Some Emails bounce back

I'm using Microsoft Exchange 2003 SP2. I was using a 3rd party spam firewall. The firewall crashed and I had to point my DNS away from the spam firewall to the Exchange server. It worked and of course everyone got spammed. I got a new firewall replacement, installed it and pointed DNS back to the firewall, away from the Exchange server....the new firewall has the same name and IP address as the old one. The configuration on the firewall is exactly the same as the old one because I simply backed up the old one and restored it to the new one (exact same firewall model and firmware).....

People are saying they're getting some outside email but not all. The people sending the mail say they're getting bounce backs. The configs, IP, firewall names etc are exactly the same....Please give me some ideas of what could be blocking some of the mail
bernardbAsked:
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

kieran_bCommented:
When you pointed DNS back away from the Exchange server, did you close access to the Exchange server directly?

Can you drop your domain in here and show us the errors? -> http://www.dnsreport.com

Kieran
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
bernardbAuthor Commented:
What do you mean by "close access to the Exchange server directly"?

Getting MX record for chcsnet.org (from local DNS server, may be cached)... Got it!
[Successful connect: Got a good response [250 Ok]] (took 4.0 seconds)
xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
Mail FAIL Connect to mail servers ERROR: I could not complete a connection to any of your mailservers!

barracuda.chcsnet.org: Timed out [Last data sent: RCPT TO: ]

If this is a timeout problem, note that the DNSreport only waits about 40 seconds for responses, so your mail *may* work fine in this case but you will need to use testing tools specifically designed for such situations to be certain.
xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
parent
WARN Glue at parent nameservers WARNING. The parent servers (I checked with a0.org.afilias-nst.info.) are not providing glue for all your nameservers. This means that they are supplying the NS records (host.example.com), but not supplying the A records (192.0.2.53), which can cause slightly slower connections, and may cause incompatibilities with some non-RFC-compliant programs. This is perfectly acceptable behavior per the RFCs. This will usually occur if your DNS servers are not in the same TLD as your domain (for example, a DNS server of "ns1.example.org" for the domain "example.com"). In this case, you can speed up the connections slightly by having NS records that are in the same TLD as your domain.
xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
soa
WARN Nameservers on separate class C's WARNING: We cannot test to see if your nameservers are all on the same Class C (technically, /24) range, because the root servers are not sending glue. We plan to add such a test later, but today you will have to manually check to make sure that they are on separate Class C ranges. Your nameservers should be at geographically dispersed locations. You should not have all of your nameservers at the same location. RFC2182 3.1 goes into more detail about secondary nameserver location.
xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
ns
WARN SOA Serial Number WARNING: Your SOA serial number is: 1286. That is OK, but the recommended format (per RFC1912 2.2) is YYYYMMDDnn, where 'nn' is the revision. For example, if you are making the 3rd change on 02 May 2006, you would use 2006050203. This number must be incremented every time you make a DNS change.

0
kieran_bCommented:
By close access, I mean did you set the exchange server to ONLY receive from the barracuda.

Can you put a real email address on your domain into this site -> http://www.zmailer.org/mxverify.html <- then tell me if you get an error at the end
0
The Ultimate Tool Kit for Technolgy Solution Provi

Broken down into practical pointers and step-by-step instructions, the IT Service Excellence Tool Kit delivers expert advice for technology solution providers. Get your free copy for valuable how-to assets including sample agreements, checklists, flowcharts, and more!

bernardbAuthor Commented:
It only receives from the barracuda...all incoming mail goes through the Barracuda except for internal email (email from recipents on the Exchange email server itself)

FYI....the site doesn't allow me to enter an email address, Just the domain. The domain checks out fine according to the site.

It says connected and the dns yielded the correct MX entry
0
kieran_bCommented:
>>the site doesn't allow me to enter an email address

It does for me.

http://www.zmailer.org/mxverify.html 
0
bernardbAuthor Commented:
Oops...yes it does allow me to enter an email address....results below

RSET
 250 Ok
 MAIL FROM:<postmaster@z2.cat.iki.fi>
 250 Ok
 RCPT TO:<atbrown@xxxxnet.org>
 250 Ok

0
kieran_bCommented:
OK, well, that proves that you are running, and running well.

Do you have access to one of these bounces?  Was it just when you made the change?  Are they still bouncing now?
0
bernardbAuthor Commented:
I was out today, but got emails from the VP and one of my Admins...Users are says people are sending them emails and they aren't receiving SOME of them. The people outside of the company are getting bounce backs when they send to our users...It's not trapped in the barracuda spam filter or getting stopped by intelligent message filter. They're bouncing back as if the recipent can't be found on our server...When I try sending to the same user from my personal hotmail account, they receive it everytime.

I made the change yesterday and sent several emails from outside accounts to our Exchange server and they all went through. To many have complained for it to not be true...I don't get it. It's not like they aren't receiving any mail from the outside....just some
0
kieran_bCommented:
That is why I asked if you changed anything on the exchange server.

As the recipient, it is hard to see exactly what is going on - we need to see a bounce
0
bernardbAuthor Commented:
I will have one of our users have a person who sending them an email and receiving a bounce back to send it to me...to my jobs email address and a outside personal email address....when I get back to the office.

Thanks
0
bernardbAuthor Commented:
It appears that they are getting their email now....I relaxed the IMF and allow a few domains within the Blackberry....

Thanks for the help
0
bernardbAuthor Commented:
I'm just trying to award points for trying to help....thanks
0
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Exchange

From novice to tech pro — start learning today.