• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 319
  • Last Modified:

Some Email messages do not reach our server

I have an Exchange Server 2003 running on Windows SBS 2003.  As of about a week ago we do not receive some of our email.  Some emails get to us while other do not.  The ones that do not reach us are consistent from the same senders.  I did a message tracking and it looks that those messages do not even reach our server.  Our ISP keeps our DNS server, there are correct A, MX and PTR records for our server.  The last message logged on my server from one of these senders is on Thursday last week.  The only thing I changed on Thursday was our Security Certificate.
0
campinam
Asked:
campinam
  • 2
  • 2
  • 2
2 Solutions
 
Jeffrey Kane - TechSoEasyPrincipal ConsultantCommented:
How exactly did you change the SSL certificate?

Jeff
TechSoEasy
0
 
SembeeCommented:
The SSL certificate should not have caused mail delivery problems.
If you had done something with your server no messages would flow.

Do the senders get an NDR? As the recipient your hands are tied as there is very little you can do. They need to test to see whether they can connect, are getting the right MX records etc.

Simon.
0
 
campinamAuthor Commented:
For SBS 2003, in order to change your SSL certificate (install SSL certificate) you go through the whole Connect to the Internet routine, check Do Not Change ... for all other except Create a new Web server certificate.

I have more information.  On my ISP's DNS I had our Mail Server on High-10 and their mail server on Low-40 in case our server is down.  None of my "no receive senders" received a bounce until today after I removed my ISP's server (our ISP is having email servers major problems as we speak).  So, after removing their server as a backup and having only one MX record to my server, one of my "no receive senders" got a bounce with:
Diagnostic-Code: SMTP; 403 4.7.0 TLS handshake failed.
0
Creating Active Directory Users from a Text File

If your organization has a need to mass-create AD user accounts, watch this video to see how its done without the need for scripting or other unnecessary complexities.

 
Jeffrey Kane - TechSoEasyPrincipal ConsultantCommented:
That actually sounds like you have installed the SSL certificate on your Default SMTP Virtual Server, which is not required, nor desired.

Open up ESM > Servers > SERVERNAME> Protocols > SMTP > Default SMTP Virtual Server properties > Access Tab.  Click the Certificate button to remove the certificate from the server.

Jeff
TechSoEasy
0
 
SembeeCommented:
Now it becomes clear.
Have you tried to enable TLS on the SMTP virtual server? If so you need to remove that.
ESM, Servers, <your server>, Protocols, SMTP. Right click on the SMTP VS and choose properties. Click on the tab Access, then communication under Secure Communication. Ensure that Require Secure Channel is NOT enabled. Apply/OK out and restart the SMTP Server Service.

Simon.
0
 
campinamAuthor Commented:
Thank you, that was realy great help!
0

Featured Post

Problems using Powershell and Active Directory?

Managing Active Directory does not always have to be complicated.  If you are spending more time trying instead of doing, then it's time to look at something else. For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why

  • 2
  • 2
  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now