Solved

Problems caused by our ISP being on a DNS blacklist

Posted on 2006-11-28
6
648 Views
Last Modified: 2010-05-18
We run Exchange 2003 in our organisation. Our ISP is Demon.

Today I have been receiving emails bounced back to me with text similar to the following:

554 Fasthosts is not accepting mail from [ Client host ; 194.217.242.91 ] at this time.  Please contact abuse@fasthosts.co.uk quoting this full error message. dnsbl.sorbs.net;

If i do a lookup on 194.217.242.91 it comes back as anchor-post-33.mail.demon.net (ie my ISP's mail server)

I have contacted Demon to get them to try and remove the mail server from the blacklist but in practice I know this can take several days.

I just wondered if anybody else has had the same problem with their ISP getting blacklisted and whether there is anyway round it. For example, can my exchange server act as an SMTP server in it's own right or do i need to send through Demon? In my ESM I have a connector called ADSL which forwards all mail to post.demon.co.uk. Do i need to use this?

0
Comment
Question by:metamatic
6 Comments
 
LVL 23

Assisted Solution

by:Stacy Spear
Stacy Spear earned 75 total points
ID: 18029975
I would send from your Exchange server. You may have to configure it connect via 587 (secure smtp port) in order to bypass port 25 filters most ISPs put in place.

You can do this by the following copied from http://support.microsoft.com/kb/274842:

How to Change the Outbound TCP Port
NOTE: Every remote SMTP server that you want to communicate with must be configured to accept connections on the specified port. In most cases, you do not want to change the default port setting.

To change the outbound TCP port, follow these steps:
1.      Start the Exchange System Manager.
2.      Locate and click Servername, click Protocols, and then click SMTP.
3.      Right-click the Default SMTP Virtual Server object, and then click Properties.
4.      Click the Delivery tab, and click the Outbound connections button. Set the TCP port to 26 (or whatever value you require).
5.      Quit the Exchange System Manager for the changes to take place.
All outbound SMTP traffic is now sent to port 26 on other servers.

NOTE: For these steps, the Display routing groups check box is enabled on the Exchange Organization Name properties in a mixed mode site.
0
 
LVL 23

Expert Comment

by:Stacy Spear
ID: 18029988
Note that a small percentage of servers are misconfigured (well a lot are misconfigured) and won't accept connections on 587.
0
 
LVL 12

Assisted Solution

by:Donnie4572
Donnie4572 earned 75 total points
ID: 18030752
You should remove the smarthost/connector and create a new connector and allow exchange to send mail to the internet using port 25.
You should plan for this to prevent extended interuption in your mail flow.
For you incoming mail, is it delivered to the smarthost or directly to your exchange server?
0
Are end users causing IT problems again?

You’ve taken the time to design and update all your end user’s email signatures, only to find out they’re messing up the HTML, changing the font and ruining the imagery. What can you do to prevent this? Find out how you can save your signatures from end users today.

 
LVL 104

Accepted Solution

by:
Sembee earned 350 total points
ID: 18031322
I would dump Demon Internet.

This isn't the first time their mail server has got listed and if they even bother to lift a finger I will be surprised. If you haven't already gathered, they have this attitude to the internet that they know best - just because they were the first dialup ISP in the UK to charge the flat rate (but the last to offer an 0808 dial up number).

Change the SMTP Connector to use DNS and see how much of your email gets delivered. If you find that you have problems with some domains then look around the internet and pay for a relay server from someone else.

In short - if you value your email either inbound or outbound then you do not use Demon's email servers. I have seen emails go in to their cluster and not come out again for six weeks.

Simon.
0
 

Author Comment

by:metamatic
ID: 18067539
Thanks for the replies. Demon responded to my email saying they had sorted out the issue which had caused them to be blacklisted but that SORBS wouldn't take them off the blacklist because they weren't prepared to meet SORBS demands to implement real time outbound spam filtering or make a donation to charity.

Anyway, in the last few days I've not had any emails blocked so I assume both parties have come to some sort of arrangement.

Simon - I have no love for Demon and intend to move away from them at some point. I hear good things about Zen Internet. Do you have any opinons on them or can you recommend any other UK ISP?

Also, can any of you recommend a knowledge base article or guide to moving over from a Smathost to sending direct from Exchange?

0
 
LVL 104

Expert Comment

by:Sembee
ID: 18068234
My primary choice for ISP in the UK is Pipex. The second is Eclipse.
I would suggest that you spend some time on http://www.thinkbroadband.com/ (previously known as adslguide.org.uk) as that will help you make the decision.
I haven't use Zen personally so cannot comment on their performance. What you need is an ISP that will give you at least one (preferably a few) static IP addresses, will set a reverse DNS and doesn't block port 25.

To change the delivery from smart host to direct, simply adjust the SMTP Connector in ESM. It is a radio button to switch between the two.

Simon.
0

Featured Post

Do You Know the 4 Main Threat Actor Types?

Do you know the main threat actor types? Most attackers fall into one of four categories, each with their own favored tactics, techniques, and procedures.

Join & Write a Comment

Local Continuous Replication is a cost effective and quick way of backing up Exchange server data. The following article describes the steps required to configure Local Continuous Replication. Also, the article tells you how to restore from a backup…
This process describes the steps required to Import and Export data from and to .pst files using Exchange 2010. We can use these steps to export data from a user to a .pst file, import data back to the same or a different user, or even import data t…
In this video we show how to create a Shared Mailbox in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Recipients >> Sha…
This video discusses moving either the default database or any database to a new volume.

758 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

17 Experts available now in Live!

Get 1:1 Help Now