[Okta Webinar] Learn how to a build a cloud-first strategyRegister Now

x
?
Solved

exchange has mail stuck in queues

Posted on 2010-01-05
62
Medium Priority
?
487 Views
Last Modified: 2013-11-30
WARNING: I am not familiar with exchange so be kind

I have a exchange server that has worked for a long time. and now stop sending out emails.

I checked to que and it shows that emails are stuck in it, and it keeps trying to send the message again. I have done the following basic stuff that didn't help
1) stop SMTP and restarted it
2) stop IIS and restarted it
3) rebooted server
4) froze all mail and try to force send 1 email at a time.. and all other sorts of forcess
0
Comment
Question by:Montte_LDS
  • 26
  • 20
  • 14
  • +2
62 Comments
 

Author Comment

by:Montte_LDS
ID: 26183336
One more thing I forgot to say, is that email does come in fine.
0
 
LVL 2

Expert Comment

by:cnsspd
ID: 26183487
Try to telnet to port 25 of a mail server you are trying to send mail to from the mail server. This will tell you if the server can connect to the outside server. Were there any changes on a firewall that would not let the server connect to port 25?
0
 
LVL 2

Expert Comment

by:showard2007
ID: 26183512
Check your reverse DNS records, I have seen spam filters not accept connections due to the lack of reverse DNS records causing mail to be stuck in the queues. Any firewall or ACL changes lately that block port 25 out?
0
Visualize your virtual and backup environments

Create well-organized and polished visualizations of your virtual and backup environments when planning VMware vSphere, Microsoft Hyper-V or Veeam deployments. It helps you to gain better visibility and valuable business insights.

 
LVL 74

Expert Comment

by:Glen Knight
ID: 26183561
Can you uninstall any antivirus/spam software you have on the server and reboot.

Do the queues empty?
0
 

Author Comment

by:Montte_LDS
ID: 26183574
DNS appears to be fine.

the firewall hasn't be touched. and the smtp is only access localy and is able to be be ping
0
 

Author Comment

by:Montte_LDS
ID: 26183583
no anti virus or spam software on the server currently
0
 
LVL 74

Expert Comment

by:Glen Knight
ID: 26183593
What does the message on the queue?
0
 
LVL 2

Expert Comment

by:showard2007
ID: 26183595
Is it all e-mail that can't be sent out or is it to cetain domains such as hotmail or yahoo??
0
 

Author Comment

by:Montte_LDS
ID: 26183605
www.monteit.com/que.jpg
here is a screen shot of the que

it is all domains :(
0
 
LVL 2

Expert Comment

by:showard2007
ID: 26183617
How do you send e-mail outbound? Does the Exchange box use a smart host? Do you have outbound security setup?
0
 

Author Comment

by:Montte_LDS
ID: 26183655
all i know about how it goes out is that it serves as its own SMTP
0
 

Author Comment

by:Montte_LDS
ID: 26183662
I am not sure if this is against any rules here, but i could grant temp access to the box via teamviewer or RDC
0
 
LVL 2

Assisted Solution

by:showard2007
showard2007 earned 400 total points
ID: 26183694
http://www.arrowmail.co.uk/howto/smrthost.aspx#sh1

Read this article carefully and it will instruct you how to find your smarthost.
0
 
LVL 74

Expert Comment

by:Glen Knight
ID: 26183731
We are not supposed to offer remote support, some experts do offer this service via their profiles.

Have they ever worked? How long have they not been working?

What is your domain name? If you don't want to post it on a public forum could you e-mail it to me?(Address is on my profile)

You could be getting rejected because your rDNS is not correct or your SPF is missing or incorrect?
0
 
LVL 2

Expert Comment

by:showard2007
ID: 26183770
What IP Address does your mail get sent from, I will check your reverse DNS for you.
0
 

Author Comment

by:Montte_LDS
ID: 26183777
@demazter

Yes it has worked before. was working very well.

accessehr.com
0
 

Author Comment

by:Montte_LDS
ID: 26183795
mail.accessehr.com
0
 
LVL 2

Expert Comment

by:showard2007
ID: 26183837
Your reverse DNS records are not setup properly. It resolves to your ISP's rDNS name. Contact your ISP and have them set a reverse DNS record of accessehr.com for your IP Address.
0
 
LVL 74

Expert Comment

by:Glen Knight
ID: 26183847
OK you don't have an SPF record configured.
We have seen a lot of these problems recently maybe more people of virus/spam software have started checking for it.

