• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 491
  • Last Modified:

exchange has mail stuck in queues

WARNING: I am not familiar with exchange so be kind

I have a exchange server that has worked for a long time. and now stop sending out emails.

I checked to que and it shows that emails are stuck in it, and it keeps trying to send the message again. I have done the following basic stuff that didn't help
1) stop SMTP and restarted it
2) stop IIS and restarted it
3) rebooted server
4) froze all mail and try to force send 1 email at a time.. and all other sorts of forcess
0
Montte_LDS
Asked:
Montte_LDS
  • 26
  • 20
  • 14
  • +2
3 Solutions
 
Montte_LDSAuthor Commented:
One more thing I forgot to say, is that email does come in fine.
0
 
cnsspdCommented:
Try to telnet to port 25 of a mail server you are trying to send mail to from the mail server. This will tell you if the server can connect to the outside server. Were there any changes on a firewall that would not let the server connect to port 25?
0
 
showard2007Commented:
Check your reverse DNS records, I have seen spam filters not accept connections due to the lack of reverse DNS records causing mail to be stuck in the queues. Any firewall or ACL changes lately that block port 25 out?
0
Creating Active Directory Users from a Text File

If your organization has a need to mass-create AD user accounts, watch this video to see how its done without the need for scripting or other unnecessary complexities.

 
Glen KnightCommented:
Can you uninstall any antivirus/spam software you have on the server and reboot.

Do the queues empty?
0
 
Montte_LDSAuthor Commented:
DNS appears to be fine.

the firewall hasn't be touched. and the smtp is only access localy and is able to be be ping
0
 
Montte_LDSAuthor Commented:
no anti virus or spam software on the server currently
0
 
Glen KnightCommented:
What does the message on the queue?
0
 
showard2007Commented:
Is it all e-mail that can't be sent out or is it to cetain domains such as hotmail or yahoo??
0
 
Montte_LDSAuthor Commented:
www.monteit.com/que.jpg
here is a screen shot of the que

it is all domains :(
0
 
showard2007Commented:
How do you send e-mail outbound? Does the Exchange box use a smart host? Do you have outbound security setup?
0
 
Montte_LDSAuthor Commented:
all i know about how it goes out is that it serves as its own SMTP
0
 
Montte_LDSAuthor Commented:
I am not sure if this is against any rules here, but i could grant temp access to the box via teamviewer or RDC
0
 
showard2007Commented:
http://www.arrowmail.co.uk/howto/smrthost.aspx#sh1

Read this article carefully and it will instruct you how to find your smarthost.
0
 
Glen KnightCommented:
We are not supposed to offer remote support, some experts do offer this service via their profiles.

Have they ever worked? How long have they not been working?

What is your domain name? If you don't want to post it on a public forum could you e-mail it to me?(Address is on my profile)

You could be getting rejected because your rDNS is not correct or your SPF is missing or incorrect?
0
 
showard2007Commented:
What IP Address does your mail get sent from, I will check your reverse DNS for you.
0
 
Montte_LDSAuthor Commented:
@demazter

Yes it has worked before. was working very well.

accessehr.com
0
 
Montte_LDSAuthor Commented:
mail.accessehr.com
0
 
showard2007Commented:
Your reverse DNS records are not setup properly. It resolves to your ISP's rDNS name. Contact your ISP and have them set a reverse DNS record of accessehr.com for your IP Address.
0
 
Glen KnightCommented:
OK you don't have an SPF record configured.
We have seen a lot of these problems recently maybe more people of virus/spam software have started checking for it.

Follow this wizard here: http://www.microsoft.com/mscorp/safety/content/technologies/senderid/wizard/ and then ask whoever controlls your external DNS to setup a TXT record with the information provided by the wizard.
spf.jpg
0
 
showard2007Commented:
The rDNS might not be the complete issue but it is highly probable.
0
 
Montte_LDSAuthor Commented:
one thing i forgot to mention is this also seem to all happen after i noticed that updates had not been done on this machine in a long time. so i did the windows updates that were que
0
 
Glen KnightCommented:
reverse DNS looks fine on the DNS report  I have just done.
0
 
showard2007Commented:
how so? I just did a nslookup on the IP Address his mx record resovles to and I got the ISP's own rDNS, not the accessehr.com that it should be, or whatever his domain name he is using for his e-mail.
0
 
Montte_LDSAuthor Commented:
@showard2007

it appears i am not using smarthost
0
 
Glen KnightCommented:
see here
mx.jpg
0
 
Glen KnightCommented:
If you were using a smarthost you wouldn't see all those queues you would just see 1 for your smarthost.

Because you are using DNS you need to ensure you have an SPF record or they will get blocked.
0
 
Montte_LDSAuthor Commented:
but the emails aren't even going out. wouldn't they still go out but returned with rejections?
0
 
Glen KnightCommented:
no, your server tries to connect to the recipients server.
If the connection is rejected then it will just stay in your queues.
0
 
Glen KnightCommented:
alanhardisty, one of EE's top Exchange experts has an FAQ here that might help you: http://www.it-eye.co.uk/faqs/readQuestion.php?qid=2
0
 
showard2007Commented:
"The reverse DNS should ideally match the MX record, and what your server has on the SMTP banner when connecting. However some companies will simply accept your email because you have a reverse DNS entry, not worrying that it doesn't match what is in the SMTP banner. "  - http://www.amset.info/exchange/dnsconfig.asp

Along with SPF records rDNS needs to be setup to match the MX record.

