Solved

Exchange tries sending mail to the wrong IP address periodically

Posted on 2008-10-10
10
291 Views
Last Modified: 2013-11-30
I have an SBS 2003 server running Exchange. Periodically, when sending to a remote domain it fails with an NDR, usually no such recipient. Looking in the SMTP logs I've noted that when the emails go through successfully, the Exchange server is sending to the correct IP address. When the emails fails, the Exchange server is trying to send to a wrong address, which happens to be the same domains WWW record IP address, which happens to be running an SMTP server, but kicks it back as no such recipeint. The remote domain is running their own mail server, not hosting it.
0
Comment
Question by:msjesiel
10 Comments
 
LVL 4

Expert Comment

by:codezp
ID: 22689450
I would suggest your try clearing the DNS, the wrong IP might be cached and it sometime pulls it up if it tries using local instead of network.

hope that helps
0
 

Author Comment

by:msjesiel
ID: 22689550
That is one of the first things I did, flushed teh DNS cache on the server. This appears to be happening over several days time, longer than a likely TTL would be set at. I'm attaching two smtp logs for a successful mail delivery and a failed email delivery. They were sent an hour and a half apart or so.
0
 

Author Comment

by:msjesiel
ID: 22689558
Here are the log files for failed and success delivery. One and a half hours apart.
failed.txt
successful-sent-hour-earlier.txt
0
 
LVL 4

Expert Comment

by:codezp
ID: 22689726
Ok so they have both of those ips:

Pinging alderwoodwater.com [209.200.118.90] with 32 bytes of data:
Reply from 209.200.118.90: bytes=32 time=82ms TTL=113
Reply from 209.200.118.90: bytes=32 time=83ms TTL=113
Reply from 209.200.118.90: bytes=32 time=83ms TTL=113
Reply from 209.200.118.90: bytes=32 time=110ms TTL=113

C:\Users\Codez>ping smtp.alderwoodwater.com

Pinging smtp.alderwoodwater.com [74.94.76.97] with 32 bytes of data:
Reply from 74.94.76.97: bytes=32 time=109ms TTL=239
Reply from 74.94.76.97: bytes=32 time=111ms TTL=239
Reply from 74.94.76.97: bytes=32 time=110ms TTL=239
Reply from 74.94.76.97: bytes=32 time=110ms TTL=239



As you see 74.94.26.97 is their SMTP server and the other one is their web server. They are on seperate servers.

if I have to guess I would think either you have a wrong cache of it localy or their mx records are not setup properly.


0
Shouldn't all users have the same email signature?

You wouldn't let your users design their own business cards, would you? So, why do you let them design their own email signatures? Think of the damage they could be doing to your brand reputation! Choose the easy way to manage set up and add email signatures for all users.

 
LVL 4

Expert Comment

by:codezp
ID: 22689771
if you do a nslookup -q=mx domain.com from your Exchange, does DNS resolv this to a correct name and IP of the destination domain?

I suspect the problem can be caused if you have an unneeded SMTP Connector -- for example, if you have a single-site, single server topology but have an SMTP Connector installed. However, this is only a guess. At one location I removed the unneeded SMTP Connector among other changes and the problem went away. I never knew if removing the SMTP connector solved the issue or if something else resolved the issue.

Also tryDNS properties and under forwarders section check if "Do not use recursion for this domain" is disabled.
Under "Advanced" tab see "Disable recursion" option is disabled.

Restart the DNS server and try if emails goes through at one shot.

ALSO

In the properties for the SMTP Virtual Server, set the IP address to be an IP not the "All Unassigned" option and that may help.

Hope that helps!
0
 
LVL 4

Expert Comment

by:ckozloski
ID: 22690316
Make sure that you have a world MX record that is pointed to the proper IP address. If your MX record is also an alias of your web domain that could cause problems.
0
 

Author Comment

by:msjesiel
ID: 22690726
All great suggestions. I won't be able to try anything until after the weekend, so I'll get back to this on Monday. Thanks.
0
 

Author Comment

by:msjesiel
ID: 22716703
Changed the SMTP virtual server configuration to not use external DNS, which it was. Also made sure teh internal DNS server forwarders were set correctly. It's sporadic, so I'll let it go a couple days adn see if we have any more failures.
0
 
LVL 1

Accepted Solution

by:
Computer101 earned 0 total points
ID: 23645042
PAQed with points refunded (250)

Computer101
EE Admin
0

Featured Post

Enabling OSINT in Activity Based Intelligence

Activity based intelligence (ABI) requires access to all available sources of data. Recorded Future allows analysts to observe structured data on the open, deep, and dark web.

Join & Write a Comment

Suggested Solutions

Check out this infographic on what you need to make a good email signature that will work perfectly for your organization.
Follow this checklist to learn more about the 15 things you should never include in an email signature from personal quotes, animated gifs and out-of-date marketing content.
In this video we show how to create a Shared Mailbox in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Recipients >> Sha…
To add imagery to an HTML email signature, you have two options available to you. You can either add a logo/image by embedding it directly into the signature or hosting it externally and linking to it. The vast majority of email clients display l…

760 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

16 Experts available now in Live!

Get 1:1 Help Now