exchange 2010 not recieveing mail, TMG 2010 - Exchange edge trans - internal exchange server
Hi all,
having problems recieveing external emails, i can send fine btu not recieve
i just changed the external address of my firewall thats all ive done
i have been on canyouseeme.org port 25 - success
we have tmg2010 and exchange edge transport installed on the same box and then thats relayed to our internal exchange server
ive been looking around everywhere as to why i wouldnt be able to recieve cant see nothing
i can verify the port is fowarded correctly and our mx record is pointing to the right place
can anyone help me out on where to start looking?
Thanks
having problems recieveing external emails, i can send fine btu not recieve
i just changed the external address of my firewall thats all ive done
i have been on canyouseeme.org port 25 - success
we have tmg2010 and exchange edge transport installed on the same box and then thats relayed to our internal exchange server
ive been looking around everywhere as to why i wouldnt be able to recieve cant see nothing
i can verify the port is fowarded correctly and our mx record is pointing to the right place
can anyone help me out on where to start looking?
Thanks
ASKER
ok i used my phone to get on externally, the crappy app didnt work though
it did manage to connect though and it said the service was ready
i did however get this reply testign from hotmail
The following message to <alex@domain.org> was undeliverable.
The reason for the problem:
5.1.0 - Unknown address error 550-'5.7.1 External client with IP address 212.50.160.34 does not have permissions to submit to this server. Visit http://support.microsoft.com/kb/928123 for more information.'
thats not my ip address in there, i think its one of my isps
it did manage to connect though and it said the service was ready
i did however get this reply testign from hotmail
The following message to <alex@domain.org> was undeliverable.
The reason for the problem:
5.1.0 - Unknown address error 550-'5.7.1 External client with IP address 212.50.160.34 does not have permissions to submit to this server. Visit http://support.microsoft.com/kb/928123 for more information.'
thats not my ip address in there, i think its one of my isps
You need to set up a new receive connector.
I have stepped out for 10 minutes, I will give you a powershell script as soon as I get to my desk.
I have stepped out for 10 minutes, I will give you a powershell script as soon as I get to my desk.
ASKER
ive used mxtoolbox.com
i have created a new recive connector on the edge trasnport/firewall server still failing
i have created a new recive connector on the edge trasnport/firewall server still failing
220 mail.domain.org Microsoft ESMTP MAIL Service ready at Thu, 26 Aug 2010 13:36:58 +0100
Not an open relay.
0 seconds - Good on Connection time
5.912 seconds - Warning on Transaction time
OK - 7xx.xxx.xxx.xx3 resolves to static-7xx-xxx-xxx-xx3.karoo.kcom.com
Warning - Reverse DNS does not match SMTP Banner
Session Transcript:
HELO please-read-policy.mxtoolbox.com
250 mail.constructionworks.org Hello [64.20.227.133] [140 ms]
MAIL FROM: <supertool@mxtoolbox.com>
250 2.1.0 Sender OK [156 ms]
RCPT TO: <test@example.com>
550 5.7.1 Unable to relay [5195 ms]
QUIT
221 2.0.0 Service closing transmission channel [140 ms]
ASKER
i just ran your test code above internally
sent it from me > to me
filled it all in then got access denied at the end
does that help?
sent it from me > to me
filled it all in then got access denied at the end
does that help?
from the outside, it appears to be taking the mail.
250 2.6.0 <181ce4f8-701f-48f6-b730-3
50] Queued mail for delivery
can you tell me if you got that mail?
250 2.6.0 <181ce4f8-701f-48f6-b730-3
50] Queued mail for delivery
can you tell me if you got that mail?
ASKER
all i have done is changed the external ip address of TMG from 192.168.200.1 to 192.168.201.1 ive changed my routers port foward the firewalls NIC and thats it, ive searched though my firewall rules and none of them reference 192.168.200.1 at all
ASKER
i havent got any :S
i checked my firewall logging, it is allowing it thought but isnt going anywhere
how can i check where there getting stuck/rejected?
i checked my firewall logging, it is allowing it thought but isnt going anywhere
how can i check where there getting stuck/rejected?
ASKER
.6.0 <181ce4f8-701f-48f6-b730-3
i noticed its responded with our internal namespace, should it be doing that?
shouldnt it be responding with external name space? mail.constructionworks.org
i noticed its responded with our internal namespace, should it be doing that?
shouldnt it be responding with external name space? mail.constructionworks.org
ASKER
ok ive took screens of both my external recieve connectors
the first one is from the firewall (edge transport server)
the second is from the internal exchange server
Firewall-recieve-connector.jpg
the first one is from the firewall (edge transport server)
the second is from the internal exchange server
Firewall-recieve-connector.jpg
ASKER
Exchange receive connector
exchange-rec-connector.jpg
exchange-rec-connector.jpg
can you show a get-queues on the edge server and see if they are still sitting in the queue on that box? there are mails somewhere and i fifnt get a bounce...
i would suggest that your recieve connector on your edge box is correct but the send connector on the edge box isnt working.
are they on the same network and is there a cisco anywhere inbetween?
i would suggest that your recieve connector on your edge box is correct but the send connector on the edge box isnt working.
are they on the same network and is there a cisco anywhere inbetween?
