Solved

How do I prevent ATT from blocking email from my Microsft Exchange Server?

Posted on 2008-06-23
11
5,108 Views
Last Modified: 2013-11-29
I cannot send email messages to my client who has a prodigy.net address.  I get the following message after sending the email:  Your message did not reach some or all of the intended recipients.

      Subject:      Test Message
      Sent:      6/23/2008 2:39 PM

The following recipient(s) could not be reached:

      Tony Miranda on 6/23/2008 2:38 PM
            The message cannot be delivered due to a configuration error on the server. Please contact your Administrator.
            <graystone.pro #5.3.0 smtp;553 5.3.0 flpi132 - m5NJbuog007705, DNSBL:521< 68.16.219.193 >_is_blocked.__For_information_see_http://att.net/blocks>

I am using Outlook 2003 and Microsoft Small Business Server 2003.  My ISP is ATT.  Our domain graystone.pro is hosted by 1&1.  I connect to the POP3 accounts there and route them through Exchange.
Exchange-Server-Settings.bmp
Exchange-Server-Settings-2.bmp
0
Comment
Question by:graystoneengineering
  • 5
  • 3
  • 2
11 Comments
 
LVL 2

Expert Comment

by:NoLimit99RBS
ID: 21849924
It appears your server may be on ATT's blocked domain list.

Go here and fill out this form to get it removed: http://worldnet.att.net/general-info/bls_info/block_admin.html

It usually takes a couple of days.
0
 

Author Comment

by:graystoneengineering
ID: 21850065
I filled out that form last week, but still have the issue.  I didn't know what to fill in for "What changes have you made to your configuration since you have been blocked."  I don't know what changes to make.
0
 
LVL 2

Expert Comment

by:NoLimit99RBS
ID: 21850660
Did they send you a reply?

Usually you get added if spam or spam like behavior is coming from your server, so they want to know what you did to remedy the problem. However, they also add servers erroneously too, just make sure SMTP isnt coming from your network except from the mail server itself.
0
 

Author Comment

by:graystoneengineering
ID: 21850966
They have not responded.  How do I "make sure SMTP isnt coming from your network except from the mail server itself?"
0
 
LVL 70

Expert Comment

by:Chris Dent
ID: 21863659

> make sure SMTP isnt coming from your network except from the mail server itself?

You'd normally lock down Outbound SMTP requests (Port 25, TCP) on your Firewall so they could only come from servers you authorise.

You should check a few other things as well:

1. What name does your server use to create SMTP Connections?

You can find that under Exchange System Manager \ Administrative Groups \ Your Administrative Group \ Servers \ GEServer \ Protocols \ SMTP. Open up the Properties for the Virtual SMTP Server, select Advanced then Delivery (if I remember correctly) and check the FQDN specified there.

The name used should be public and match the Reverse Lookup Record in place for your server.

2. Check the Reverse Lookup Record

When your server sends out it will do so from a specific IP Address. That can be the IP Address of your Firewall, or another Public IP if you use NAT.

That IP Address should have a Reverse Lookup (Pointer / PTR) Record configured so that the IP maps back to the name of your mail server.

Missing Reverse Lookup is, by far, the most common reason for message rejections.

HTH

Chris
0
Maximize Your Threat Intelligence Reporting

Reporting is one of the most important and least talked about aspects of a world-class threat intelligence program. Here’s how to do it right.

 

Author Comment

by:graystoneengineering
ID: 21865794
Chris,

Thanks for the help.  You said, "That IP Address should have a Reverse Lookup (Pointer / PTR) Record configured so that the IP maps back to the name of your mail server."  How do I check this?  I'm sending screen shots of my SMTP configuration.
GESERVER-Advanced-Delivery.bmp
GESERVER-Configure-External-DNS-.bmp
GESERVER-Default-SMPT-VIrtual-Se.bmp
GESERVER-SMTP-Domain-Name-Check.bmp
0
 
LVL 70

Accepted Solution

by:
Chris Dent earned 500 total points
ID: 21865943

Hey,

In there you see you have a "graystone.pro" name. That means when your server connects to others it tells them that's its name.

The system you're connecting to performs the Reverse Lookup check to see if your server looks like a real server and not something on a broadband connection somewhere. It expects the name in the SMTP greeting to match the response from the Reverse Lookup.

The solution is to do the following:

1. Create a Host Record for your Mail Server in your Public Domain (assuming you don't have one already as part of an MX Record). e.g. mail.yourdomain.com

2. Change the FQDN above to match the public name. e.g. mail.yourdomain.com

3. Request that your ISP add a PTR Record mapping your Public IP Address to the Name used. e.g. 15.14.13.12.in-addr.arpa  PTR  mail.yourdomain.com. for an IP of 12.13.14.15.

Chris
0
 

Author Closing Comment

by:graystoneengineering
ID: 31469918
Thanks for the help.  I contacted my domain host, 1&1, and found out that I need a dedicated server package to do this.    We currently have a shared server package.  I've been thinking about ditching Exchange for some time now.  We only have 3 employees and Exchange has been a hassle all along.  I like the shared folders and contacts, but don't think it's worth it anymore especially if we're going to get our email blocked!
0
 

Author Comment

by:graystoneengineering
ID: 21866761
If  create an SMTP connector to my domain host, will this solve my problem?
0
 
LVL 70

Expert Comment

by:Chris Dent
ID: 21866858

Potentially, yes. If they have an SMTP service you can relay though it would get around the need for local configuration.

Chris
0

Featured Post

How to run any project with ease

Manage projects of all sizes how you want. Great for personal to-do lists, project milestones, team priorities and launch plans.
- Combine task lists, docs, spreadsheets, and chat in one
- View and edit from mobile/offline
- Cut down on emails

Join & Write a Comment

Utilizing an array to gracefully append to a list of EmailAddresses
Check out this infographic on what you need to make a good email signature that will work perfectly for your organization.
In this video we show how to create a mailbox database in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Servers >> Data…
The basic steps you have just learned will be implemented in this video. The basic steps are shown to configure an Exchange DAG in a live working Exchange Server Environment and manage the same (Exchange Server 2010 Software is used in a Windows Ser…

758 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

19 Experts available now in Live!

Get 1:1 Help Now