Solved

How do I prevent ATT from blocking email from my Microsft Exchange Server?

Posted on 2008-06-23
11
5,115 Views
Last Modified: 2013-11-29
I cannot send email messages to my client who has a prodigy.net address.  I get the following message after sending the email:  Your message did not reach some or all of the intended recipients.

      Subject:      Test Message
      Sent:      6/23/2008 2:39 PM

The following recipient(s) could not be reached:

      Tony Miranda on 6/23/2008 2:38 PM
            The message cannot be delivered due to a configuration error on the server. Please contact your Administrator.
            <graystone.pro #5.3.0 smtp;553 5.3.0 flpi132 - m5NJbuog007705, DNSBL:521< 68.16.219.193 >_is_blocked.__For_information_see_http://att.net/blocks>

I am using Outlook 2003 and Microsoft Small Business Server 2003.  My ISP is ATT.  Our domain graystone.pro is hosted by 1&1.  I connect to the POP3 accounts there and route them through Exchange.
Exchange-Server-Settings.bmp
Exchange-Server-Settings-2.bmp
0
Comment
Question by:graystoneengineering
  • 5
  • 3
  • 2
11 Comments
 
LVL 2

Expert Comment

by:NoLimit99RBS
ID: 21849924
It appears your server may be on ATT's blocked domain list.

Go here and fill out this form to get it removed: http://worldnet.att.net/general-info/bls_info/block_admin.html

It usually takes a couple of days.
0
 

Author Comment

by:graystoneengineering
ID: 21850065
I filled out that form last week, but still have the issue.  I didn't know what to fill in for "What changes have you made to your configuration since you have been blocked."  I don't know what changes to make.
0
 
LVL 2

Expert Comment

by:NoLimit99RBS
ID: 21850660
Did they send you a reply?

Usually you get added if spam or spam like behavior is coming from your server, so they want to know what you did to remedy the problem. However, they also add servers erroneously too, just make sure SMTP isnt coming from your network except from the mail server itself.
0
Optimizing Cloud Backup for Low Bandwidth

With cloud storage prices going down a growing number of SMBs start to use it for backup storage. Unfortunately, business data volume rarely fits the average Internet speed. This article provides an overview of main Internet speed challenges and reveals backup best practices.

 

Author Comment

by:graystoneengineering
ID: 21850966
They have not responded.  How do I "make sure SMTP isnt coming from your network except from the mail server itself?"
0
 
LVL 70

Expert Comment

by:Chris Dent
ID: 21863659

> make sure SMTP isnt coming from your network except from the mail server itself?

You'd normally lock down Outbound SMTP requests (Port 25, TCP) on your Firewall so they could only come from servers you authorise.

You should check a few other things as well:

1. What name does your server use to create SMTP Connections?

You can find that under Exchange System Manager \ Administrative Groups \ Your Administrative Group \ Servers \ GEServer \ Protocols \ SMTP. Open up the Properties for the Virtual SMTP Server, select Advanced then Delivery (if I remember correctly) and check the FQDN specified there.

The name used should be public and match the Reverse Lookup Record in place for your server.

2. Check the Reverse Lookup Record

When your server sends out it will do so from a specific IP Address. That can be the IP Address of your Firewall, or another Public IP if you use NAT.

That IP Address should have a Reverse Lookup (Pointer / PTR) Record configured so that the IP maps back to the name of your mail server.

Missing Reverse Lookup is, by far, the most common reason for message rejections.

HTH

Chris
0
 

Author Comment

by:graystoneengineering
ID: 21865794
Chris,

Thanks for the help.  You said, "That IP Address should have a Reverse Lookup (Pointer / PTR) Record configured so that the IP maps back to the name of your mail server."  How do I check this?  I'm sending screen shots of my SMTP configuration.
GESERVER-Advanced-Delivery.bmp
GESERVER-Configure-External-DNS-.bmp
GESERVER-Default-SMPT-VIrtual-Se.bmp
GESERVER-SMTP-Domain-Name-Check.bmp
0
 
LVL 70

Accepted Solution

by:
Chris Dent earned 500 total points
ID: 21865943

Hey,

In there you see you have a "graystone.pro" name. That means when your server connects to others it tells them that's its name.

The system you're connecting to performs the Reverse Lookup check to see if your server looks like a real server and not something on a broadband connection somewhere. It expects the name in the SMTP greeting to match the response from the Reverse Lookup.

The solution is to do the following:

1. Create a Host Record for your Mail Server in your Public Domain (assuming you don't have one already as part of an MX Record). e.g. mail.yourdomain.com

2. Change the FQDN above to match the public name. e.g. mail.yourdomain.com

3. Request that your ISP add a PTR Record mapping your Public IP Address to the Name used. e.g. 15.14.13.12.in-addr.arpa  PTR  mail.yourdomain.com. for an IP of 12.13.14.15.

Chris
0
 

Author Closing Comment

by:graystoneengineering
ID: 31469918
Thanks for the help.  I contacted my domain host, 1&1, and found out that I need a dedicated server package to do this.    We currently have a shared server package.  I've been thinking about ditching Exchange for some time now.  We only have 3 employees and Exchange has been a hassle all along.  I like the shared folders and contacts, but don't think it's worth it anymore especially if we're going to get our email blocked!
0
 

Author Comment

by:graystoneengineering
ID: 21866761
If  create an SMTP connector to my domain host, will this solve my problem?
0
 
LVL 70

Expert Comment

by:Chris Dent
ID: 21866858

Potentially, yes. If they have an SMTP service you can relay though it would get around the need for local configuration.

Chris
0

Featured Post

NAS Cloud Backup Strategies

This article explains backup scenarios when using network storage. We review the so-called “3-2-1 strategy” and summarize the methods you can use to send NAS data to the cloud

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Marketers need statistics and metrics like everybody else needs oxygen. In this article we explain how to enable marketing campaign statistics for Microsoft Exchange mail.
Read this checklist to learn more about the 15 things you should never include in an email signature.
To show how to generate a certificate request in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.:  First we need to log into the Exchange Admin Center. Navigate to the Servers >> Certificates…
This video demonstrates how to sync Microsoft Exchange Public Folders with smartphones using CodeTwo Exchange Sync and Exchange ActiveSync. To learn more about CodeTwo Exchange Sync and download the free trial, go to: http://www.codetwo.com/excha…

777 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question