok.. The POP3 test works from Outlook Express on the Server. It must be a problem with Exchange.

0
 
VahikCommented:
http://support.microsoft.com/?kbid=870921
does this make sense to u...taking in to considering ur exchange configuration ???
0
 
Justin DurrantSr. Engineer - Windows Server/VirtualizationAuthor Commented:
Sort of.. I only have the one server, So I don't think the bridgehead deal applies.

Also, I am pretty sure the smart host doesn't apply either, but I am not 100% confident on what or how the bridgehead or smart host works.
0
 
VahikCommented:
http://support.microsoft.com/?id=884421
also try this solutuion...i will post a few links for u to see if thet could be any help...
0
 
Justin DurrantSr. Engineer - Windows Server/VirtualizationAuthor Commented:
Thx, I will try tonight and let you know.

I wish I knew why setting up the problem smtp connector to route mail destined for nextel.blackberry.net through my ISP doesn't work. Oh well.
0
 
Justin DurrantSr. Engineer - Windows Server/VirtualizationAuthor Commented:
Wait... I already did this last night see:

"Comment from jjdurrant
Date: 05/18/2005 08:02PM PDT
 Your Comment  


removed external dns.. rebooted.. still get the NDR :( "


0
 
VahikCommented:
well usually dns problems are resolved diffrently for diffrent folks...some are resolved by
an smtp connector...some by using smart host or some even by deleting the ROOT HINTS
in ur dns server and letting forwarder takke care of dns lookups from one host only...
i really dont know which one will solve ur problem ...or maybe we are looking in the wrong place....but u make sure to enable diaggnostis logging ...that may help u figure
out ur problem...
0
 
Justin DurrantSr. Engineer - Windows Server/VirtualizationAuthor Commented:
Ok

How do enable the logging?
0
 
VahikCommented:
in ESM right clock on ur server name and u will see the option...then look for
MSExchangetransport and enable all options and send a test email....do it when
network is not busy...
0
 
Justin DurrantSr. Engineer - Windows Server/VirtualizationAuthor Commented:
Ok, I setup logging to maximum for MSExchangetransport. Here are the results:

Event Type:      Warning
Event Source:      MSExchangeTransport
Event Category:      Connection Manager
Event ID:      4000
Date:            5/20/2005
Time:            8:49:44 AM
User:            N/A
Computer:      BEAVIS
Description:
Message delivery to the remote domain 'nextel.blackberry.com' failed for the following reason: Destination server does not exist.

-----

Event Type:      Error
Event Source:      MSExchangeTransport
Event Category:      NDR
Event ID:      3018
Date:            5/20/2005
Time:            8:49:44 AM
User:            N/A
Computer:      BEAVIS
Description:
A non-delivery report with a status code of 5.4.0 was generated for recipient rfc822;jay.lewis@nextel.blackberry.com (Message-ID <483A805A08268140AF5AF4321ED0232B028B29@beavis.jetselectric.com>).  
Causes: This message indicates a DNS problem or an IP address configuration problem  
Solution: Check the DNS using nslookup or dnsq. Verify the IP address is in IPv4 literal format.
   
----

Event Type:      Information
Event Source:      MSExchangeTransport
Event Category:      Routing Engine/Service
Event ID:      984
Date:            5/20/2005
Time:            8:50:17 AM
User:            N/A
Computer:      BEAVIS
Description:
SMTP GetNextHop returned hr=0x0 in 0ms.
 DestAddr=<nextel.blackberry.com>, Type=<SMTP>
 MsgType=0x0, NextHopType=OTHER_ROUTING_GROUP
 Type=<SMTP>, Class=<nextel.blackberry.com>, SchedId=0xffffffff
 RouteAddr=<nextel.blackberry.com>
 Connector=<DNS>

----

Event Type:      Information
Event Source:      MSExchangeTransport
Event Category:      Queuing Engine
Event ID:      4005
Date:            5/20/2005
Time:            8:50:17 AM
User:            N/A
Computer:      BEAVIS
Description:
Time spent on preparing to reset routes: [0] milliseconds Time spent on recalculating next hops: [0] milliseconds Queue length : [1]

For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp.

0
 
VahikCommented:
blackberry.net  nameserver = xns01ykf.rim.net
blackberry.net  nameserver = xns01lhr.rim.net
mx01.bwc.na.blackberry.net      internet address = 206.51.26.134
mx01.bwc.na.blackberry.net      internet address = 206.51.26.154
mx01.bwc.na.blackberry.net      internet address = 206.51.26.128
mx02.bwc.na.blackberry.net      internet address = 206.51.26.208
mx02.bwc.na.blackberry.net      internet address = 206.51.26.129
mx02.bwc.na.blackberry.net      internet address = 206.51.26.135
mx03.bwc.na.blackberry.net      internet address = 206.51.26.130
mx03.bwc.na.blackberry.net      internet address = 206.51.26.136
mx03.bwc.na.blackberry.net      internet address = 206.51.26.214
mx04.bwc.na.blackberry.net      internet address = 206.51.26.137
mx04.bwc.na.blackberry.net      internet address = 206.51.26.215
mx04.bwc.na.blackberry.net      internet address = 206.51.26.131
mx05.bwc.na.blackberry.net      internet address = 206.51.26.223
mx05.bwc.na.blackberry.net      internet address = 206.51.26.132

well i did an nslookup for nextel.balckberry.net and it gives me two ip addresses for their
name  servers...in DNS 2003 u can choose to forward specific domains to specific
name servers....if possible in ur dns server point nextel.blackberry.net to one of
those ip addresses and see if that would help u...what ever it is u have a dns problem...
u dont have any forwarders set up with an ip address for nextel.blackberry.net ???
or any mention of that domain in any ip format....
0
 
Justin DurrantSr. Engineer - Windows Server/VirtualizationAuthor Commented:
Ok.. I already have the nextel.blackberry.net primary zone is my DNS. Should I create a new A record for blackberry.net that points to 206.51.26.10 which is xns01ykf.rim.net?
0
 
VahikCommented:
well u could...but in the forwarder section (if u have a 2003 dns) u can choose to
forward nextel.blackberry.net to one of the name servers...and see if that would solve
the problem....
0
 
Justin DurrantSr. Engineer - Windows Server/VirtualizationAuthor Commented:
ok I will take a look and get back to you.. thx
0
 
Justin DurrantSr. Engineer - Windows Server/VirtualizationAuthor Commented:
Ok, here is what I did.

