Semiar
asked on
554 You are not allowed to connect
Hello,
I am having an issue with some domains rejecting connections from one of our Exchange 2007 servers. The error I get is below.
451 4.4.0 Primary target IP address responded with: "554 You are not allowed to connect.." Attempted failover to alternate host, but that did not succeed. Either there are no alternate hosts, or delivery failed to all alternate hosts.
Most emails go out without any issues. I find this error has been coming up when emailing large companys like banks.
Our reverse dns is setup correctly and we are not on any blacklists.
It is the "554 You are not allowed to connect.." that is throwing me off. Using a smarthost will deliver the emails, but it is not the prefered method of delivery.
I am having an issue with some domains rejecting connections from one of our Exchange 2007 servers. The error I get is below.
451 4.4.0 Primary target IP address responded with: "554 You are not allowed to connect.." Attempted failover to alternate host, but that did not succeed. Either there are no alternate hosts, or delivery failed to all alternate hosts.
Most emails go out without any issues. I find this error has been coming up when emailing large companys like banks.
Our reverse dns is setup correctly and we are not on any blacklists.
It is the "554 You are not allowed to connect.." that is throwing me off. Using a smarthost will deliver the emails, but it is not the prefered method of delivery.
You say using a smarthost will deliver the email...are you using a mail filtering company as your smart host?
ASKER
Im just using our ISP as the smarthost.
Are you actually sending the e-mail using your own IP address or are you using an ISP to deliver your e-mail??
I have once been on a blacklist on a company i worked with because someone in the ip range we used was sending out spamm and then the spamfighters thought it would be a good idea to block the entire C class (we only had like 6 IP addresses there..)
Normally, if mail is being send to another coampny, only a ferw have an issue, i'd search with their settings rather than looking at your own config.. Maybe they have a very strict regulation of what you are able to send to them (attachmenst and all.. )
Have you called one of those users that are not getting the e-mails?? Do they hear that from more companies??
I have once been on a blacklist on a company i worked with because someone in the ip range we used was sending out spamm and then the spamfighters thought it would be a good idea to block the entire C class (we only had like 6 IP addresses there..)
Normally, if mail is being send to another coampny, only a ferw have an issue, i'd search with their settings rather than looking at your own config.. Maybe they have a very strict regulation of what you are able to send to them (attachmenst and all.. )
Have you called one of those users that are not getting the e-mails?? Do they hear that from more companies??
ASKER
We normally use MX records to route the mail directly from our IP.
I switch to the smarthost when we have issues like blacklisting after being hit by a virus.
I have confirmed they get the email when using the smarthost.
I switch to the smarthost when we have issues like blacklisting after being hit by a virus.
I have confirmed they get the email when using the smarthost.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
I can try speaking with them. It should be interesting trying to get the information to there IT department. 3 different companies have returned the error. 2 banks and 1 large insurance company.
If three different companies are giving the error I wouldn't be surprised if they are using the same filtering service. Do a lookup on the MX records and see where they point. Many large companies will have outsourced their antispam service.
Simon.
Simon.
ASKER
Thanks for the suggestion.
I see no simularities in the mx records.
I can't find much about the error either.
I see no simularities in the mx records.
I can't find much about the error either.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
I have checked as many blacklist sites I could find.
There does seem some simularity between the errors, i was not able to find much about it on google.
There does seem some simularity between the errors, i was not able to find much about it on google.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
AOL actually gave me some information in there error. The link is below.
We have just switched to fiber and a new ISP a week ago. I am speaking with the NOC at our ISP to find out about the IPs they assigned us.
http://postmaster.info.aol.com/errors/554rtrbb.html
We have just switched to fiber and a new ISP a week ago. I am speaking with the NOC at our ISP to find out about the IPs they assigned us.
http://postmaster.info.aol.com/errors/554rtrbb.html
I"m just curious, but how does AOL fit in here?
ASKER
They gave me an explanation about why our mail server is not able to connect with there mail servers. The url was actually in the error.
Possibly the same issue with the rest of the large companys we are having issues emailing to.
Possibly the same issue with the rest of the large companys we are having issues emailing to.
ASKER
Just an update,
My ISP is still looking into this issue.
My ISP is still looking into this issue.
ASKER
I have not seen the issue for the last couple of days. The last email I received by my ISP stated "they have re-submitted the request to have your mail servers added as legit static mail servers"
Main issue seems to be the static ips being on a dynamic ip list used by some companies.
Main issue seems to be the static ips being on a dynamic ip list used by some companies.