Solved

Exchange 2010 Relay failing to outside addresses

Posted on 2011-03-07
3
2,418 Views
Last Modified: 2012-06-27
Hey guys,

For some reason I am getting an error when trying to relay from one of our application servers.  It successfully relays internally, but anything outside of our domain returns the following:

SMTP returned error. 550 5.7.1 Unable to relay

Below is the log file that I turned on from one of the attempts.  Any ideas?


#Software: Microsoft Exchange Server
#Version: 14.0.0.0
#Log-type: SMTP Receive Protocol Log
#Date: 2011-03-07T20:13:03.609Z
#Fields: date-time,connector-id,session-id,sequence-number,local-endpoint,remote-endpoint,event,data,context
2011-03-07T20:13:03.609Z,HUB1\Relay,08CDA78394E7B184,0,192.168.1.182:25,192.168.1.34:3313,+,,
2011-03-07T20:13:03.609Z,HUB1\Relay,08CDA78394E7B184,1,192.168.1.182:25,192.168.1.34:3313,*,SMTPSubmit SMTPAcceptAnySender SMTPAcceptAuthoritativeDomainSender AcceptRoutingHeaders,Set Session Permissions
2011-03-07T20:13:03.609Z,HUB1\Relay,08CDA78394E7B184,2,192.168.1.182:25,192.168.1.34:3313,>,"220 HUB1.schooldomain.k12.md.us Microsoft ESMTP MAIL Service ready at Mon, 7 Mar 2011 15:13:02 -0500",
2011-03-07T20:13:03.687Z,HUB1\Relay,08CDA78394E7B184,3,192.168.1.182:25,192.168.1.34:3313,<,EHLO schooldomain.k12.md.us,
2011-03-07T20:13:03.687Z,HUB1\Relay,08CDA78394E7B184,4,192.168.1.182:25,192.168.1.34:3313,>,250-HUB1.schooldomain.k12.md.us Hello [192.168.1.34],
2011-03-07T20:13:03.687Z,HUB1\Relay,08CDA78394E7B184,5,192.168.1.182:25,192.168.1.34:3313,>,250-SIZE 10485760,
2011-03-07T20:13:03.687Z,HUB1\Relay,08CDA78394E7B184,6,192.168.1.182:25,192.168.1.34:3313,>,250-PIPELINING,
2011-03-07T20:13:03.687Z,HUB1\Relay,08CDA78394E7B184,7,192.168.1.182:25,192.168.1.34:3313,>,250-DSN,
2011-03-07T20:13:03.687Z,HUB1\Relay,08CDA78394E7B184,8,192.168.1.182:25,192.168.1.34:3313,>,250-ENHANCEDSTATUSCODES,
2011-03-07T20:13:03.687Z,HUB1\Relay,08CDA78394E7B184,9,192.168.1.182:25,192.168.1.34:3313,>,250-AUTH,
2011-03-07T20:13:03.687Z,HUB1\Relay,08CDA78394E7B184,10,192.168.1.182:25,192.168.1.34:3313,>,250-8BITMIME,
2011-03-07T20:13:03.687Z,HUB1\Relay,08CDA78394E7B184,11,192.168.1.182:25,192.168.1.34:3313,>,250-BINARYMIME,
2011-03-07T20:13:03.687Z,HUB1\Relay,08CDA78394E7B184,12,192.168.1.182:25,192.168.1.34:3313,>,250 CHUNKING,
2011-03-07T20:13:03.937Z,HUB1\Relay,08CDA78394E7B184,13,192.168.1.182:25,192.168.1.34:3313,<,MAIL FROM:<pinnacle@schooldomain.k12.md.us>,
2011-03-07T20:13:03.937Z,HUB1\Relay,08CDA78394E7B184,14,192.168.1.182:25,192.168.1.34:3313,*,08CDA78394E7B184;2011-03-07T20:13:03.594Z;1,receiving message
2011-03-07T20:13:03.937Z,HUB1\Relay,08CDA78394E7B184,15,192.168.1.182:25,192.168.1.34:3313,>,250 2.1.0 Sender OK,
2011-03-07T20:13:03.969Z,HUB1\Relay,08CDA78394E7B184,16,192.168.1.182:25,192.168.1.34:3313,<,RCPT TO:<username@gmail.com>,
2011-03-07T20:13:03.969Z,HUB1\Relay,08CDA78394E7B184,17,192.168.1.182:25,192.168.1.34:3313,*,Tarpit for '0.00:00:05',
2011-03-07T20:13:08.984Z,HUB1\Relay,08CDA78394E7B184,18,192.168.1.182:25,192.168.1.34:3313,>,550 5.7.1 Unable to relay,
2011-03-07T20:13:08.984Z,HUB1\Relay,08CDA78394E7B184,19,192.168.1.182:25,192.168.1.34:3313,<,QUIT,
2011-03-07T20:13:08.984Z,HUB1\Relay,08CDA78394E7B184,20,192.168.1.182:25,192.168.1.34:3313,>,221 2.0.0 Service closing transmission channel,
2011-03-07T20:13:08.984Z,HUB1\Relay,08CDA78394E7B184,21,192.168.1.182:25,192.168.1.34:3313,-,,Local
0
Comment
Question by:Joel Parmer
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
3 Comments
 
LVL 37

Accepted Solution

by:
Neil Russell earned 500 total points
ID: 35060927
Create a seperate receive connector for that server IP only, set anonymous access and then do as detailed here http://technet.microsoft.com/en-us/library/bb232021.aspx
0
 
LVL 13

Expert Comment

by:upalakshitha
ID: 35070602
0
 

Author Comment

by:Joel Parmer
ID: 35072053
Turns out I had everything set up right except for running the powershell command:

Get-ReceiveConnector "Anonymous Relay" | Add-ADPermission -User "NT AUTHORITY\ANONYMOUS LOGON" -ExtendedRights "Ms-Exch-SMTP-Accept-Any-Recipient"

Thank you for the link.
0

Featured Post

Has Powershell sent you back into the Stone Age?

If managing Active Directory using Windows Powershell® is making you feel like you stepped back in time, you are not alone.  For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Read this checklist to learn more about the 15 things you should never include in an email signature.
This article explains how to install and use the NTBackup utility that comes with Windows Server.
In this video we show how to create an Address List in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Organization >> Ad…
Exchange organizations may use the Journaling Agent of the Transport Service to archive messages going through Exchange. However, if the Transport Service is integrated with some email content management application (such as an antispam), the admini…

733 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question