Solved

Email not being sent by smarthost

Posted on 2006-06-28
9
823 Views
Last Modified: 2008-01-09
I have an exchang 2003 server setup that has been running wihtout problems for a few years. Just this week, I changed the connector to forward mail to a smart host. This is a computer on my "optional" network as a Watchguard firewall would term it which has all ports opened between them on the firewall. Most email is being sent without problems, but I have a few that are either sitting in the queue on the smarthost (C:\Inetpub\mailroot\Queue). I have a user who got a NDR stating that his email was returned because "You do not have permission to send to this recipient".

I dont understand if that error message is coming from my side or theirs.

If I look in the event viewer on the smart host, I see a ton of smtpsvc notices that say: "Message delivery to the host 'x.x.x.x' failed while delivering to the remote domain 'x.com' for the following reason: The connection was dropped by the remote host."

What might cause this connection to be dropped?

I have run NSLOOKUP, SMTP DIAG, and checked to ensure I was setup for reverse dns. All came back saying all is OK. Both nslookup and smtp diag successfully translated the address and I am also able to
telnet to mail.domain.com 25

I dont understand enough about what may have happened while sending to the smarthost. Most email is being sent fine, but just a few are having problems.

Thanks.
0
Comment
Question by:adembo
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 5
  • 3
9 Comments
 
LVL 2

Author Comment

by:adembo
ID: 17004005
The smarthost is not a member of my domain. Reverse DNS is setup to resolve to the mail.domain.com as I have it, but that is then NAT'd to my mail server and not the smart host. Does that give problems being that the FQDN that is for my email domain is not the same as my smart host?
0
 
LVL 7

Expert Comment

by:ingetic
ID: 17004055
Is the smathost an ISP one, or a samrthost where you have full relay rights without detecting if it can be a spam or , ...
0
 
LVL 7

Expert Comment

by:ingetic
ID: 17004065
Why don't you use a smarthost if the smarthost is not in your domain instead of simply create a connector ?
0
Independent Software Vendors: We Want Your Opinion

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

 
LVL 2

Author Comment

by:adembo
ID: 17004070
The smarthost is mine. I have it setup to allow relaying from my mailserver. (By IP)
0
 
LVL 2

Author Comment

by:adembo
ID: 17004084
Not sure I understand you. I did create a connector on my mail server which is forwarding the mail to my smarthost (gateway server). This is done because of our GFI mailessentials software. It can scan the email before it reaches our mailserver. I dont want the smarthost to have rights onto our domain in case of virus outbreak.

0
 
LVL 7

Expert Comment

by:ingetic
ID: 17004178
ont the smarthost, do you have GFI mailessentials . mailsecurity . ??? .
0
 
LVL 13

Accepted Solution

by:
prashsax earned 500 total points
ID: 17004297
It could be due to some domains have installed antispam solutions.

And when your smarthost tries to send the mail on behalf of your domain, the antispam server will try and do a reverse lookup. Now the reverse lookup will resolves to some other IP address.(Other than your smarthost).

So the antispam server will drop the email as the mail server for your domain is not the one trying to send mail on your behalf.

To, solve this, create another MX record for your domain name and point to smarthost with some high preference number.(So that I should not be used).

With this, antispam server will not drop your mails.
0
 
LVL 2

Author Comment

by:adembo
ID: 17008962
It looks like this was related to my reverse dns lookup. When I went to www.dnsstuff.com and did a query for it, it showed correctly. When I sent an email to my email account (on the internet) I noticed that it had the wrong IP address for it. This was caused by my Watchguard firewall which was labeling any outgoing traffic with the same IP. When I changed that, the email is not being received by the destination.

Thanks for help.
0
 
LVL 2

Author Comment

by:adembo
ID: 17008969
I accepted prashax's response because he/she was on the right track.

0

Featured Post

[Live Webinar] The Cloud Skills Gap

As Cloud technologies come of age, business leaders grapple with the impact it has on their team's skills and the gap associated with the use of a cloud platform.

Join experts from 451 Research and Concerto Cloud Services on July 27th where we will examine fact and fiction.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This article aims to explain the working of CircularLogArchiver. This tool was designed to solve the buildup of log file in cases where systems do not support circular logging or where circular logging is not enabled
There are times when we need to generate a report on the inbox rules, where users have set up forwarding externally in their mailbox. In this article, I will be sharing a script I wrote to generate the report in CSV format.
To add imagery to an HTML email signature, you have two options available to you. You can either add a logo/image by embedding it directly into the signature or hosting it externally and linking to it. The vast majority of email clients display l…
Exchange organizations may use the Journaling Agent of the Transport Service to archive messages going through Exchange. However, if the Transport Service is integrated with some email content management application (such as an antispam), the admini…
Suggested Courses
Course of the Month4 days, 15 hours left to enroll

635 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question