0
 
Montte_LDSAuthor Commented:
i am not sure that is what is happening because of all the multi domains that i am trying to send to, including my own personal one.
0
 
showard2007Commented:
Still get your rDNS and SPF setup. Any logs for Micrsoft Exchange in the event viewer?
0
 
Montte_LDSAuthor Commented:
the fully-quailied domain name is Access01.accessehr.com

when i click check DNS it says the domain name is valid (if this is of any help)
0
 
showard2007Commented:
the domain name is valid, but the rDNS for the MX record isn't.
0
 
Montte_LDSAuthor Commented:
then how has it been sending emails out fine for the past 4 years?
0
 
showard2007Commented:
some places will allow msg's to be sent without rDNS such as hotmail. AOL I know for sure that requires rDNS, Craigslist is another.

Can you try and send an e-mail to hotmail??
0
 
Glen KnightCommented:
It should "Ideally" match, it doesn't have to!

The DNS Reporting tool I use is an industry standard tool and I use it to setup every single one of my clients and resolve customer queries.

The only problem it is reporting (other than lots of name server errors but this isn't unusual) is the SPF record is missing.

From your exchange server telnet to mail.chartercom.com on port 25 and then follow this guide: http://support.microsoft.com/kb/153119

When you run ehlo enter ehlo accessehr.com
When you enter mail from: enter a valid e-mail address on your domain.

Run through the rest of the test making sure you use a valid recipient on the domain and see what you get back.
0
 
Glen KnightCommented:
There is a valid RDNS record!

Your problem is the SPF!!!!
0
 
Montte_LDSAuthor Commented:
@showard2007
same thing happens when i send it to AOL or hotmail, just sits in the que.

@demazter
C:\Documents and Settings\Administrator>telnet mail.chartercom.com 25
Connecting To mail.chartercom.com...Could not open connection to the host, on port 25: Connect failed
0
 
Klossb1Commented:
I didn't notice in the multiple responses if you checked the Exchange server system drive. If disk space becomes an issue it will kill the Exchange services. Make sure you have sufficient space. Are there any errors in your application log? This will normally point out the problem.
0
 
Glen KnightCommented:
Have you blocked port 25 on your firewall/router?

Can you try:

telnet outgoing.gkvirtualdomain.co.uk 25

Can you connect to that one?
0
 
Montte_LDSAuthor Commented:
@Klossb1
13GB avvaliable

in the log

Event Type:      Error
Event Source:      MSExchangeTransport
Event Category:      SMTP Protocol
Event ID:      7518
Date:            1/5/2010
Time:            11:53:52 AM
User:            N/A
Computer:      ACCESS01
Description:
Sender Id must be configured with a list of trusted mail servers before it can be enabled.

For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp.
0
 
Montte_LDSAuthor Commented:
@demazter
no dice. but the firewall hasn't been touched in almost 5 months (its a separate hardware firewall)... i will check it.. is their anything that might block port 25 in Win 2003 srv?
0
 
Glen KnightCommented:
Under Organisation > Hub Transport > AntiSpam can you set them all to disabled then try restarting the Microsoft Exchange Transport service.
0
 
showard2007Commented:
wrong version of Exchange, he is using 2003...
0
 
Montte_LDSAuthor Commented:
@showard2007
you are right..

@demazter
i loging to the FortiGate and found no ports being blocked
0
 
Glen KnightCommented:
In that case under Administrative Group > First Administrative Group > Servers > Servername > Protocols > SMTP right click the Default Virtual SMTP Server select properties.

Then Click advanced and then Edit,  uncheck all 3 boxes.
Restart the SMTP service.

@showard2007 > thanks, it happens.
0
 
showard2007Commented:
@demazter - no problem, I understand
0
 
Montte_LDSAuthor Commented:
@demazter

sorry to be nob. how do i get to "Administrative Group "
0
 
Glen KnightCommented:
In Exchange System Manager? Under Organisation name.
0
 
Montte_LDSAuthor Commented:
www.monteit.com/ic.jpg

this is what i see
0
 
Glen KnightCommented:
goto: Servers > Servername > Protocols > SMTP right click the Default Virtual SMTP Server select properties.

Then Click advanced and then Edit,  uncheck all 3 boxes.
Restart the SMTP service.
0
 
Glen KnightCommented:
What do you have listed under Connectors also?
0
 
Montte_LDSAuthor Commented:
@demazter:
just to verify this is what u wanted.. all the boxes in Identification unchecked then OK my way out and stop SMTP then restart it
verify.jpg
0
 
Glen KnightCommented:
Yes thats correct, can you also set the IP address to all unassigned?
0
 
Montte_LDSAuthor Commented:
@ demazter
that did not do anything for me :( still stuck in que
0
 
Glen KnightCommented:
Are you able to completely restart the server?
0
 
Montte_LDSAuthor Commented:
I will reboot the Server along with your request of all unassigned.. be back in a few
0
 
Montte_LDSAuthor Commented:
and now i have lost all RDC for some reason, so i will need to try this again later. :(
0
 
Montte_LDSAuthor Commented:
on a side note, it appears the OWA access to the exchange server has gone down
0
 
Montte_LDSAuthor Commented:
I just got to the server location and had to reset everything back from what demazter recommended..

still nothing... Then i noticed that their are 2 NICs on the server and when the other one failed to get a IP address i started to screw with that.

Once i disable the other NIC card email started to send out... does this make any sense?

i also checked the telnet and that worked too..

is it possible that mail was trying to go out via a wrong NIC?
0
 
Glen KnightCommented:
Yes very likeky.
Thats why multihomed exchange servers are not supported.
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

Simplify Active Directory Administration

Administration of Active Directory does not have to be hard.  Too often what should be a simple task is made more difficult than it needs to be.The solution?  Hyena from SystemTools Software.  With ease-of-use as well as powerful importing and bulk updating capabilities.

  • 26
  • 20
  • 14
  • +2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now