ASKER
get-queues fails?
i get a bounce back from hotmail everytime
the exchange server is on 192.168.101.2 and the edge/firewall 192.168.101.10 (internal) 192.168.201.1 (external)
then external 192.168.201.1 goes to a cisco 877 192.168.201.254 and i have a nat rule that forwards port 25 and 443 to 192.168.201.1 on that
i get a bounce back from hotmail everytime
the exchange server is on 192.168.101.2 and the edge/firewall 192.168.101.10 (internal) 192.168.201.1 (external)
then external 192.168.201.1 goes to a cisco 877 192.168.201.254 and i have a nat rule that forwards port 25 and 443 to 192.168.201.1 on that
[PS] C:\Windows\system32>get-queues
The term 'get-queues' is not recognized as the name of a cmdlet, function, script file, or operable program. Check the
spelling of the name, or if a path was included, verify that the path is correct and try again.
At line:1 char:11
+ get-queues <<<<
+ CategoryInfo : ObjectNotFound: (get-queues:String) [], CommandNotFoundException
+ FullyQualifiedErrorId : CommandNotFoundException
[PS] C:\Windows\system32>
ASKER
my bad didnt need an s
no emails here :S
no emails here :S
[PS] C:\Windows\system32>get-queue
Identity DeliveryType Status MessageCount NextHopDomain
-------- ------------ ------ ------------ -------------
CH-FW\6 SmartHost... Ready 0 smtp.karoo.co.uk
CH-FW\Submission Undefined Ready 0 Submission
sorry, its get-queue
should return somehting like this:
[PS] C:\Windows\system32>Get-Qu
Identity DeliveryType Status MessageCount NextHopDomain
-------- ------------ ------ ------------ -------------
server\Submission Undefined Ready 0 Submission
should return somehting like this:
[PS] C:\Windows\system32>Get-Qu
Identity DeliveryType Status MessageCount NextHopDomain
-------- ------------ ------ ------------ -------------
server\Submission Undefined Ready 0 Submission
ASKER
yeah see above ^^
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
bah why would exchange block my isps smtp server (thats where we get all our mail from) ive added to allow list and removed it from block
[PS] C:\Windows\system32>get-qu
Identity DeliveryType Status MessageCount NextHopDomain
-------- ------------ ------ ------------ -------------
CH-FW\6 SmartHost... Ready 0 smtp.karoo.co.uk
CH-FW\Submission Undefined Ready 3 Submission
but the mail still isnt in my inbox yet
how can i move it on now?
ive probably broke something along the way knowng my luck!
[PS] C:\Windows\system32>get-qu
Identity DeliveryType Status MessageCount NextHopDomain
-------- ------------ ------ ------------ -------------
CH-FW\6 SmartHost... Ready 0 smtp.karoo.co.uk
CH-FW\Submission Undefined Ready 3 Submission
but the mail still isnt in my inbox yet
how can i move it on now?
ive probably broke something along the way knowng my luck!
ASKER
infact heres a list of blocked ips that i havent done myself at anypoint
do you know who any of the below belong to, so i can add them to my sages
are the 65. ones Microsoft's?
blocked.PNG
do you know who any of the below belong to, so i can add them to my sages
are the 65. ones Microsoft's?
blocked.PNG
ASKER
i queried them and they are MS ones mostly ive added them to safes now
so i have 13 emails in my queue now and dont know how to get them moved on
can you help?
so i have 13 emails in my queue now and dont know how to get them moved on
can you help?
ASKER
it says the emails are stuck in a local loop
Identity: CH-FW\Submission\573
Status: Retry
Size (KB): 4
Message Source Name: SMTP:External
Source IP: 212.50.160.34
SCL: 0
Date Received: 26/08/2010 16:46:50
Expiration Time: 28/08/2010 16:46:50
Last Error: A local loop was detected.
Queue ID: CH-FW\Submission
telnet 82.x.x.x 25
and see if it replies. It may be that you need to put in a recieve connectory.
if you get connection, type the following:
helo me <enter>
mail from:email@domain.com <enter>
rcpt to:youremail@yourdomain.co
data <enter>
Subject:This is a test <enter>
Testing <enter>
. <enter>
and see what errors you get...