Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people, just like you, are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions

How do I prevent ATT from blocking email from my Microsft Exchange Server?

Posted on 2008-06-23
Last Modified: 2013-11-29
I cannot send email messages to my client who has a prodigy.net address.  I get the following message after sending the email:  Your message did not reach some or all of the intended recipients.

      Subject:      Test Message
      Sent:      6/23/2008 2:39 PM

The following recipient(s) could not be reached:

      Tony Miranda on 6/23/2008 2:38 PM
            The message cannot be delivered due to a configuration error on the server. Please contact your Administrator.
            <graystone.pro #5.3.0 smtp;553 5.3.0 flpi132 - m5NJbuog007705, DNSBL:521< >_is_blocked.__For_information_see_http://att.net/blocks>

I am using Outlook 2003 and Microsoft Small Business Server 2003.  My ISP is ATT.  Our domain graystone.pro is hosted by 1&1.  I connect to the POP3 accounts there and route them through Exchange.
Question by:graystoneengineering
  • 5
  • 3
  • 2

Expert Comment

ID: 21849924
It appears your server may be on ATT's blocked domain list.

Go here and fill out this form to get it removed: http://worldnet.att.net/general-info/bls_info/block_admin.html

It usually takes a couple of days.

Author Comment

ID: 21850065
I filled out that form last week, but still have the issue.  I didn't know what to fill in for "What changes have you made to your configuration since you have been blocked."  I don't know what changes to make.

Expert Comment

ID: 21850660
Did they send you a reply?

Usually you get added if spam or spam like behavior is coming from your server, so they want to know what you did to remedy the problem. However, they also add servers erroneously too, just make sure SMTP isnt coming from your network except from the mail server itself.
Are your AD admin tools letting you down?

Managing Active Directory can get complicated.  Often, the native tools for managing AD are just not up to the task.  The largest Active Directory installations in the world have relied on one tool to manage their day-to-day administration tasks: Hyena. Start your trial today.


Author Comment

ID: 21850966
They have not responded.  How do I "make sure SMTP isnt coming from your network except from the mail server itself?"
LVL 70

Expert Comment

by:Chris Dent
ID: 21863659

> make sure SMTP isnt coming from your network except from the mail server itself?

You'd normally lock down Outbound SMTP requests (Port 25, TCP) on your Firewall so they could only come from servers you authorise.

You should check a few other things as well:

1. What name does your server use to create SMTP Connections?

You can find that under Exchange System Manager \ Administrative Groups \ Your Administrative Group \ Servers \ GEServer \ Protocols \ SMTP. Open up the Properties for the Virtual SMTP Server, select Advanced then Delivery (if I remember correctly) and check the FQDN specified there.

The name used should be public and match the Reverse Lookup Record in place for your server.

2. Check the Reverse Lookup Record

When your server sends out it will do so from a specific IP Address. That can be the IP Address of your Firewall, or another Public IP if you use NAT.

That IP Address should have a Reverse Lookup (Pointer / PTR) Record configured so that the IP maps back to the name of your mail server.

Missing Reverse Lookup is, by far, the most common reason for message rejections.



Author Comment

ID: 21865794

Thanks for the help.  You said, "That IP Address should have a Reverse Lookup (Pointer / PTR) Record configured so that the IP maps back to the name of your mail server."  How do I check this?  I'm sending screen shots of my SMTP configuration.
LVL 70

Accepted Solution

Chris Dent earned 500 total points
ID: 21865943


In there you see you have a "graystone.pro" name. That means when your server connects to others it tells them that's its name.

The system you're connecting to performs the Reverse Lookup check to see if your server looks like a real server and not something on a broadband connection somewhere. It expects the name in the SMTP greeting to match the response from the Reverse Lookup.

The solution is to do the following:

1. Create a Host Record for your Mail Server in your Public Domain (assuming you don't have one already as part of an MX Record). e.g. mail.yourdomain.com

2. Change the FQDN above to match the public name. e.g. mail.yourdomain.com

3. Request that your ISP add a PTR Record mapping your Public IP Address to the Name used. e.g.  PTR  mail.yourdomain.com. for an IP of


Author Closing Comment

ID: 31469918
Thanks for the help.  I contacted my domain host, 1&1, and found out that I need a dedicated server package to do this.    We currently have a shared server package.  I've been thinking about ditching Exchange for some time now.  We only have 3 employees and Exchange has been a hassle all along.  I like the shared folders and contacts, but don't think it's worth it anymore especially if we're going to get our email blocked!

Author Comment

ID: 21866761
If  create an SMTP connector to my domain host, will this solve my problem?
LVL 70

Expert Comment

by:Chris Dent
ID: 21866858

Potentially, yes. If they have an SMTP service you can relay though it would get around the need for local configuration.


Featured Post

Optimizing Cloud Backup for Low Bandwidth

With cloud storage prices going down a growing number of SMBs start to use it for backup storage. Unfortunately, business data volume rarely fits the average Internet speed. This article provides an overview of main Internet speed challenges and reveals backup best practices.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Learn to move / copy / export exchange contacts to iPhone without using any software. Also see the issues in configuration of exchange with iPhone to migrate contacts.
How to resolve IMCEAEX NDRs in Exchange or Exchange Online related to invalid X500 addresses.
In this video we show how to create a User Mailbox in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Recipients >> Mailb…
This video discusses moving either the default database or any database to a new volume.

789 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question