- Deleted the nextel.blackberry.com primary zone from DNS

- Went in forwarders and created a new domain for blackberry.net

- Added the 206.51.26.10 ip

- Flushed DNS cache

- Restarted DNS

- Ping blackberry.net (failed) is trying to resolve to 206.51.26.145)

- Sent test email (failed)

- Added 206.51.26.10      blackberry.net to hosts file

- Ping ok.. Sent test email (failed)




0
 
Justin DurrantSr. Engineer - Windows Server/VirtualizationAuthor Commented:
also,

I have a buddy who has a @tmo.blackberry.net address and that works. It has to be something with the nextel portion. But why would this only be a problem internally?
0
 
Justin DurrantSr. Engineer - Windows Server/VirtualizationAuthor Commented:
I even added the forwarders we use here at work to the server and the message still fails. And I can successfully send to nextel.blackberry.net from work.

I don't get it. :(
0
 
VahikCommented:
there is nothing wrong with the nextel domain name....something wrong with ur dns and exchange not being able to find their way to that address...
i will make one last suggestion..because i have run outa ideas...
go to ur dns server \advanced and uncheck secure catche against polution..and delete
all the root hint(copy it to file so u can import it back later)...restart dns and try one more time....if that did not work...u can either call MS or ask admin to delete this and start all over again...maybe someone has seen this exact problem and may requie some
reg hack....i will be here so give a call back..
0
 
Justin DurrantSr. Engineer - Windows Server/VirtualizationAuthor Commented:
Do I need to reimport the hints before I test? I copied the root hints from another server yesterday so I believe they are ok. That server was 216.168.225.208.

0
 
Justin DurrantSr. Engineer - Windows Server/VirtualizationAuthor Commented:
Ok

I unchecked the polution and no luck.

What root hints are you using? Whenever I open one of them and click resolve I get:

An IP address associated with the given name server (NS) record could not be found.
0
 
VahikCommented:
that is the ones i am talking about...just take them out..not necccessary since u have
forwarders......
0
 
Justin DurrantSr. Engineer - Windows Server/VirtualizationAuthor Commented:
I deleted all the root hints.. No luck
0
 
VahikCommented:
jj do have any AV software running on the exchange?? have u tried disabling the software
and then send a message and see if that would help solve ur problem...
what about ur firewall???do u have any?? what brand???
0
 
VahikCommented:
one more thing...i suppose u have contacts created for all ur users that have an account
in nextel....try deleting them all ...then  use a rule on one of the outlook clients to
forward email to nextel and see if that would be successfull...
kido i think we have almost used all the tricks in the book...and at the end it may
turn out to be something very simple that we have over looked...
0
 
Justin DurrantSr. Engineer - Windows Server/VirtualizationAuthor Commented:
The only AV I have is Symantec Corp 9. Nothing Exchange unique. I am running a Cisco PIX.

I don't have any contacts created yet. For now I am going to just setup a contact to an email address on my family domain which will forward to the BB address. While this is not ideal, I am not sure what else to do at this point.
0
 
VahikCommented:
http://support.microsoft.com/default.aspx?scid=kb;en-us;320027
read this about cisco pix firewalls...
if u were not using contacts then how are u gonns forwrd emails to users in nextel ??
0
 
Justin DurrantSr. Engineer - Windows Server/VirtualizationAuthor Commented:
i was going to use contacts.. but i could not even email the BB address directly. I had to get that working before setting up the contact.
0
 
Justin DurrantSr. Engineer - Windows Server/VirtualizationAuthor Commented:
Thanks again for sticking with me.. Too bad I never was able to get the actual issue resolved. :)
0
 
VahikCommented:
jjdurant u mean to say u folks still cant  send email to nextel??? then how did u get ur
blackberry issue resolved???
0
 
Justin DurrantSr. Engineer - Windows Server/VirtualizationAuthor Commented:
Nope.. I just created a Exchange contact that forwards to an email account on my personal domain. From there there is another forwarder that sends the message to the blackberry. While this is not an ideal solution, it works.
0
 
VahikCommented:
it is amazing...but if i were u jj i would completely delete DNS..from add and remove program(it wont be possible for a large network) and delete any hint of in the AD and start all over again with DNS servers...but even though i hate paying MS 300 box this will be worth every dollar and let them figure it out...it will be nice to know why ???
well i am sorry i could not help u resolve this problem but if u ever do just post here ...i will get notified..
take care and good luck..
0
 
Justin DurrantSr. Engineer - Windows Server/VirtualizationAuthor Commented:
Thanks. I would do that, but it is only this domain, so the work invoved just is not worth it. I would have to completly rebuild the domain since this is a single server and domain controller (no other servers to act as DNS).
0

Featured Post

Problems using Powershell and Active Directory?

Managing Active Directory does not always have to be complicated.  If you are spending more time trying instead of doing, then it's time to look at something else. For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why

  • 28
  • 25
Tackle projects and never again get stuck behind a technical roadblock.
Join Now