Follow this wizard here: http://www.microsoft.com/mscorp/safety/content/technologies/senderid/wizard/ and then ask whoever controlls your external DNS to setup a TXT record with the information provided by the wizard.
spf.jpg
0
 
LVL 2

Expert Comment

by:showard2007
ID: 26183848
The rDNS might not be the complete issue but it is highly probable.
0
 

Author Comment

by:Montte_LDS
ID: 26183849
one thing i forgot to mention is this also seem to all happen after i noticed that updates had not been done on this machine in a long time. so i did the windows updates that were que
0
 
LVL 74

Expert Comment

by:Glen Knight
ID: 26183858
reverse DNS looks fine on the DNS report  I have just done.
0
 
LVL 2

Expert Comment

by:showard2007
ID: 26183884
how so? I just did a nslookup on the IP Address his mx record resovles to and I got the ISP's own rDNS, not the accessehr.com that it should be, or whatever his domain name he is using for his e-mail.
0
 

Author Comment

by:Montte_LDS
ID: 26183940
@showard2007

it appears i am not using smarthost
0
 
LVL 74

Expert Comment

by:Glen Knight
ID: 26183943
see here
mx.jpg
0
 
LVL 74

Expert Comment

by:Glen Knight
ID: 26183953
If you were using a smarthost you wouldn't see all those queues you would just see 1 for your smarthost.

Because you are using DNS you need to ensure you have an SPF record or they will get blocked.
0
 

Author Comment

by:Montte_LDS
ID: 26183992
but the emails aren't even going out. wouldn't they still go out but returned with rejections?
0
 
LVL 74

Expert Comment

by:Glen Knight
ID: 26184009
no, your server tries to connect to the recipients server.
If the connection is rejected then it will just stay in your queues.
0
 
LVL 74

Expert Comment

by:Glen Knight
ID: 26184018
alanhardisty, one of EE's top Exchange experts has an FAQ here that might help you: http://www.it-eye.co.uk/faqs/readQuestion.php?qid=2
0
 
LVL 2

Expert Comment

by:showard2007
ID: 26184035
"The reverse DNS should ideally match the MX record, and what your server has on the SMTP banner when connecting. However some companies will simply accept your email because you have a reverse DNS entry, not worrying that it doesn't match what is in the SMTP banner. "  - http://www.amset.info/exchange/dnsconfig.asp

Along with SPF records rDNS needs to be setup to match the MX record.

0
 

Author Comment

by:Montte_LDS
ID: 26184042
i am not sure that is what is happening because of all the multi domains that i am trying to send to, including my own personal one.
0
 
LVL 2

Expert Comment

by:showard2007
ID: 26184087
Still get your rDNS and SPF setup. Any logs for Micrsoft Exchange in the event viewer?
0
 

Author Comment

by:Montte_LDS
ID: 26184089
the fully-quailied domain name is Access01.accessehr.com

when i click check DNS it says the domain name is valid (if this is of any help)
0
 
LVL 2

Expert Comment

by:showard2007
ID: 26184149
the domain name is valid, but the rDNS for the MX record isn't.
0
 

Author Comment

by:Montte_LDS
ID: 26184190
then how has it been sending emails out fine for the past 4 years?
0
 
LVL 2

Expert Comment

by:showard2007
ID: 26184217
some places will allow msg's to be sent without rDNS such as hotmail. AOL I know for sure that requires rDNS, Craigslist is another.

Can you try and send an e-mail to hotmail??
0
 
LVL 74

Expert Comment

by:Glen Knight
ID: 26184219
It should "Ideally" match, it doesn't have to!

The DNS Reporting tool I use is an industry standard tool and I use it to setup every single one of my clients and resolve customer queries.

The only problem it is reporting (other than lots of name server errors but this isn't unusual) is the SPF record is missing.

From your exchange server telnet to mail.chartercom.com on port 25 and then follow this guide: http://support.microsoft.com/kb/153119

When you run ehlo enter ehlo accessehr.com
When you enter mail from: enter a valid e-mail address on your domain.

Run through the rest of the test making sure you use a valid recipient on the domain and see what you get back.
0
 
LVL 74

Expert Comment

by:Glen Knight
ID: 26184226
There is a valid RDNS record!

Your problem is the SPF!!!!
0
 

Author Comment

by:Montte_LDS
ID: 26184261
@showard2007
same thing happens when i send it to AOL or hotmail, just sits in the que.

@demazter
C:\Documents and Settings\Administrator>telnet mail.chartercom.com 25
Connecting To mail.chartercom.com...Could not open connection to the host, on port 25: Connect failed
0
 

Expert Comment

by:Klossb1
ID: 26184273
I didn't notice in the multiple responses if you checked the Exchange server system drive. If disk space becomes an issue it will kill the Exchange services. Make sure you have sufficient space. Are there any errors in your application log? This will normally point out the problem.
0
 
LVL 74

Expert Comment

by:Glen Knight
ID: 26184285
Have you blocked port 25 on your firewall/router?

Can you try:

telnet outgoing.gkvirtualdomain.co.uk 25

Can you connect to that one?
0
 

Author Comment

by:Montte_LDS
ID: 26184292
@Klossb1
13GB avvaliable

in the log

Event Type:      Error
Event Source:      MSExchangeTransport
Event Category:      SMTP Protocol
Event ID:      7518
Date:            1/5/2010
Time:            11:53:52 AM
User:            N/A
Computer:      ACCESS01
Description:
Sender Id must be configured with a list of trusted mail servers before it can be enabled.

