GazClimbs
asked on
SBS 2007 not recieving external mail
Hi,
My SBS 2007 box is not recieving any external mail, internal mail is fine, nameservers are working (mail.company.tld is resolving to the correct IP address), message tracker shows no messages recieved in 6+ hours, despite numerous tests sent.
I have rebooted and seen an instance on reboot of Event ID 12014
"Microsoft Exchange couldn't find a certificate that contains the domain name mail.domainname.com in the personal store on the local computer. Therefore, it is unable to offer the STARTTLS SMTP verb for any connector with a FQDN parameter of mail.domainname.com.
Verify the connector configuration and the installed certificates to make sure that there is
a certificate with a domain name for every connector FQDN."
I don't think this is the cause as I have seen it before today. Any ideas/help greatly apprediated.
Gaz
My SBS 2007 box is not recieving any external mail, internal mail is fine, nameservers are working (mail.company.tld is resolving to the correct IP address), message tracker shows no messages recieved in 6+ hours, despite numerous tests sent.
I have rebooted and seen an instance on reboot of Event ID 12014
"Microsoft Exchange couldn't find a certificate that contains the domain name mail.domainname.com in the personal store on the local computer. Therefore, it is unable to offer the STARTTLS SMTP verb for any connector with a FQDN parameter of mail.domainname.com.
Verify the connector configuration and the installed certificates to make sure that there is
a certificate with a domain name for every connector FQDN."
I don't think this is the cause as I have seen it before today. Any ideas/help greatly apprediated.
Gaz
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
O>K> working on the assumption that event 12014 is indeed the problem - as I cannot see anything else wrong.
Running the following command :
[PS] C:\Windows\System32>get-Ex
Thumbprint Services Subject
---------- -------- -------
5A1D0B348ED831FB53BFCE57A4
217EF10EAB188DF4C5113CC9DF
7A36E385C47E6173BF8CABC8FC
9D156E1C14EC9685AA99D20CE3
68D8CA78C0A4CDBD37D2256EAA
I take it one of these should read
5A1D0B348ED831FB53BFCE57A4
or similar ?
If so how do I create this cert?
Thanks
Gaz
Running the following command :
[PS] C:\Windows\System32>get-Ex
Thumbprint Services Subject
---------- -------- -------
5A1D0B348ED831FB53BFCE57A4
217EF10EAB188DF4C5113CC9DF
7A36E385C47E6173BF8CABC8FC
9D156E1C14EC9685AA99D20CE3
68D8CA78C0A4CDBD37D2256EAA
I take it one of these should read
5A1D0B348ED831FB53BFCE57A4
or similar ?
If so how do I create this cert?
Thanks
Gaz
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
the error message is only that server will not offer or accept STARTTLS SMTP connection.
Do you have Edge Transport server role ?
Do you have Edge Transport server role ?
ASKER
Tominov, I cannot telnet locally or externally??
Gaz
Gaz
ASKER
Correction gentlemen, I can telnet to the server both locally and from another network
Ok if you can telnet from externally and generate a email. If that email does not come through, then it must be your anti-virus/anti-spam product or Exchange IMF if you use it.
ASKER
Have successfully sent an email in using the method described in Elwin3:'s post, what next?
ASKER
telent generated mail delivered succesfully
Check your domain MX records with your ISP. Maybe they have a probably and the MX have disappeared.
you succesfully send e-mail also from Internet by Telnet ?
If yes then try to send e-mail from freemail account and you receive
in failure case reason from ISP mail server.
If yes then try to send e-mail from freemail account and you receive
in failure case reason from ISP mail server.
ASKER
o.k. external mails starting to come through again now?? Very strange, why would they start coming back through now??
what is mx record of your mail domain ? If you have more then 1 mx records and your server is
not available for delivering all e-mails are received by mail server with lower mx number and this server try to send these e-mails to you in customizable intervals.
not available for delivering all e-mails are received by mail server with lower mx number and this server try to send these e-mails to you in customizable intervals.
I would say your ISP had a problem and it took a while to put the MX record back. I would give them a ring and check.
anyway good news :)
anyway good news :)
I there was problem with NS mx records so the destination mail domain was not available then sender received error message with "Host or domain name not found. Name service error for domain...." and the message will be deleted from queue. If you received all old e-mails now it looks
like I described in previous comment.
like I described in previous comment.
ASKER
ISP, says "Who us? No, no problems here" can I believe them?
Thanks for your help
I will split the points
Thanks for your help
I will split the points
ASKER