Solved

SMTP Communication Problem

Posted on 2009-04-08
9
980 Views
Last Modified: 2013-11-30
We are running Echange 2003 on SBS 2003. Recently some of my clients started to receive bouncebacks from valid email addresses. I have done a lot of research but still can't find a proper solution. Below are some of the bounces. Some users connect remotely via VPN while others are sending emails from inside the network. Not sure what is the issue with this authentication / relay as no configuration changes have been made. Any idea? The bounces are generated by our mail server and from what I see they're not even sent via SMTP - just routed and then a NDR is generated. Usually you can re-send sucessfully same email next day or from another account. it happens randomly and affects many users.



There was a SMTP communication problem with the recipient's email server.  Please contact your system administrator.
            <server.xxx.com #5.5.0 smtp;530 SMTP authentication is required.>

You do not have permission to send to this recipient.  For assistance, contact your system administrator.
            <server.xxx.com #5.7.1 smtp;550 5.7.1 Relaying denied. Proper authentication required.>
There was a SMTP communication problem with the recipient's email server.  Please contact your system administrator.

            <server.xxx.com #5.5.0 smtp;503 This mail server requires authentication when attempting to send to a non-local e-mail address. Please check your mail client settings or contact your administrator to verify that the domain or address is defined for this server.>
0
Comment
Question by:Cozumel
9 Comments
 
LVL 6

Expert Comment

by:mickeyfan
Comment Utility
Make sure you do not have require authentication on your smtp setting within System manager.
0
 

Expert Comment

by:adhodgson
Comment Utility
Hi,

In the NDR reports you are getting, are these mentioning different servers?  Are you sending out mail via a smart host (i.e, ISP mail server, spam appliance), or directly via DNS lookups?

It is possible that there is a misconfiguration on the remote SMTP system at "their end", especially if you are able to reach other destinations ok.

Thanks.
Andrew.
0
 
LVL 6

Expert Comment

by:mickeyfan
Comment Utility
Are your clients using POP?

Also make sure you do not have a range of IP's being denied relaying with in the SMTP settting.

0
 

Author Comment

by:Cozumel
Comment Utility
1. Regarding the Do Not  Require Authentication - not sure which exactly option you refer to - we have Windows integrated authentication for the internal users and also Anonimous Access for the other mail servers (outside our organization).

2. NDR reports - the server is all the same on all reports - this is our mail server; We send emails via DNS. Not sure if the problem is on the remote side as this happens when we send to different domains - sometimes it sends while other times it bounces - then later it re-sents fine, but not always, so weird...

3. We don't use POP. All Outlook accounts are configured with GPO to use Exchange.

Relaying Restrictions - I have checked those many times right now we have two options:
Select which computer may relay through this server - ONLY THE LIST BELOW is checked and we have added a list of servers; the option is Allow all computers which successfully authenticate to relay regardless of the list above - we tried both with checkin/unchecking this option - but no result.
Under Users sub-tab in the Relay Restriction tab - we have Authenticated Users

So what could be causing the problem? Where else shall I check? Our mail server is not blacklisted, MX record is okay, DNS lookup is okay...

By the way the server is quite old and we plan to replace it - right now the mailbox store is almost reaching its maximum - is it possible this to be due to performance issues or it's definitely a configuration problem?
0
How to run any project with ease

Manage projects of all sizes how you want. Great for personal to-do lists, project milestones, team priorities and launch plans.
- Combine task lists, docs, spreadsheets, and chat in one
- View and edit from mobile/offline
- Cut down on emails

 
LVL 6

Expert Comment

by:mickeyfan
Comment Utility
It could be a performance issue. How clsoe is the store to it's limit?

What has changed since this started happening?
0
 

Accepted Solution

by:
Severcorr earned 300 total points
Comment Utility
I would recommend downloading SMTPDIAG from Microsoft's website for troubleshooting SMTP issues.

http://www.microsoft.com/downloads/details.aspx?familyid=bc1881c7-925d-4a29-bd42-71e8563c80a9&displaylang=en

This sounds like a DNS issue to me. Many clients will reject email if the reverse dns does match up correctly. We have ran into problems because we send all of our outgoing mail through an Ironport device.

Most companies just check to see if a Reverse DNS record is exists, but others places run very finicky SPAM software that has stricter requirements on reverse DNS records.
0
 
LVL 6

Assisted Solution

by:mickeyfan
mickeyfan earned 200 total points
Comment Utility
I would also check http://www.mxtoolbox.com
0
 

Author Comment

by:Cozumel
Comment Utility
thanks for all suggestions

We performed an offline defrag and significantly reduced the size of the mailbox store though we still get thouse bounces.

Also I've checked with our ISP provider who provision our DNS and they said all is fine. Using dnsstuff and mxtoolbox - all seemed fine.

Now there's only one thing I've noticed - at certain moments we have high utilization of the netowork usage - AT&T suggested that might be causing the issue - there are few peaks but they are so random - for few minutes during the whole week so I am not sure.

Anyway - if you guys have any other suggestions where could be the source of the problem - let me know.
0
 

Author Comment

by:Cozumel
Comment Utility
The problem was caused by the AntiSpam firewall. Our MX record was pointing to the IP of the Antispam firewall, while our outgoing mail was sent directly from the server. Obviously some of the recipients didn't like the idea that our mail server resolving to a different address. The solution was to relay the otugoing emails through the Antispam firewall as well.
0

Featured Post

Why You Should Analyze Threat Actor TTPs

After years of analyzing threat actor behavior, it’s become clear that at any given time there are specific tactics, techniques, and procedures (TTPs) that are particularly prevalent. By analyzing and understanding these TTPs, you can dramatically enhance your security program.

Join & Write a Comment

Resolve DNS query failed errors for Exchange
Exchange server is not supported in any cloud-hosted platform (other than Azure with Azure Premium Storage).
In this Micro Video tutorial you will learn the basics about Database Availability Groups and How to configure one using a live Exchange Server Environment. The video tutorial explains the basics of the Exchange server Database Availability grou…
how to add IIS SMTP to handle application/Scanner relays into office 365.

771 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

11 Experts available now in Live!

Get 1:1 Help Now