?
Solved

#5.5.0 smtp;550  Delivery failed - HELO Name for IP Address 1.1.1.1 was "[1.1.1.1]"

Posted on 2006-06-15
9
Medium Priority
?
693 Views
Last Modified: 2008-02-01
I have been dealing with being put on a CBL list and I finally got in touch with them and found out the problem. Our HELO message is incorrect. It is using the IP Address rather than the FQDN.

Using Exchange Server 2003 Sp2, windows server 2003.

I have put in the FDQN in exchagen which would seem to solve the problem here.  I also tested ehlo and helo messages by telnet and it shows the correct FQDN that matches the MX record.   PULLING MY HAIR OUT!!!!

Also behind a symantec gateway security firewall.   HELP!

I have contacted my ISP because there are 2 PTR records in DNS, but I do not think this should cause the problem, should it?

"You have more than one PTR record for 1.1.1.1.  This is legal, but most programs will only use
the first PTR record listed (which may vary)."

the 1st one is our static IP (1.1.1.1.dia.static.qwest.net), while the second is the FQDN
0
Comment
Question by:bberdel
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 5
  • 4
9 Comments
 
LVL 104

Accepted Solution

by:
Sembee earned 375 total points
ID: 16913388
It is probably your Symantec product that is issuing the wrong banner.
Go to dnsreport.com and put in your domain. That will show you what the internet sees.

Simon.
0
 

Author Comment

by:bberdel
ID: 16913461
DNS report looks ok to me.
What can you do to a firewall to change that?  I ahve heard of problems with cisco pix, but that is it.
0
 
LVL 104

Expert Comment

by:Sembee
ID: 16913553
Does the banner show the name of the server correctly?
The dual PTR records could be causing a problem. As far as I am concerned PTR records are 1:1 - so I would ask the ISP to remove the other one.

No idea on the firewall, I don't deploy Symantec products as they tend to cause more problems than they fix.

Simon.
0
Is Your AD Toolbox Looking More Like a Toybox?

Managing Active Directory can get complicated.  Often, the native tools for managing AD are just not up to the task.  The largest Active Directory installations in the world have relied on one tool to manage their day-to-day administration tasks: Hyena. Start your trial today.

 

Author Comment

by:bberdel
ID: 16913578
Thanks for the response.  Yes the banner does show correct name when I do telnet tests.  I have asked our ISP to remove the other one. Actually asked them 5 hours ago... No repsonse yet.   Also have a cisco ASA on the way.   Tough problem becasue it seems as though I am doing everything right...
0
 
LVL 104

Expert Comment

by:Sembee
ID: 16913711
What are you telnetting to?
The Exchange server from inside?
The telnet test isn't valid unless you try it from outside. That is often difficult unless you have a second internet connection, which is why I suggest the dnsreport.com web site.

Simon.
0
 

Author Comment

by:bberdel
ID: 16913744
yes from the inside.   if you want to check the report domain name is mcmtrans.com

thanks again
0
 

Author Comment

by:bberdel
ID: 16913801
I think I fixed the issue.   DNS record on firewall. If that is correct I will award you the points.   thanks 4 your help.
0
 

Author Comment

by:bberdel
ID: 16913933
Actaully it was the 2 PTR records.   It just took a little while to work and I thought it was the DNS record I added to the firewall.
0
 
LVL 104

Expert Comment

by:Sembee
ID: 16914028
Lovely. You have to be so careful with DNS, if it isn't right then people will blacklist you.

Simon.
0

Featured Post

Free Tool: Subnet Calculator

The subnet calculator helps you design networks by taking an IP address and network mask and returning information such as network, broadcast address, and host range.

One of a set of tools we're offering as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

In-place Upgrading Dirsync to Azure AD Connect
This article will help to fix the below errors for MS Exchange Server 2013 I. Certificate error "name on the security certificate is invalid or does not match the name of the site" II. Out of Office not working III. Make Internal URLs and Externa…
In this video we show how to create a Contact in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Recipients >> Contact ta…
A short tutorial showing how to set up an email signature in Outlook on the Web (previously known as OWA). For free email signatures designs, visit https://www.mail-signatures.com/articles/signature-templates/?sts=6651 If you want to manage em…
Suggested Courses
Course of the Month9 days, 5 hours left to enroll

764 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question