innovateusa
asked on
550 5.7.1 Access denied when sending to certain domains
We have an exchange small business server (2003, sp1). It controls email for a few domains, namely mp3car.com.
We recently moved email for streetdeck.com from an external host to our exchange server. I added this to the default recipient policy and email is working fine. The problem came when I changed a few users to have @streetdeck as their primary email address. It works fine for almost all domains, but we are having a problem with one of them: goldsys.com. When streetdeck is the primary email it bounces, when mp3car is it goes through fine.
Here is the bounce back email:
postmaster@goldsys.com on 11/2/2006 2:10 PM
You do not have permission to send to this recipient. For assistance, contact your system administrator.
<exchange.innovateusa.com #5.7.1 smtp;550 5.7.1 Access denied>
I get even 7004 in the event viewer:
This is an SMTP protocol error log for virtual server ID 1, connection #247. The remote host "199.45.177.9", responded to the SMTP command "mail" with "550 5.7.1 Access denied ". The full command sent was "MAIL FROM:<mikehall@streetdeck.
I tried telneting to mx1.goldys.com, I can connect but I get 550 5.7.1 access denied whenever I try any address using the "MAIL FROM:" command. I don't see how they could be blocking our server if the same server can successfully send email with one domain, but not the other.
We recently moved email for streetdeck.com from an external host to our exchange server. I added this to the default recipient policy and email is working fine. The problem came when I changed a few users to have @streetdeck as their primary email address. It works fine for almost all domains, but we are having a problem with one of them: goldsys.com. When streetdeck is the primary email it bounces, when mp3car is it goes through fine.
Here is the bounce back email:
postmaster@goldsys.com on 11/2/2006 2:10 PM
You do not have permission to send to this recipient. For assistance, contact your system administrator.
<exchange.innovateusa.com #5.7.1 smtp;550 5.7.1 Access denied>
I get even 7004 in the event viewer:
This is an SMTP protocol error log for virtual server ID 1, connection #247. The remote host "199.45.177.9", responded to the SMTP command "mail" with "550 5.7.1 Access denied ". The full command sent was "MAIL FROM:<mikehall@streetdeck.
I tried telneting to mx1.goldys.com, I can connect but I get 550 5.7.1 access denied whenever I try any address using the "MAIL FROM:" command. I don't see how they could be blocking our server if the same server can successfully send email with one domain, but not the other.
ASKER
199.45.177.9 is goldsys.com, this is who we are trying to send to so I don't manage it.
So I need to get a hold of whoever manages their email server?
So I need to get a hold of whoever manages their email server?
There are many reasons why they could be blocking you.
1) You don't have a Reverse DNS record. Many companies block email from anyone without RDNS records. This is happening more and more. Have your ISP create the RDNS record for you.
2) You have an ADSL connection. Many companys are block from these also. If this is your case then you may have to send email to them through an SMTP connector that forwards the messages to your ISP's SMTP server.
1) You don't have a Reverse DNS record. Many companies block email from anyone without RDNS records. This is happening more and more. Have your ISP create the RDNS record for you.
2) You have an ADSL connection. Many companys are block from these also. If this is your case then you may have to send email to them through an SMTP connector that forwards the messages to your ISP's SMTP server.
These problems are discussed here several times a week. If you do a search then you will likely find links to resolve your problem.
ASKER
I have a T1 connection. I do have reverse dns record's here is what they are configured to:
138.170.234.205.in-addr.ar
234.13.16.66.in-addr.arpa static-66-16-13-234.dsl.ca
dnsmadeeasy is my backup mx server,
cavtel is my T1 provider.
Since I'm sending from these from the same server and it works with a different default email address, I don't think it's a reverse dns issue. I also have ptr records in place.
138.170.234.205.in-addr.ar
234.13.16.66.in-addr.arpa static-66-16-13-234.dsl.ca
dnsmadeeasy is my backup mx server,
cavtel is my T1 provider.
Since I'm sending from these from the same server and it works with a different default email address, I don't think it's a reverse dns issue. I also have ptr records in place.
No Reverse DNS exits for those 2 IP addresses. Reserver DNS is not the same as setting that you control from your DNS servers. This is a name mapped to your public IP. This is done via your ISP. You can check if you have a reverse DNS at sites such as www.dnsstuff.com and postmaster.info.aol.com where you can do your own tests.
ASKER
Okay, so should the reverse dns report back the name of our exchange server (exchange.innovateusa.com)
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Do you manage the server 199.45.117.9? This is the server blocking the domain name.