Solved

#5.5.0 smtp;550  Delivery failed - HELO Name for IP Address 1.1.1.1 was "[1.1.1.1]"

Posted on 2006-06-15
9
689 Views
Last Modified: 2008-02-01
I have been dealing with being put on a CBL list and I finally got in touch with them and found out the problem. Our HELO message is incorrect. It is using the IP Address rather than the FQDN.

Using Exchange Server 2003 Sp2, windows server 2003.

I have put in the FDQN in exchagen which would seem to solve the problem here.  I also tested ehlo and helo messages by telnet and it shows the correct FQDN that matches the MX record.   PULLING MY HAIR OUT!!!!

Also behind a symantec gateway security firewall.   HELP!

I have contacted my ISP because there are 2 PTR records in DNS, but I do not think this should cause the problem, should it?

"You have more than one PTR record for 1.1.1.1.  This is legal, but most programs will only use
the first PTR record listed (which may vary)."

the 1st one is our static IP (1.1.1.1.dia.static.qwest.net), while the second is the FQDN
0
Comment
Question by:bberdel
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 5
  • 4
9 Comments
 
LVL 104

Accepted Solution

by:
Sembee earned 125 total points
ID: 16913388
It is probably your Symantec product that is issuing the wrong banner.
Go to dnsreport.com and put in your domain. That will show you what the internet sees.

Simon.
0
 

Author Comment

by:bberdel
ID: 16913461
DNS report looks ok to me.
What can you do to a firewall to change that?  I ahve heard of problems with cisco pix, but that is it.
0
 
LVL 104

Expert Comment

by:Sembee
ID: 16913553
Does the banner show the name of the server correctly?
The dual PTR records could be causing a problem. As far as I am concerned PTR records are 1:1 - so I would ask the ISP to remove the other one.

No idea on the firewall, I don't deploy Symantec products as they tend to cause more problems than they fix.

Simon.
0
Optimizing Cloud Backup for Low Bandwidth

With cloud storage prices going down a growing number of SMBs start to use it for backup storage. Unfortunately, business data volume rarely fits the average Internet speed. This article provides an overview of main Internet speed challenges and reveals backup best practices.

 

Author Comment

by:bberdel
ID: 16913578
Thanks for the response.  Yes the banner does show correct name when I do telnet tests.  I have asked our ISP to remove the other one. Actually asked them 5 hours ago... No repsonse yet.   Also have a cisco ASA on the way.   Tough problem becasue it seems as though I am doing everything right...
0
 
LVL 104

Expert Comment

by:Sembee
ID: 16913711
What are you telnetting to?
The Exchange server from inside?
The telnet test isn't valid unless you try it from outside. That is often difficult unless you have a second internet connection, which is why I suggest the dnsreport.com web site.

Simon.
0
 

Author Comment

by:bberdel
ID: 16913744
yes from the inside.   if you want to check the report domain name is mcmtrans.com

thanks again
0
 

Author Comment

by:bberdel
ID: 16913801
I think I fixed the issue.   DNS record on firewall. If that is correct I will award you the points.   thanks 4 your help.
0
 

Author Comment

by:bberdel
ID: 16913933
Actaully it was the 2 PTR records.   It just took a little while to work and I thought it was the DNS record I added to the firewall.
0
 
LVL 104

Expert Comment

by:Sembee
ID: 16914028
Lovely. You have to be so careful with DNS, if it isn't right then people will blacklist you.

Simon.
0

Featured Post

Free Tool: Subnet Calculator

The subnet calculator helps you design networks by taking an IP address and network mask and returning information such as network, broadcast address, and host range.

One of a set of tools we're offering as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This article aims to explain the working of CircularLogArchiver. This tool was designed to solve the buildup of log file in cases where systems do not support circular logging or where circular logging is not enabled
After hours on line I found a solution which pointed to the inherited Active Directory permissions . You have to give/allow permissions to the "Exchange trusted subsystem" for the user in the Active Directory...
In this video we show how to create a Shared Mailbox in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Recipients >> Sha…
In this video we show how to create an Accepted Domain in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Mail Flow >> Ac…

739 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question