For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp.
0
 

Author Comment

by:Montte_LDS
ID: 26184313
@demazter
no dice. but the firewall hasn't been touched in almost 5 months (its a separate hardware firewall)... i will check it.. is their anything that might block port 25 in Win 2003 srv?
0
 
LVL 74

Expert Comment

by:Glen Knight
ID: 26184326
Under Organisation > Hub Transport > AntiSpam can you set them all to disabled then try restarting the Microsoft Exchange Transport service.
0
 
LVL 2

Expert Comment

by:showard2007
ID: 26184347
wrong version of Exchange, he is using 2003...
0
 

Author Comment

by:Montte_LDS
ID: 26184395
@showard2007
you are right..

@demazter
i loging to the FortiGate and found no ports being blocked
0
 
LVL 74

Expert Comment

by:Glen Knight
ID: 26184408
In that case under Administrative Group > First Administrative Group > Servers > Servername > Protocols > SMTP right click the Default Virtual SMTP Server select properties.

Then Click advanced and then Edit,  uncheck all 3 boxes.
Restart the SMTP service.

@showard2007 > thanks, it happens.
0
 
LVL 2

Expert Comment

by:showard2007
ID: 26184444
@demazter - no problem, I understand
0
 

Author Comment

by:Montte_LDS
ID: 26184447
@demazter

sorry to be nob. how do i get to "Administrative Group "
0
 
LVL 74

Expert Comment

by:Glen Knight
ID: 26184492
In Exchange System Manager? Under Organisation name.
0
 

Author Comment

by:Montte_LDS
ID: 26184580
www.monteit.com/ic.jpg

this is what i see
0
 
LVL 74

Expert Comment

by:Glen Knight
ID: 26184767
goto: Servers > Servername > Protocols > SMTP right click the Default Virtual SMTP Server select properties.

Then Click advanced and then Edit,  uncheck all 3 boxes.
Restart the SMTP service.
0
 
LVL 74

Expert Comment

by:Glen Knight
ID: 26184770
What do you have listed under Connectors also?
0
 

Author Comment

by:Montte_LDS
ID: 26184913
@demazter:
just to verify this is what u wanted.. all the boxes in Identification unchecked then OK my way out and stop SMTP then restart it
verify.jpg
0
 
LVL 74

Expert Comment

by:Glen Knight
ID: 26184991
Yes thats correct, can you also set the IP address to all unassigned?
0
 

Author Comment

by:Montte_LDS
ID: 26184995
@ demazter
that did not do anything for me :( still stuck in que
0
 
LVL 74

Expert Comment

by:Glen Knight
ID: 26185014
Are you able to completely restart the server?
0
 

Author Comment

by:Montte_LDS
ID: 26185029
I will reboot the Server along with your request of all unassigned.. be back in a few
0
 

Author Comment

by:Montte_LDS
ID: 26185365
and now i have lost all RDC for some reason, so i will need to try this again later. :(
0
 

Author Comment

by:Montte_LDS
ID: 26185518
on a side note, it appears the OWA access to the exchange server has gone down
0
 

Accepted Solution

by:
Montte_LDS earned 0 total points
ID: 26186470
I just got to the server location and had to reset everything back from what demazter recommended..

still nothing... Then i noticed that their are 2 NICs on the server and when the other one failed to get a IP address i started to screw with that.

Once i disable the other NIC card email started to send out... does this make any sense?

i also checked the telnet and that worked too..

is it possible that mail was trying to go out via a wrong NIC?
0
 
LVL 74

Assisted Solution

by:Glen Knight
Glen Knight earned 1600 total points
ID: 26187866
Yes very likeky.
Thats why multihomed exchange servers are not supported.
0

Featured Post

What does it mean to be "Always On"?

Is your cloud always on? With an Always On cloud you won't have to worry about downtime for maintenance or software application code updates, ensuring that your bottom line isn't affected.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Web hosting control panels were first developed to make it faster and easier for most users to set up and operate websites. The graphical user interface (GUI) allows users to perform tasks by pointing and clicking rather than typing highly specific…
This article will help to fix the below errors for MS Exchange Server 2016 I. Certificate error "name on the security certificate is invalid or does not match the name of the site" II. Out of Office not working III. Make Internal URLs and Externa…
With the power of JIRA, there's an unlimited number of ways you can customize it, use it and benefit from it. With that in mind, there's bound to be things that I wasn't able to cover in this course. With this summary we'll look at some places to go…
Exchange organizations may use the Journaling Agent of the Transport Service to archive messages going through Exchange. However, if the Transport Service is integrated with some email content management application (such as an antispam), the admini…
Suggested Courses

834 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question