sfsdtc
asked on
How to Change Exchange Server SMTP to Send Internet Email from Different Server
I have two Exchange 2000 SP3 servers each running on Windows 2000 Servers with SP4. Server A is configured with both an internal NIC and external (Internet IP) NIC. Server B just has an internal NIC enabled. Server A sends and receives all internal and Internet email. Server B is mainly just for backup purposes in case Server A would fail.
My problem is that Server A's Internet IP address has been blacklisted on DSBL.ORG's web site so we cannot send email to some domains. I've done checks (using Telnet and ORDB) for open relays but they all come back fine. Since this seems to be an extremely slow process to get resolved, I'm looking at some temporary solutions.
One temporary solution, I'm thinking, is to enable the Internet NIC on Server B and somehow configure Server A to send all Internet email through Server B. Unfortunately, I couldn't figure out how to do this if it's even possible. I don't want to change DNS entries as I still want email to come into Server A. I just want Server B to be able to send all Internet email through its SMTP connection. Can you tell me if this is possible and how to do it?
I should also mention that Server A is also my proxy server (running ISA Server 2000) and my Web Site (running IIS 5.0, I think).
If the above won't work or cannot be done, is it possible to add another NIC to Server A, configure it with a different Internet IP address then send all SMTP Internet email throught the new NIC? If so, how can I configure Exchange to look at the second Internet NIC?
I'm assuming here that the blacklist is by IP address and not by domain name. Looking at dnsstuff for my IP address, this appears to be correct.
Thanks!
Doug
My problem is that Server A's Internet IP address has been blacklisted on DSBL.ORG's web site so we cannot send email to some domains. I've done checks (using Telnet and ORDB) for open relays but they all come back fine. Since this seems to be an extremely slow process to get resolved, I'm looking at some temporary solutions.
One temporary solution, I'm thinking, is to enable the Internet NIC on Server B and somehow configure Server A to send all Internet email through Server B. Unfortunately, I couldn't figure out how to do this if it's even possible. I don't want to change DNS entries as I still want email to come into Server A. I just want Server B to be able to send all Internet email through its SMTP connection. Can you tell me if this is possible and how to do it?
I should also mention that Server A is also my proxy server (running ISA Server 2000) and my Web Site (running IIS 5.0, I think).
If the above won't work or cannot be done, is it possible to add another NIC to Server A, configure it with a different Internet IP address then send all SMTP Internet email throught the new NIC? If so, how can I configure Exchange to look at the second Internet NIC?
I'm assuming here that the blacklist is by IP address and not by domain name. Looking at dnsstuff for my IP address, this appears to be correct.
Thanks!
Doug
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
is there any mailboxes on server B -if not you could use it as a FE /smart host option
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Thanks folks, I printed this and info on the links you provided. I'll read through all of this then try your suggestions. If anyone is familiar with blacklist sites like dsbl.org, can you tell me how I can check to see what triggered our site being listed on there in the first place?
Doug. . .
Doug. . .
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
I looked at the above link and tried to follow its directions. However, when I go to Properties for my Virtual SMTP Server, click the Access tab, click the Relay button then the Add button, it does not give me an option to add users. It only allows me to add "single computer", "group of computers", or "domain". There is no "Users" button as mentioned in the link.
Doug
Doug
Don't click on the add button, the users button is on the Relay dialog.
If you clear the Allow all computers which.... checkbox, it becomes available. Exchange 2000 & 2003 property pages are slightly different.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Thanks for the suggestions, I'll investigate. According to the DSBL.ORG website I can initiate a new request to have my server removed from their list tomorrow (7 days have elapsed since the last time I did this). I'm hoping this works.
If this doesn't work, I'm going to try just changing DNS entries and my server Internet IP address to something else. As mentioned above, just using another server wouldn't be enough due to reverse DNS so I'd have to update DNS anyway. If I have to do this, I'll install a USB NIC on the server so that I'll have two Internet NICs on the server (Server A) which, hopefully, will allow access to both the current and new IP addresses until the DNS is replicated. I'll do this late Friday so as to avoid as much downtime as possible. Once the DNS has replicated, I'll remove the old IP address - making sure to change IIS, Exchange, and ISA as needed to reflect the new address.
I will follow your suggestions to continue to determine what caused my email server to be blacklisted in the first place.
Doug. . .
If this doesn't work, I'm going to try just changing DNS entries and my server Internet IP address to something else. As mentioned above, just using another server wouldn't be enough due to reverse DNS so I'd have to update DNS anyway. If I have to do this, I'll install a USB NIC on the server so that I'll have two Internet NICs on the server (Server A) which, hopefully, will allow access to both the current and new IP addresses until the DNS is replicated. I'll do this late Friday so as to avoid as much downtime as possible. Once the DNS has replicated, I'll remove the old IP address - making sure to change IIS, Exchange, and ISA as needed to reflect the new address.
I will follow your suggestions to continue to determine what caused my email server to be blacklisted in the first place.
Doug. . .
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Thanks for all the responses. I'm to the point where I think my only solution is to just give my server another Internet IP address and change DNS accordingly. I'll leave this item open for a day or two in case anyone wants to respond. Then, I'll close it trying to divide the points as best as I can.
Doug. . .
Doug. . .