Problem with Edge Transport Server - Microsoft Exchange 2007

Posted on 2009-04-27
Medium Priority
Last Modified: 2012-08-13
Recently, I added an edge transport server in the dmz.  This server was configured using edgeSync and all the connectors were added successfully. I can test synchronization by using test-edge... cmdlet and I can verify the accepted domains as well.  So I know its working fine...
 I can receive email from the outside world, which is picked up by the edge server and forwarded to the hub for delivery.  That works well.  On the other hand, when I try to email an external email, the hub transport forwards it to the edge, and there, it remains in queue.  The error that is being generated is:

451 4.4.0 Primary Target IP address responded 421 4.2.1 unable to connect.   Attempted failover to alternate host, but that did not succeed.  Either there are no alternate hosts or delivery failed to the all alternate host.

If I manually add a (internet) send connector on the hub transport server, I can email directly from the hub server, but I do not want to do this. I have both of the servers added in each of the hosts file and dns works fine.  I have logging enabled if anyone wants to view a specific log.

Any ideas?
Question by:itsccoc
  • 2
  • 2
LVL 17

Expert Comment

ID: 24249144
nicely explained..
OK.. so you mean the mails are stuck in the queue of the Edge server.
now do the following:
1. on edge.. open command prompt and do this..
set q=mx
hotmail.com or any remotedomain.com

do you get the MX record of them?

2. do telnet MX/IP 25
do you get the banner of the remote domain??

let me know the results....


Author Comment

ID: 24250629
Thanks for the comment.  Nslookup works fine, we're able to view MX records and we can also telnet to other smtp servers via port 25 no problem from the Edge (and hub transport server).  I recently installed a digital certificate (2 weeks prior to doing the edge subscription)  on the HUB transport server reflecting the hub transport servers' name.  Should the edge transport be added to the digital cert too and imported on both?  The edge is using the auto self-signed cert.  Didn't know if that mattered or not.

LVL 17

Accepted Solution

Suraj earned 2000 total points
ID: 24251102
there is no relation of certificate and Outbound mail flow....
check the event viewer if you got any certificate error ...

do this...
telnet maila.microsoft.com 25

whats the ip address showing up with ehlo?

Author Comment

ID: 24252317
Sam, you were right.  I forgot I had an acl preventing outbound connections on port 25 except for our current mail provider.  By testing the domain you provided me pointed me in the direction of a network connectivity problem thus realizing it was related to an acl.


Featured Post

Free Tool: Path Explorer

An intuitive utility to help find the CSS path to UI elements on a webpage. These paths are used frequently in a variety of front-end development and QA automation tasks.

One of a set of tools we're offering as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This month, Experts Exchange sat down with resident SQL expert, Jim Horn, for an in-depth look into the makings of a successful career in SQL.
Mailbox Corruption is a nightmare every Exchange DBA wishes he never has. Recovering from it can be super-hectic if not entirely futile. And though techniques like the New-MailboxRepairRequest cmdlet have been designed to help with fixing minor corr…
In this Micro Video tutorial you will learn the basics about Database Availability Groups and How to configure one using a live Exchange Server Environment. The video tutorial explains the basics of the Exchange server Database Availability grou…
The video tutorial explains the basics of the Exchange server Database Availability groups. The components of this video include: 1. Automatic Failover 2. Failover Clustering 3. Active Manager
Suggested Courses
Course of the Month16 days, 11 hours left to enroll

864 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question