plitz1972
asked on
After replacing failed Front End Exchange Server, we're experiences several issues sending mail
We have a single Exchange Organization with a Front End Exchange Server and Back End Exchange Server. We're using Exchange Server 2003 on Windows Server 2003 Standard Edition for both servers, both have the latest patches and security updates. The Front End Server also has GFI MailEssentials installed for scanning all incoming email traffic.
Three weeks ago, the Front End server died and I was unable to recover the server from backups. I did the research and figured out how to remove the server from AD and Exchange without the server actually being online. I proceeded to rebuild the server using a different computer name and IP Address to avoid any conflicts if there were any remnants of the old server still lingering in AD. I made the necessary correction on our Firewall to reflect the name and IP Address changes of the Front End Exchange Server without changing any other settings on said firewall policies. I spoke with the IT Consultant who originally configured this Exchange Organization to verify how he had it configured, which I have listed below:
1. The Front End received all incoming email for mycompany.com, which scanned the email using GFI MailEssentials and then forwarded the scanned mail to the Back End.
2. The Back End sent all outgoing mail directly without relaying the emails through the Front End.
Prior to the failure of the Front End server, all outgoing email messages received by recipients outside of our organization would have the following info in the email header:
Delivered-To: receiver@gmail.com
Received: by 10.142.102.19 with SMTP id z19cs550179wfb;
Mon, 14 Apr 2008 06:33:46 -0700 (PDT)
Received: by 10.150.54.6 with SMTP id c6mr6090076yba.112.1208180
Mon, 14 Apr 2008 06:33:46 -0700 (PDT)
Return-Path: <sender@mycompany.com>
Received: from mail.mycompany.com (mail.mycompany.com [206.178.26.14])
by mx.google.com with ESMTP id 66si13774207wra.15.2008.04
Mon, 14 Apr 2008 06:33:46 -0700 (PDT)
Received-SPF: pass (google.com: domain of sender@mycompany.com designates 206.178.26.14 as permitted sender) client-ip=206.178.26.14;
Authentication-Results: mx.google.com; spf=pass (google.com: domain of sender@mycompany.com designates 206.178.26.14 as permitted sender) smtp.mail=sender@mycompany
Received: from xbe.mycompany.com ([192.168.128.10]) by mail.mycompany.com with Microsoft SMTPSVC(6.0.3790.3959);
Mon, 14 Apr 2008 09:33:44 -0400
X-MimeOLE: Produced By Microsoft Exchange V6.5
Content-class: urn:content-classes:messag
MIME-Version: 1.0
Content-Type: multipart/alternative;
boundary="----_=_NextPart_
Since the replacement of the Front End server, we have been getting several different NDRs on some email addresses:
"You do not have permission to send to this recipient. For assistance, contact your system administrator.
<xbe.mycompany.com #5.7.1 smtp;550 5.7.1 <xbe.mycompany.com>: Helo command rejected: Host not found>"
AND
You do not have permission to send to this recipient. For assistance, contact your system administrator.
<xbe.mycompany.com #5.7.1 smtp;550 5.7.1 <receiver@theircompany.com
After replacing the Front End server, this is the header info in the emails received by outside recipients:
Delivered-To: receiver@gmail.com
Received: by 10.142.71.12 with SMTP id t12cs533610wfa;
Tue, 12 Aug 2008 05:55:36 -0700 (PDT)
Received: by 10.114.79.18 with SMTP id c18mr4697259wab.86.1218545
Tue, 12 Aug 2008 05:55:36 -0700 (PDT)
Return-Path: <sender@mycompany.com>
Received: from xbe.mycompany.com (natout.mycompany.com [206.178.26.2])
by mx.google.com with ESMTP id 9si3195150ywf.2.2008.08.12
Tue, 12 Aug 2008 05:55:36 -0700 (PDT)
Received-SPF: fail (google.com: domain of sender@mycompany.com does not designate 206.178.26.2 as permitted sender) client-ip=206.178.26.2;
Authentication-Results: mx.google.com; spf=hardfail (google.com: domain of sender@mycompany.com does not designate 206.178.26.2 as permitted sender) smtp.mail=sender@mycompany
Content-class: urn:content-classes:messag
Subject: FW: external hard drive question
Date: Tue, 12 Aug 2008 08:55:33 -0400
MIME-Version: 1.0
Content-Type: multipart/alternative;
boundary="----_=_NextPart_
Message-ID: <BEB1E4B06AFC8D40B04D7C053
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
X-MimeOLE: Produced By Microsoft Exchange V6.5
I have gone through and verified all of the settings that know of to check in Exchange Systems Manager, but I still can not figure out what I'm missing here. There must be an option to configure on ESM that directs all outgoing mail to mail.mycompany.com at 206.178.26.14, but I don't know where.
Sorry for the long-winded amount of info, but I figured I'd save people the hassle of asking for it later.
Three weeks ago, the Front End server died and I was unable to recover the server from backups. I did the research and figured out how to remove the server from AD and Exchange without the server actually being online. I proceeded to rebuild the server using a different computer name and IP Address to avoid any conflicts if there were any remnants of the old server still lingering in AD. I made the necessary correction on our Firewall to reflect the name and IP Address changes of the Front End Exchange Server without changing any other settings on said firewall policies. I spoke with the IT Consultant who originally configured this Exchange Organization to verify how he had it configured, which I have listed below:
1. The Front End received all incoming email for mycompany.com, which scanned the email using GFI MailEssentials and then forwarded the scanned mail to the Back End.
