Solved

Exchange 2010 Relay failing to outside addresses

Posted on 2011-03-07
3
2,299 Views
Last Modified: 2012-06-27
Hey guys,

For some reason I am getting an error when trying to relay from one of our application servers.  It successfully relays internally, but anything outside of our domain returns the following:

SMTP returned error. 550 5.7.1 Unable to relay

Below is the log file that I turned on from one of the attempts.  Any ideas?


#Software: Microsoft Exchange Server
#Version: 14.0.0.0
#Log-type: SMTP Receive Protocol Log
#Date: 2011-03-07T20:13:03.609Z
#Fields: date-time,connector-id,session-id,sequence-number,local-endpoint,remote-endpoint,event,data,context
2011-03-07T20:13:03.609Z,HUB1\Relay,08CDA78394E7B184,0,192.168.1.182:25,192.168.1.34:3313,+,,
2011-03-07T20:13:03.609Z,HUB1\Relay,08CDA78394E7B184,1,192.168.1.182:25,192.168.1.34:3313,*,SMTPSubmit SMTPAcceptAnySender SMTPAcceptAuthoritativeDomainSender AcceptRoutingHeaders,Set Session Permissions
2011-03-07T20:13:03.609Z,HUB1\Relay,08CDA78394E7B184,2,192.168.1.182:25,192.168.1.34:3313,>,"220 HUB1.schooldomain.k12.md.us Microsoft ESMTP MAIL Service ready at Mon, 7 Mar 2011 15:13:02 -0500",
2011-03-07T20:13:03.687Z,HUB1\Relay,08CDA78394E7B184,3,192.168.1.182:25,192.168.1.34:3313,<,EHLO schooldomain.k12.md.us,
2011-03-07T20:13:03.687Z,HUB1\Relay,08CDA78394E7B184,4,192.168.1.182:25,192.168.1.34:3313,>,250-HUB1.schooldomain.k12.md.us Hello [192.168.1.34],
2011-03-07T20:13:03.687Z,HUB1\Relay,08CDA78394E7B184,5,192.168.1.182:25,192.168.1.34:3313,>,250-SIZE 10485760,
2011-03-07T20:13:03.687Z,HUB1\Relay,08CDA78394E7B184,6,192.168.1.182:25,192.168.1.34:3313,>,250-PIPELINING,
2011-03-07T20:13:03.687Z,HUB1\Relay,08CDA78394E7B184,7,192.168.1.182:25,192.168.1.34:3313,>,250-DSN,
2011-03-07T20:13:03.687Z,HUB1\Relay,08CDA78394E7B184,8,192.168.1.182:25,192.168.1.34:3313,>,250-ENHANCEDSTATUSCODES,
2011-03-07T20:13:03.687Z,HUB1\Relay,08CDA78394E7B184,9,192.168.1.182:25,192.168.1.34:3313,>,250-AUTH,
2011-03-07T20:13:03.687Z,HUB1\Relay,08CDA78394E7B184,10,192.168.1.182:25,192.168.1.34:3313,>,250-8BITMIME,
2011-03-07T20:13:03.687Z,HUB1\Relay,08CDA78394E7B184,11,192.168.1.182:25,192.168.1.34:3313,>,250-BINARYMIME,
2011-03-07T20:13:03.687Z,HUB1\Relay,08CDA78394E7B184,12,192.168.1.182:25,192.168.1.34:3313,>,250 CHUNKING,
2011-03-07T20:13:03.937Z,HUB1\Relay,08CDA78394E7B184,13,192.168.1.182:25,192.168.1.34:3313,<,MAIL FROM:<pinnacle@schooldomain.k12.md.us>,
2011-03-07T20:13:03.937Z,HUB1\Relay,08CDA78394E7B184,14,192.168.1.182:25,192.168.1.34:3313,*,08CDA78394E7B184;2011-03-07T20:13:03.594Z;1,receiving message
2011-03-07T20:13:03.937Z,HUB1\Relay,08CDA78394E7B184,15,192.168.1.182:25,192.168.1.34:3313,>,250 2.1.0 Sender OK,
2011-03-07T20:13:03.969Z,HUB1\Relay,08CDA78394E7B184,16,192.168.1.182:25,192.168.1.34:3313,<,RCPT TO:<username@gmail.com>,
2011-03-07T20:13:03.969Z,HUB1\Relay,08CDA78394E7B184,17,192.168.1.182:25,192.168.1.34:3313,*,Tarpit for '0.00:00:05',
2011-03-07T20:13:08.984Z,HUB1\Relay,08CDA78394E7B184,18,192.168.1.182:25,192.168.1.34:3313,>,550 5.7.1 Unable to relay,
2011-03-07T20:13:08.984Z,HUB1\Relay,08CDA78394E7B184,19,192.168.1.182:25,192.168.1.34:3313,<,QUIT,
2011-03-07T20:13:08.984Z,HUB1\Relay,08CDA78394E7B184,20,192.168.1.182:25,192.168.1.34:3313,>,221 2.0.0 Service closing transmission channel,
2011-03-07T20:13:08.984Z,HUB1\Relay,08CDA78394E7B184,21,192.168.1.182:25,192.168.1.34:3313,-,,Local
0
Comment
Question by:Joel Parmer
3 Comments
 
LVL 37

Accepted Solution

by:
Neil Russell earned 500 total points
ID: 35060927
Create a seperate receive connector for that server IP only, set anonymous access and then do as detailed here http://technet.microsoft.com/en-us/library/bb232021.aspx
0
 
LVL 13

Expert Comment

by:upalakshitha
ID: 35070602
0
 

Author Comment

by:Joel Parmer
ID: 35072053
Turns out I had everything set up right except for running the powershell command:

Get-ReceiveConnector "Anonymous Relay" | Add-ADPermission -User "NT AUTHORITY\ANONYMOUS LOGON" -ExtendedRights "Ms-Exch-SMTP-Accept-Any-Recipient"

Thank you for the link.
0

Featured Post

Is Your Active Directory as Secure as You Think?

More than 75% of all records are compromised because of the loss or theft of a privileged credential. Experts have been exploring Active Directory infrastructure to identify key threats and establish best practices for keeping data safe. Attend this month’s webinar to learn more.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This process describes the steps required to Import and Export data from and to .pst files using Exchange 2010. We can use these steps to export data from a user to a .pst file, import data back to the same or a different user, or even import data t…
MS Outlook is a world-class email client application that is mainly used for e-communication globally.  In this article, we will discuss the basic idea about MS Outlook, its advanced features, and types of MS Outlook File formats.
To show how to create a transport rule in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Mail Flow >> Rules tab.:  To cr…
This video discusses moving either the default database or any database to a new volume.

867 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

19 Experts available now in Live!

Get 1:1 Help Now