Solved

Exchange 2010 Relay failing to outside addresses

Posted on 2011-03-07
3
2,270 Views
Last Modified: 2012-06-27
Hey guys,

For some reason I am getting an error when trying to relay from one of our application servers.  It successfully relays internally, but anything outside of our domain returns the following:

SMTP returned error. 550 5.7.1 Unable to relay

Below is the log file that I turned on from one of the attempts.  Any ideas?


#Software: Microsoft Exchange Server
#Version: 14.0.0.0
#Log-type: SMTP Receive Protocol Log
#Date: 2011-03-07T20:13:03.609Z
#Fields: date-time,connector-id,session-id,sequence-number,local-endpoint,remote-endpoint,event,data,context
2011-03-07T20:13:03.609Z,HUB1\Relay,08CDA78394E7B184,0,192.168.1.182:25,192.168.1.34:3313,+,,
2011-03-07T20:13:03.609Z,HUB1\Relay,08CDA78394E7B184,1,192.168.1.182:25,192.168.1.34:3313,*,SMTPSubmit SMTPAcceptAnySender SMTPAcceptAuthoritativeDomainSender AcceptRoutingHeaders,Set Session Permissions
2011-03-07T20:13:03.609Z,HUB1\Relay,08CDA78394E7B184,2,192.168.1.182:25,192.168.1.34:3313,>,"220 HUB1.schooldomain.k12.md.us Microsoft ESMTP MAIL Service ready at Mon, 7 Mar 2011 15:13:02 -0500",
2011-03-07T20:13:03.687Z,HUB1\Relay,08CDA78394E7B184,3,192.168.1.182:25,192.168.1.34:3313,<,EHLO schooldomain.k12.md.us,
2011-03-07T20:13:03.687Z,HUB1\Relay,08CDA78394E7B184,4,192.168.1.182:25,192.168.1.34:3313,>,250-HUB1.schooldomain.k12.md.us Hello [192.168.1.34],
2011-03-07T20:13:03.687Z,HUB1\Relay,08CDA78394E7B184,5,192.168.1.182:25,192.168.1.34:3313,>,250-SIZE 10485760,
2011-03-07T20:13:03.687Z,HUB1\Relay,08CDA78394E7B184,6,192.168.1.182:25,192.168.1.34:3313,>,250-PIPELINING,
2011-03-07T20:13:03.687Z,HUB1\Relay,08CDA78394E7B184,7,192.168.1.182:25,192.168.1.34:3313,>,250-DSN,
2011-03-07T20:13:03.687Z,HUB1\Relay,08CDA78394E7B184,8,192.168.1.182:25,192.168.1.34:3313,>,250-ENHANCEDSTATUSCODES,
2011-03-07T20:13:03.687Z,HUB1\Relay,08CDA78394E7B184,9,192.168.1.182:25,192.168.1.34:3313,>,250-AUTH,
2011-03-07T20:13:03.687Z,HUB1\Relay,08CDA78394E7B184,10,192.168.1.182:25,192.168.1.34:3313,>,250-8BITMIME,
2011-03-07T20:13:03.687Z,HUB1\Relay,08CDA78394E7B184,11,192.168.1.182:25,192.168.1.34:3313,>,250-BINARYMIME,
2011-03-07T20:13:03.687Z,HUB1\Relay,08CDA78394E7B184,12,192.168.1.182:25,192.168.1.34:3313,>,250 CHUNKING,
2011-03-07T20:13:03.937Z,HUB1\Relay,08CDA78394E7B184,13,192.168.1.182:25,192.168.1.34:3313,<,MAIL FROM:<pinnacle@schooldomain.k12.md.us>,
2011-03-07T20:13:03.937Z,HUB1\Relay,08CDA78394E7B184,14,192.168.1.182:25,192.168.1.34:3313,*,08CDA78394E7B184;2011-03-07T20:13:03.594Z;1,receiving message
2011-03-07T20:13:03.937Z,HUB1\Relay,08CDA78394E7B184,15,192.168.1.182:25,192.168.1.34:3313,>,250 2.1.0 Sender OK,
2011-03-07T20:13:03.969Z,HUB1\Relay,08CDA78394E7B184,16,192.168.1.182:25,192.168.1.34:3313,<,RCPT TO:<username@gmail.com>,
2011-03-07T20:13:03.969Z,HUB1\Relay,08CDA78394E7B184,17,192.168.1.182:25,192.168.1.34:3313,*,Tarpit for '0.00:00:05',
2011-03-07T20:13:08.984Z,HUB1\Relay,08CDA78394E7B184,18,192.168.1.182:25,192.168.1.34:3313,>,550 5.7.1 Unable to relay,
2011-03-07T20:13:08.984Z,HUB1\Relay,08CDA78394E7B184,19,192.168.1.182:25,192.168.1.34:3313,<,QUIT,
2011-03-07T20:13:08.984Z,HUB1\Relay,08CDA78394E7B184,20,192.168.1.182:25,192.168.1.34:3313,>,221 2.0.0 Service closing transmission channel,
2011-03-07T20:13:08.984Z,HUB1\Relay,08CDA78394E7B184,21,192.168.1.182:25,192.168.1.34:3313,-,,Local
0
Comment
Question by:Joel Parmer
3 Comments
 
LVL 37

Accepted Solution

by:
Neil Russell earned 500 total points
ID: 35060927
Create a seperate receive connector for that server IP only, set anonymous access and then do as detailed here http://technet.microsoft.com/en-us/library/bb232021.aspx
0
 
LVL 13

Expert Comment

by:upalakshitha
ID: 35070602
0
 

Author Comment

by:Joel Parmer
ID: 35072053
Turns out I had everything set up right except for running the powershell command:

Get-ReceiveConnector "Anonymous Relay" | Add-ADPermission -User "NT AUTHORITY\ANONYMOUS LOGON" -ExtendedRights "Ms-Exch-SMTP-Accept-Any-Recipient"

Thank you for the link.
0

Featured Post

Do email signature updates give you a headache?

Do you feel like you are constantly making changes to email signatures? Are the images not formatting how you want them to? Want high-quality HTML signatures on all devices, including on mobiles and Macs? Then, let Exclaimer solve all your email signature problems today.

Join & Write a Comment

Resolve DNS query failed errors for Exchange
Check out this infographic on what you need to make a good email signature that will work perfectly for your organization.
In this video we show how to create an Accepted Domain in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Mail Flow >> Ac…
To show how to create a transport rule in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Mail Flow >> Rules tab.:  To cr…

705 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

17 Experts available now in Live!

Get 1:1 Help Now