Solved

SBS cant receive external email

Posted on 2007-03-17
12
484 Views
Last Modified: 2010-04-20
I have SBS 2003 set up using 2 NIC one for the internal domain, and one which connects to a modem for the BB connection. Currently i am able to send and receive emails internally, and i can send emails to an external address fine, but when i try and send them from my external address xxxxxx@virgin.net to xxxxxx@mydomain.com it doesnt get there and is usally returned to my external address with a faliure notice, i have tried everything i can think of and still got no where, i have also tried to re set the name servers, MX records etc (but may have made them worse!)

PLS HELP!
0
Comment
Question by:cjwdent
  • 4
  • 4
  • 4
12 Comments
 
LVL 12

Expert Comment

by:zappafan2k2
ID: 18740676
What does the failure notice say?  That should give you a starting place.  If it says, could not make connection, then I would guess the problem lies with your firewall/port forwarding.  Can you telnet to port 25 of your public IP address from outside your network?

If you're worried about your DNS settings, try this on a windows box ourside your network:

nslookup
set type=MX
yourdomain.com
    -> this should return the public host name of your mail server
set type=A
the-host-name-returned-above.com
   -> this should return your public IP address

or go to www.dnsreports.com and use their tools.
0
 

Author Comment

by:cjwdent
ID: 18741375
Microsoft Windows XP [Version 5.1.2600]
(C) Copyright 1985-2001 Microsoft Corp.

C:\Documents and Settings\Chris>nslookup
Default Server:  BelkinModem.Barnwell
Address:  192.168.2.1

> set type=MX
> msdpuk.net
Server:  BelkinModem.Barnwell
Address:  192.168.2.1

Non-authoritative answer:
msdpuk.net      MX preference = 10, mail exchanger = mx0.123-reg.co.uk
msdpuk.net      MX preference = 20, mail exchanger = mx1.123-reg.co.uk

mx1.123-reg.co.uk       internet address = 195.224.48.126
mx1.123-reg.co.uk       internet address = 195.224.48.125
mx1.123-reg.co.uk       internet address = 195.224.48.124
mx1.123-reg.co.uk       internet address = 195.224.48.123
mx1.123-reg.co.uk       internet address = 195.224.48.121
mx1.123-reg.co.uk       internet address = 195.224.48.120
mx1.123-reg.co.uk       internet address = 195.224.48.119
mx1.123-reg.co.uk       internet address = 195.224.48.118
mx1.123-reg.co.uk       internet address = 195.224.48.117
mx1.123-reg.co.uk       internet address = 195.224.48.116
mx1.123-reg.co.uk       internet address = 195.224.48.115
> set type=A
> mx1.123-reg.co.uk
Server:  BelkinModem.Barnwell
Address:  192.168.2.1

Non-authoritative answer:
Name:    mx1.123-reg.co.uk
Addresses:  195.224.48.123, 195.224.48.121, 195.224.48.120, 195.224.48.119
          195.224.48.118, 195.224.48.117, 195.224.48.116, 195.224.48.115, 195.22
4.48.126
          195.224.48.125, 195.224.48.124


That is what i get when i do an NSLOOKUP from out side the network, and when i telnet to prot 25 i get the message :

220 msdpuk.net Microsoft ESMTP MAIL Service, Version: 6.0.3790.1830 ready at  Sa
t, 17 Mar 2007 20:40:35 +0000


which i presume means yes i can telnet.
0
 
LVL 12

Expert Comment

by:zappafan2k2
ID: 18742061
It looks to me like your problem is with DNS then.  
FYI, your e-mail would first be tried at mx0.123-reg.co.uk, since that has a higher priority.  It seems that your e-mail is being sent to a hosting company.  I tried manually sending an e-mail to info@msdpuk.net using one of the servers, but they must use greylisting or some other spam prevention method that always returns a temporary error.

Anyway, what you really need to do is set up:
1. a hostname (possibly mail.msdpuk.net?) that points to your public IP address
2. a single MX record that points to the hostname in step 1

You'll want to remove the other MX records, because if for some reason your server is unavailable, the sender's server would try the other hosts.
0
Best Practices: Disaster Recovery Testing

Besides backup, any IT division should have a disaster recovery plan. You will find a few tips below relating to the development of such a plan and to what issues one should pay special attention in the course of backup planning.

