Want to protect your cyber security and still get fast solutions? Ask a secure question today.Go Premium

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 325
  • Last Modified:

No outbound mail

Hello,

We are currently deploying a new network.  There are two domain controllers (Win 2003 Standard) and an ISA server (2004).  The 2nd domain controller is the Exchange Server running Exchange 2003 Standard.  The ISA server is connected to a cable modem with a static IP address  There is Internet connectivity to each of the servers.  We have inbound email but cannot send any outboud.  When I try and run a SMTP test utility, I get an "unable to relay to sender" message.  

Please help!!!
0
ITINITIATIVES
Asked:
ITINITIATIVES
  • 5
  • 4
  • 3
  • +1
1 Solution
 
upul007Commented:
Check the Exchange System Manager >...>Protocols >SMTP Properties and the connector properties. There are relaying related settings here. Authentication types also relate to this. I wont have access to ao exchange server till Tuesday to give a better desc. After configuring run a dnsreport on your domain from www.dnsreport.com and the comprehensive test on RELAYING to ensure that you are secure.
0
 
upul007Commented:
Check the Exchange System Manager >...>Protocols >SMTP Properties and the connector properties. There are relaying related settings here. Authentication types also relate to this. I wont have access to ao exchange server till Tuesday to give a better desc. After configuring run a dnsreport on your domain from www.dnsreport.com and the comprehensive test on RELAYING to ensure that you are secure.
0
 
upul007Commented:
Oops, i hit submit twice on my phone...Sorry.
0
Problems using Powershell and Active Directory?

Managing Active Directory does not always have to be complicated.  If you are spending more time trying instead of doing, then it's time to look at something else. For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why

 
ITINITIATIVESAuthor Commented:
Thanks.  We have under relaying, "only the list below" and there is nothing listed.  However, we still cannot send but can receive...
0
 
mickinoz2005Commented:
From the exchange serve can you telnet to an outside mail host on port 25. This will ensure that 25 is not being blocked by your ISA server.

So go to a dos prompt and type telnet mailhost 25 an example to try is ----- telnet mail1.eircom.net 25 You should see the usual smtp banner message if you cannot then I would say there is a problem with your ISA blocking 25 outbound.

Michael
0
 
ITINITIATIVESAuthor Commented:
Thanks,

When I telnet in, I can connect to the server.  The DNS is hosted outside by the ISP.  When I type in the name --- ex. mail.domain.org ; comes up with 220 servername.internal_domain.local

is this correct or is there a DNS problem?
0
 
SembeeCommented:
Can you telnet to your ISP?

telnet mail.isp.net 25

where mail.isp.net is the name of your ISPs SMTP server for relaying outbound email.

If you can, then try going to an external server.

telnet maila.microsoft.com 25

If that fails and the first works, then your ISP is blocking port 25. You will need to use an SMTP Connector to route outbound email through the ISPs mail server.
If they both fail then the firewall isn't allowing outbound traffic.

You should also change what the server announces itself as. Anything .local isn't valid and will be flagged as such and could cause the email to be marked as spam.

Simon.
0
 
ITINITIATIVESAuthor Commented:
I am able to telnet into the Microsoft server.  The ISP is different then the company who is hosting the web site  (and MX record).
0
 
SembeeCommented:
Doesn't matter that the companies are different.
If the ISP is blocking connections on port 25 then you have to use the ISPs server to relay email.

However if you can telnet to port 25 on Microsoft's server, then there is nothing wrong with the traffic flow.

Where did you telnet from? The Exchange server or the ISA server?
Make sure that the ISA server is allowing the traffic out correctly.

Simon.
0
 
ITINITIATIVESAuthor Commented:
I spoke to the ISP and they said that there is nothing on their end preventing the port to work.  

I processed the telnet command from both the ISA and the EXCHANGE and it worked on both...

I have configured the ISA server as directed in Microsoft's "Using ISA Server 2004 with Exchange 2003" article...

It, of course, is still not working...

Thanks!
0
 
upul007Commented:
Is there a firewall? You may need to configure filters. Did the dnsreport give any errors? Have you set up the external dns in exchange? SMTP is used for sending. Access the exchange help and recheck whether the config is correct.  
0
 
upul007Commented:
Where it says only the list below, add your internal ip range. You can add one ip and send out to an external email address from the outlook program running on the pc with that ip.
0
 
SembeeCommented:
upul007 - there should be no reason to add any IP addresses to the list for relaying, and adding your internal IP address can turn your server in to an open relay very quickly - as Exchange sees traffic coming from the default gateway as being from the range allowed to relay.

ITINITIATIVES - you need to bypass the ISA server. You are left with very little choice. Confirm that the server will send email. If it doesn't send email when the ISA server is bypassed then you have a problem with the Exchange server itself.

Simon.
0
 
mickinoz2005Commented:
ARe you using your own dns to resolve addresses for email. If so can you setup a smtp connector and use an mail host to forward mail just as a test. This will illustrate wheither or not your dns is working correctly or not.

IF you go to system manager and expand connectors and then right click and new smtp connector. IN there there is a smart mail host you can put in your isp mail server there and exchange will just forward all mail to that host to resolve the addreses. If this works then there is a problem with your DNs.

Michael
0

Featured Post

Creating Active Directory Users from a Text File

If your organization has a need to mass-create AD user accounts, watch this video to see how its done without the need for scripting or other unnecessary complexities.

  • 5
  • 4
  • 3
  • +1
Tackle projects and never again get stuck behind a technical roadblock.
Join Now