can't receive external email 5.7.1 error

CCLCLS
CCLCLS used Ask the Experts™
on
running exchagne 2010, this was all working fine and i was receiving email fine, then i started trying to get OWA to work and i dont know what i did but now i can't receive any outside email. you get a returned email 5.7.1 error. i have anonymous access checked on all my receive connectors. what could have happened? please help
Comment
Watch Question

Do more with

Expert Office
EXPERT OFFICE® is a registered trademark of EXPERTS EXCHANGE®
Check port 25 on your router to make sure it is opened. Goto www.probemyports.com and perform a test. You can also go to https://www.testexchangeconnectivity.com/ to test exchange

Author

Commented:
when i go through the 2nd article it says sender is ok
CompTIA Network+

Prepare for the CompTIA Network+ exam by learning how to troubleshoot, configure, and manage both wired and wireless networks.

It should have sent a test email. Did you receive it?
I like this site for an SMTP check

http://www.mxtoolbox.com/diagnostic.aspx

If blocked check router for port forwarding and ISP (sometimes they block port 25) happened to few of my clients. Then check even the hub transport. On some relay security settings check if it's relaying on itself

Author

Commented:
here is what i get when trying the testexchagne site, any suggestions?

Testing Inbound SMTP Mail flow for domain jmerritt@mydomain.org
Failed to test inbound SMTP mail flow.
Test Steps
Attempting to retrieve DNS MX records for domain mydomain.org
One or more MX records were successfully retrieved from DNS.
Additional Details
MX Records Host xmail.mydomain.org, Preference 5
, Host mailhost.otherdomain.com, Preference 10


Testing Mail Exchanger xmail.mydomain.org.
One or more SMTP tests failed for this Mail Exchanger.
Test Steps
Attempting to resolve the host name xmail.mydomain.org in DNS.
Host successfully resolved
Additional Details
IP(s) returned: 65.104.xxx.xxx

Testing TCP Port 25 on host xmail.mydomain.org to ensure it is listening and open.
The port was opened successfully.
Additional Details
Banner Received: 220 XMAIL.mydomain.org Microsoft ESMTP MAIL Service, Version: 7.5.7600.16385 ready at Sun, 4 Jul 2010 20:42:18 -0700

Attempting to send test email message to jmerritt@mydomain.org using MX xmail.mydomain.org.
Delivery of the test message failed.
Additional Details
Server returned status code 550 - Mailbox unavailable. The server response was: 5.7.1 Unable to relay for jmerritt@mydomain.org
Exception details:
Message: Mailbox unavailable. The server response was: 5.7.1 Unable to relay for jmerritt@mydomain.org
Type: System.Net.Mail.SmtpFailedRecipientException
Stack trace:
at System.Net.Mail.SmtpTransport.SendMail(MailAddress sender, MailAddressCollection recipients, String deliveryNotify, SmtpFailedRecipientException& exception)
at System.Net.Mail.SmtpClient.Send(MailMessage message)
at Microsoft.Exchange.Tools.ExRca.Tests.SmtpMessageTest.PerformTestReally()






Author

Commented:
no email received
I see your domain is on at least 1 blacklist. www.mxtoolbox.com to check

Author

Commented:
results from http://www.mxtoolbox.com/diagnostic.aspx

HELO please-read-policy.mxtoolbox.com
250 XMAIL.mydomain.org Hello [64.20.227.133] [47 ms]
MAIL FROM: <supertool@mxtoolbox.com>
250 2.1.0 supertool@mxtoolbox.com....Sender OK [31 ms]
RCPT TO: <test@example.com>
550 5.7.1 Unable to relay for test@example.com [47 ms]
QUIT
221 2.0.0 XMAIL.mydomain.org Service closing transmission channel [47 ms]

Author

Commented:
seems like it got messed up maybe when i ran this command from powershell

Add-WindowsFeature NET-Framework,RSAT-ADDS,Web-Server,Web-Basic-Auth,Web-Windows-Auth,Web-Metabase,Web-Net-Ext,Web-Lgcy-Mgmt-Console,WAS-Process-Model,RSAT-Web-Server,Web-ISAPI-Ext,Web-Digest-Auth,Web-Dyn-Compression,NET-HTTP-Activation,RPC-Over-HTTP-Proxy
What permissions do you have set on your receive connector? I tried sending you an email and got the following error:

Your message wasn't delivered due to a permission or security issue. It may have been rejected by a moderator, the address may only accept e-mail from certain senders, or another restriction may be preventing delivery.


Author

Commented:
default receive connector has
anonymous
exchange servers
exchagne users
legacy exchagne servers
all checked
Do you run that command AFTER the exchange was setup and working?

Author

Commented:
yes
Top Expert 2010
Commented:
Can you go here and run the tests for following ports
25
80
443

http://www.canyouseeme.org/

Also - run the latest ExRCA and see what does it say.

Other questions:
a) Go to start> run - type services.msc
Are all Exchange Services Running
b) Is there any Simple Mail Transfer Protocol service ?
c) What antivirus software are you running ?

Blacklist Check
Your IP was listed in NoMorefunn blacklist - I removed it. Will take some time to take effect.
You can verify again by going to www.mxtoolbox.com and checking if you're still there.

Firewalls
I hope the firewall has the following ports open - 25 80 443 and the traffic for these ports are forwarded to Exchange Server.

Author

Commented:
thanks for your help and looking into the blacklist issue

i discovered the problem...my 3rd party antispam software required SMTP service be installed in order to work. After disabling SMTP, email magically started being received again...i will be contacting the vendor as they claim it works with exchagne 2010 even though it wants SMTP installed?

thanks for trying to help me out though
Top Expert 2010

Commented:
Exactly Always.
Was this GFI ?
I saw one more case yesterday where GFI Mail Essentials installed SMTP Service and that stopped the MsExchange Transport service.

Top Expert 2010

Commented:
And it was a 550 5.7.1 issue.

Author

Commented:
yes GFI mailessentials 14

Author

Commented:
just noticed you put that in your last answer

b) Is there any Simple Mail Transfer Protocol service ?

i will award you the points
Top Expert 2010

Commented:
I think you better double check your AV guys.
GFI has this thing where they install their own SMTP service which messes everything up.

If you can - you are better off running this through postini / Trendmicro IMHS / your preferred AV -- through some web-based filter rather than doing it in the LAN.

The zone advisors in EE swear by Vamsoft ORF. You can download a 30 day trial and see how this works for you.
http://www.vamsoft.com/

There is a detailed evaluation by Sembee/Mestha on his blog here
http://blog.sembee.co.uk/post/Truly-Spectacular-Results-from-Vamsoft-ORF.aspx
Top Expert 2010

Commented:
Thanks Alan :-)

Author

Commented:
thanks, i was kinda worrying about that

there is one spot where it still shows my domain, could you obscure it also?

sixth post down, like fifth line down.

thanks again

Do more with

Expert Office
Submit tech questions to Ask the Experts™ at any time to receive solutions, advice, and new ideas from leading industry professionals.

Start 7-Day Free Trial