 

Author Comment

by:cjwdent
ID: 18742854
zappafan2k2,

that makes sense, how do i go about setting up a host name, is that something i do on my sbs box or with the ISP provider or hosting company?
0
 
LVL 12

Expert Comment

by:zappafan2k2
ID: 18743158
From the information I was able to acquire, you will need to talk to someone at Pipex (your domain service provider).  They manage the DNS for your domain.  Tell them what you are looking to do.  
0
 
LVL 74

Expert Comment

by:Jeffrey Kane - TechSoEasy
ID: 18748235
In reviewing the whois for msdpuk.net, it looks as though you registered the domain with TUCOWS.com.  If this is correct, then you most likely need to modify your DNS Zone file there with the information that zappafan2k2 recommended above.

Jeff
TechSoEasy
0
 
LVL 12

Expert Comment

by:zappafan2k2
ID: 18748420
TechSoEasy:

I saw that too, but the NS servers are
msdpuk.net name server ns.123-reg.co.uk.
msdpuk.net name server ns2.123-reg.co.uk.

so DNS is handled by those servers.  Are they under Tucows' control?
0
 
LVL 74

Expert Comment

by:Jeffrey Kane - TechSoEasy
ID: 18748957
Well, I don't really know... but cjwdent should... since msdpuk.net already points to the SBS.  Wherever that got configured is where the MX record and HOST record goes.  :-)

Jeff
TechSoEasy
0
 
LVL 74

Expert Comment

by:Jeffrey Kane - TechSoEasy
ID: 18748983
I should point out, however, cjwdent... that you've apparently configured your SSL certificate on your SBS for www.msdpuk.net.  This is fine if you plan on hosting a business card type public web site on your server and if you want users to be able to access Remote Web Workplace (http://sbsurl.com/rww) via https://www.msdpuk.net/remote.  But if you choose to use a different host name (such as mail.msdpuk.net) to access the server for RWW or OWA you'll need to rerun the Configure Email and Internet Connection Wizard to recreate the SSL certificate with the proper host name.

Jeff
TechSoEasy
0
 

Author Comment

by:cjwdent
ID: 18749467
Hi, thanks for the comments.

The RWW will really just be another backup way of gaining access to the server in an emergancy from somewhere else, our employees will have access to the www.msdpuk.net/exchange to gain access to there email when not at work.

With regard to the hostname, the domain is registered with http://www.123-reg.co.uk/ but i not entirly sure what the hostname will do or why i need to do it, i have emailed them to check whether it is them i need to do this with, but as of yet have heard nothing back!

Thanks for your help so far.

Chris (cjwdent)
MSDP
0
 
LVL 74

Accepted Solution

by:
Jeffrey Kane - TechSoEasy earned 500 total points
ID: 18751954
RWW does not grant access to the server for employees, by the way.  It provides them access to THEIR desktops, as well as email and the companyweb.  They get a different interface than you would.  See http://sbsurl.com/rww for details.

What will the Hostname do?  Well, it will allow you to create an MX record.  You need to do both because an MX record can ONLY point to a hostname not an IP address.  And YES, it is them that you would do this through... just log into your control panel on their site and as you'll see by their help pages:
http://www.123-reg.co.uk/support/trouble.pl?id=44&switch=DNS/NameServer%20Management&from_faq=1
http://www.123-reg.co.uk/support/trouble.pl?id=46&switch=DNS/NameServer%20Management&from_faq=1

You can create an A Host record and an MX record right there.

Jeff
TechSoEasy

0
 

Author Comment

by:cjwdent
ID: 18752049
Jeff,
I have created a new MX record and i think an A host record, I have emailed you experts-exchange email address, with a screen shot of what i have done, not 100% it is correct!

Thanks.

Chris

0

Featured Post

Free Tool: Port Scanner

Check which ports are open to the outside world. Helps make sure that your firewall rules are working as intended.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Because virtualization becomes more and more common, and, with Microsoft Hyper-V included in Windows Server at no additional costs, and, most server hardware nowadays is more than capable of running a physical Small Business Server (SBS) 2008 or 201…
You may have discovered the 'Compatibility View Settings' workaround for making your SBS 2008 Remote Web Workplace 'connect to a computer' section stops 'working around' after a Windows 10 client upgrade.  That can be fixed so it 'works around' agai…
Microsoft Active Directory, the widely used IT infrastructure, is known for its high risk of credential theft. The best way to test your Active Directory’s vulnerabilities to pass-the-ticket, pass-the-hash, privilege escalation, and malware attacks …
In an interesting question (https://www.experts-exchange.com/questions/29008360/) here at Experts Exchange, a member asked how to split a single image into multiple images. The primary usage for this is to place many photographs on a flatbed scanner…

829 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question