2. The Back End sent all outgoing mail directly without relaying the emails through the Front End.
Prior to the failure of the Front End server, all outgoing email messages received by recipients outside of our organization would have the following info in the email header:
Delivered-To: receiver@gmail.com
Received: by 10.142.102.19 with SMTP id z19cs550179wfb;
Mon, 14 Apr 2008 06:33:46 -0700 (PDT)
Received: by 10.150.54.6 with SMTP id c6mr6090076yba.112.1208180
Mon, 14 Apr 2008 06:33:46 -0700 (PDT)
Return-Path: <sender@mycompany.com>
Received: from mail.mycompany.com (mail.mycompany.com [206.178.26.14])
by mx.google.com with ESMTP id 66si13774207wra.15.2008.04
Mon, 14 Apr 2008 06:33:46 -0700 (PDT)
Received-SPF: pass (google.com: domain of sender@mycompany.com designates 206.178.26.14 as permitted sender) client-ip=206.178.26.14;
Authentication-Results: mx.google.com; spf=pass (google.com: domain of sender@mycompany.com designates 206.178.26.14 as permitted sender) smtp.mail=sender@mycompany
Received: from xbe.mycompany.com ([192.168.128.10]) by mail.mycompany.com with Microsoft SMTPSVC(6.0.3790.3959);
Mon, 14 Apr 2008 09:33:44 -0400
X-MimeOLE: Produced By Microsoft Exchange V6.5
Content-class: urn:content-classes:messag
MIME-Version: 1.0
Content-Type: multipart/alternative;
boundary="----_=_NextPart_
Since the replacement of the Front End server, we have been getting several different NDRs on some email addresses:
"You do not have permission to send to this recipient. For assistance, contact your system administrator.
<xbe.mycompany.com #5.7.1 smtp;550 5.7.1 <xbe.mycompany.com>: Helo command rejected: Host not found>"
AND
You do not have permission to send to this recipient. For assistance, contact your system administrator.
<xbe.mycompany.com #5.7.1 smtp;550 5.7.1 <receiver@theircompany.com
After replacing the Front End server, this is the header info in the emails received by outside recipients:
Delivered-To: receiver@gmail.com
Received: by 10.142.71.12 with SMTP id t12cs533610wfa;
Tue, 12 Aug 2008 05:55:36 -0700 (PDT)
Received: by 10.114.79.18 with SMTP id c18mr4697259wab.86.1218545
Tue, 12 Aug 2008 05:55:36 -0700 (PDT)
Return-Path: <sender@mycompany.com>
Received: from xbe.mycompany.com (natout.mycompany.com [206.178.26.2])
by mx.google.com with ESMTP id 9si3195150ywf.2.2008.08.12
Tue, 12 Aug 2008 05:55:36 -0700 (PDT)
Received-SPF: fail (google.com: domain of sender@mycompany.com does not designate 206.178.26.2 as permitted sender) client-ip=206.178.26.2;
Authentication-Results: mx.google.com; spf=hardfail (google.com: domain of sender@mycompany.com does not designate 206.178.26.2 as permitted sender) smtp.mail=sender@mycompany
Content-class: urn:content-classes:messag
Subject: FW: external hard drive question
Date: Tue, 12 Aug 2008 08:55:33 -0400
MIME-Version: 1.0
Content-Type: multipart/alternative;
boundary="----_=_NextPart_
Message-ID: <BEB1E4B06AFC8D40B04D7C053
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
X-MimeOLE: Produced By Microsoft Exchange V6.5
I have gone through and verified all of the settings that know of to check in Exchange Systems Manager, but I still can not figure out what I'm missing here. There must be an option to configure on ESM that directs all outgoing mail to mail.mycompany.com at 206.178.26.14, but I don't know where.
Sorry for the long-winded amount of info, but I figured I'd save people the hassle of asking for it later.
ASKER
Should I do this for the SMTP Connector for the Back End server? There is a connector listed under Routing Groups\First Routing Group\Connectors for both the Front End and the Back End.
I configured this option as you suggested for the Internet Mail SMTP Connector for my Back End server using the IP Address 206.178.26.14 in the "Forward all email through this connector to the following Smart Hosts". I also tried using mail.mycompany.com for this field, but both failed. After doing so, I sent myself a test email to my gmail account and immediately received the following Undeliverable error message:
Your message did not reach some or all of the intended recipients.
Subject: test outbound
Sent: 8/12/2008 12:50 PM
The following recipient(s) could not be reached:
'receiver@gmail.com' on 8/12/2008 12:50 PM
You do not have permission to send to this recipient. For assistance, contact your system administrator.
<xbe.mycompany.com #5.7.1 smtp;550 5.7.1 Unable to relay for receiver@gmail.com>
I configured this option as you suggested for the Internet Mail SMTP Connector for my Back End server using the IP Address 206.178.26.14 in the "Forward all email through this connector to the following Smart Hosts". I also tried using mail.mycompany.com for this field, but both failed. After doing so, I sent myself a test email to my gmail account and immediately received the following Undeliverable error message:
Your message did not reach some or all of the intended recipients.
Subject: test outbound
Sent: 8/12/2008 12:50 PM
The following recipient(s) could not be reached:
'receiver@gmail.com' on 8/12/2008 12:50 PM
You do not have permission to send to this recipient. For assistance, contact your system administrator.
<xbe.mycompany.com #5.7.1 smtp;550 5.7.1 Unable to relay for receiver@gmail.com>
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Open the SMTP Connector's Properties
Select Forward all email through this connector to the following Smart Hosts
Enter the required IP Addresses.