Solved

Exchange 2010 Relay failing to outside addresses

Posted on 2011-03-07
3
2,393 Views
Last Modified: 2012-06-27
Hey guys,

For some reason I am getting an error when trying to relay from one of our application servers.  It successfully relays internally, but anything outside of our domain returns the following:

SMTP returned error. 550 5.7.1 Unable to relay

Below is the log file that I turned on from one of the attempts.  Any ideas?


#Software: Microsoft Exchange Server
#Version: 14.0.0.0
#Log-type: SMTP Receive Protocol Log
#Date: 2011-03-07T20:13:03.609Z
#Fields: date-time,connector-id,session-id,sequence-number,local-endpoint,remote-endpoint,event,data,context
2011-03-07T20:13:03.609Z,HUB1\Relay,08CDA78394E7B184,0,192.168.1.182:25,192.168.1.34:3313,+,,
2011-03-07T20:13:03.609Z,HUB1\Relay,08CDA78394E7B184,1,192.168.1.182:25,192.168.1.34:3313,*,SMTPSubmit SMTPAcceptAnySender SMTPAcceptAuthoritativeDomainSender AcceptRoutingHeaders,Set Session Permissions
2011-03-07T20:13:03.609Z,HUB1\Relay,08CDA78394E7B184,2,192.168.1.182:25,192.168.1.34:3313,>,"220 HUB1.schooldomain.k12.md.us Microsoft ESMTP MAIL Service ready at Mon, 7 Mar 2011 15:13:02 -0500",
2011-03-07T20:13:03.687Z,HUB1\Relay,08CDA78394E7B184,3,192.168.1.182:25,192.168.1.34:3313,<,EHLO schooldomain.k12.md.us,
2011-03-07T20:13:03.687Z,HUB1\Relay,08CDA78394E7B184,4,192.168.1.182:25,192.168.1.34:3313,>,250-HUB1.schooldomain.k12.md.us Hello [192.168.1.34],
2011-03-07T20:13:03.687Z,HUB1\Relay,08CDA78394E7B184,5,192.168.1.182:25,192.168.1.34:3313,>,250-SIZE 10485760,
2011-03-07T20:13:03.687Z,HUB1\Relay,08CDA78394E7B184,6,192.168.1.182:25,192.168.1.34:3313,>,250-PIPELINING,
2011-03-07T20:13:03.687Z,HUB1\Relay,08CDA78394E7B184,7,192.168.1.182:25,192.168.1.34:3313,>,250-DSN,
2011-03-07T20:13:03.687Z,HUB1\Relay,08CDA78394E7B184,8,192.168.1.182:25,192.168.1.34:3313,>,250-ENHANCEDSTATUSCODES,
2011-03-07T20:13:03.687Z,HUB1\Relay,08CDA78394E7B184,9,192.168.1.182:25,192.168.1.34:3313,>,250-AUTH,
2011-03-07T20:13:03.687Z,HUB1\Relay,08CDA78394E7B184,10,192.168.1.182:25,192.168.1.34:3313,>,250-8BITMIME,
2011-03-07T20:13:03.687Z,HUB1\Relay,08CDA78394E7B184,11,192.168.1.182:25,192.168.1.34:3313,>,250-BINARYMIME,
2011-03-07T20:13:03.687Z,HUB1\Relay,08CDA78394E7B184,12,192.168.1.182:25,192.168.1.34:3313,>,250 CHUNKING,
2011-03-07T20:13:03.937Z,HUB1\Relay,08CDA78394E7B184,13,192.168.1.182:25,192.168.1.34:3313,<,MAIL FROM:<pinnacle@schooldomain.k12.md.us>,
2011-03-07T20:13:03.937Z,HUB1\Relay,08CDA78394E7B184,14,192.168.1.182:25,192.168.1.34:3313,*,08CDA78394E7B184;2011-03-07T20:13:03.594Z;1,receiving message
2011-03-07T20:13:03.937Z,HUB1\Relay,08CDA78394E7B184,15,192.168.1.182:25,192.168.1.34:3313,>,250 2.1.0 Sender OK,
2011-03-07T20:13:03.969Z,HUB1\Relay,08CDA78394E7B184,16,192.168.1.182:25,192.168.1.34:3313,<,RCPT TO:<username@gmail.com>,
2011-03-07T20:13:03.969Z,HUB1\Relay,08CDA78394E7B184,17,192.168.1.182:25,192.168.1.34:3313,*,Tarpit for '0.00:00:05',
2011-03-07T20:13:08.984Z,HUB1\Relay,08CDA78394E7B184,18,192.168.1.182:25,192.168.1.34:3313,>,550 5.7.1 Unable to relay,
2011-03-07T20:13:08.984Z,HUB1\Relay,08CDA78394E7B184,19,192.168.1.182:25,192.168.1.34:3313,<,QUIT,
2011-03-07T20:13:08.984Z,HUB1\Relay,08CDA78394E7B184,20,192.168.1.182:25,192.168.1.34:3313,>,221 2.0.0 Service closing transmission channel,
2011-03-07T20:13:08.984Z,HUB1\Relay,08CDA78394E7B184,21,192.168.1.182:25,192.168.1.34:3313,-,,Local
0
Comment
Question by:Joel Parmer
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
3 Comments
 
LVL 37

Accepted Solution

by:
Neil Russell earned 500 total points
ID: 35060927
Create a seperate receive connector for that server IP only, set anonymous access and then do as detailed here http://technet.microsoft.com/en-us/library/bb232021.aspx
0
 
LVL 13

Expert Comment

by:upalakshitha
ID: 35070602
0
 

Author Comment

by:Joel Parmer
ID: 35072053
Turns out I had everything set up right except for running the powershell command:

Get-ReceiveConnector "Anonymous Relay" | Add-ADPermission -User "NT AUTHORITY\ANONYMOUS LOGON" -ExtendedRights "Ms-Exch-SMTP-Accept-Any-Recipient"

Thank you for the link.
0

Featured Post

Are your AD admin tools letting you down?

Managing Active Directory can get complicated.  Often, the native tools for managing AD are just not up to the task.  The largest Active Directory installations in the world have relied on one tool to manage their day-to-day administration tasks: Hyena. Start your trial today.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Learn to move / copy / export exchange contacts to iPhone without using any software. Also see the issues in configuration of exchange with iPhone to migrate contacts.
How to resolve IMCEAEX NDRs in Exchange or Exchange Online related to invalid X500 addresses.
In this video we show how to create a mailbox database in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Servers >> Data…
This video shows how to quickly and easily add an email signature for all users on Exchange 2016. The resulting signature is applied on a server level by Exchange Online. The email signature template has been downloaded from: www.mail-signatures…

756 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question