Sporadic Emails disappearing. Exchange 2003

Posted on 2007-10-02
Medium Priority
Last Modified: 2013-11-30
Exchange 2003
Windows Server 03

Heres an odd one, I think its a sporadic DNS issue but maybe not. They are complaning that people are sending them messages and they never receive them.

I email a client, they never recieve the message. I email them again and they receive it.

I check their Exchange logs and sure enough the 1st message is nowhere to be found.

I check out my logs and it looks like it went through, however, its missing the server domain name. You can see it on the last line of the logs. Check it out.

heres the one that did not go through


and here is the one that did


Any ideas what could cause that problem?
Question by:Biziteks
  • 4
  • 3
LVL 104

Expert Comment

ID: 19999383
Message tracking only shows what the server that is receiving the message has in its banner. Therefore if the banner is blank or something like "220              " then message tracking will not show anything.
You can see that in the second screenshot because it has a .local address - which isn't valid on the internet.

If I had seen that message tracking log then I would say the message has been delivered correctly, it is the other side that has the problem.
You can look at their MX records using the online tools and see if they have additional servers in the MX records. That may show that they have an invalid server, or a server at an ISP which is losing the email.


Author Comment

ID: 20006617
FAIL Missing (stealth) nameservers FAIL: You have one or more missing (stealth) nameservers. The following nameserver(s) are listed (at your nameservers) as nameservers for your domain, but are not listed at the parent nameservers (therefore, they may or may not get used, depending on whether your DNS servers return them in the authority section for other requests, per RFC2181 5.4.1). You need to make sure that these stealth nameservers are working; if they are not responding, you may have serious problems! The DNSreport will not query these servers, so you need to be very careful that they are working properly.

This is listed as an ERROR because there are some cases where nasty problems can occur (if the TTLs vary from the NS records at the root servers and the NS records point to your own domain, for example).  

FAIL Missing nameservers 2 ERROR: One or more of the nameservers listed at the parent servers are not listed as NS records at your nameservers. The problem NS records are:

Author Comment

ID: 20006667
These are the two errors I get back from DNSReport, nothing life changing there. Problem is still continuing today. I checked out there MX records and they all come out fine as well.

Domain Type Class TTL Answer
hmscpa.com. NS IN 3600 ns1.ipowerweb.net.
hmscpa.com. MX IN 3600 mail.hmscpa.com. [Preference = 10]
hmscpa.com. NS IN 3600 ns2.ipowerweb.net.
hmscpa.com. SOA IN 3600 Primary DNS server: ns1.ipowerweb.net.
Responsible Name: hostmaster@ipowerweb.net.
Serial: 2003021702
Refresh: 80000 (22h 13m 20s)
Retry: 3600 (1h)
Expire: 604800 (1w)
Minimum/NegTTL: 86400 (1d)
hmscpa.com. A IN 3600
mail.hmscpa.com. A IN 3600
ns1.ipowerweb.net. A IN 3600
ns2.ipowerweb.net. A IN 3600

Modern healthcare requires a modern cloud. View this brief video to understand how the Concerto Cloud for Healthcare can help your organization.

LVL 104

Expert Comment

ID: 20009264
Name server errors are out of your hands.
When it comes to email you are only interested in the mail server section of dnsreport.com - nothing more.

Can you telnet to the site that has the problems on port 25?
If you can, do you see a banner, or does the cursor just sit there?


Author Comment

ID: 20013684
Hmmm I telnetting to it once, it just sat there with a blinkin cursor for about 30 seconds.

Then I tried it again immedialty after and it prompted me with the 220 SMTP message.

220 hms-server.HMS.local Microsoft ESMTP MAIL Service, Version: 6.0.3790.211 re
dy at  Thu, 4 Oct 2007 08:50:59 -0400
LVL 104

Accepted Solution

Sembee earned 2000 total points
ID: 20018964
That could be tarpitting or something like that. It isn't the Exchange way of doing it, as Exchange responds immediately and the tarpit is later in the sequence. Therefore it could be a third party tool that is causing the problem.

Either something is causing your connection to be disrupted initially and then allowed through or something is happening at the other end.

Most odd.


Author Comment

ID: 20051342
I restarted the server and it seems to have rectified the problem. Weird

Featured Post

Industry Leaders: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

How to effectively resolve the number one email related issue received by helpdesks.
Mailbox Corruption is a nightmare every Exchange DBA wishes he never has. Recovering from it can be super-hectic if not entirely futile. And though techniques like the New-MailboxRepairRequest cmdlet have been designed to help with fixing minor corr…
To show how to generate a certificate request in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.:  First we need to log into the Exchange Admin Center. Navigate to the Servers >> Certificates…
This video shows how to quickly and easily add an email signature for all users on Exchange 2016. The resulting signature is applied on a server level by Exchange Online. The email signature template has been downloaded from: www.mail-signatures…
Suggested Courses

862 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question