?
Solved

Exchange 2010 Relay failing to outside addresses

Posted on 2011-03-07
3
Medium Priority
?
2,520 Views
Last Modified: 2012-06-27
Hey guys,

For some reason I am getting an error when trying to relay from one of our application servers.  It successfully relays internally, but anything outside of our domain returns the following:

SMTP returned error. 550 5.7.1 Unable to relay

Below is the log file that I turned on from one of the attempts.  Any ideas?


#Software: Microsoft Exchange Server
#Version: 14.0.0.0
#Log-type: SMTP Receive Protocol Log
#Date: 2011-03-07T20:13:03.609Z
#Fields: date-time,connector-id,session-id,sequence-number,local-endpoint,remote-endpoint,event,data,context
2011-03-07T20:13:03.609Z,HUB1\Relay,08CDA78394E7B184,0,192.168.1.182:25,192.168.1.34:3313,+,,
2011-03-07T20:13:03.609Z,HUB1\Relay,08CDA78394E7B184,1,192.168.1.182:25,192.168.1.34:3313,*,SMTPSubmit SMTPAcceptAnySender SMTPAcceptAuthoritativeDomainSender AcceptRoutingHeaders,Set Session Permissions
2011-03-07T20:13:03.609Z,HUB1\Relay,08CDA78394E7B184,2,192.168.1.182:25,192.168.1.34:3313,>,"220 HUB1.schooldomain.k12.md.us Microsoft ESMTP MAIL Service ready at Mon, 7 Mar 2011 15:13:02 -0500",
2011-03-07T20:13:03.687Z,HUB1\Relay,08CDA78394E7B184,3,192.168.1.182:25,192.168.1.34:3313,<,EHLO schooldomain.k12.md.us,
2011-03-07T20:13:03.687Z,HUB1\Relay,08CDA78394E7B184,4,192.168.1.182:25,192.168.1.34:3313,>,250-HUB1.schooldomain.k12.md.us Hello [192.168.1.34],
2011-03-07T20:13:03.687Z,HUB1\Relay,08CDA78394E7B184,5,192.168.1.182:25,192.168.1.34:3313,>,250-SIZE 10485760,
2011-03-07T20:13:03.687Z,HUB1\Relay,08CDA78394E7B184,6,192.168.1.182:25,192.168.1.34:3313,>,250-PIPELINING,
2011-03-07T20:13:03.687Z,HUB1\Relay,08CDA78394E7B184,7,192.168.1.182:25,192.168.1.34:3313,>,250-DSN,
2011-03-07T20:13:03.687Z,HUB1\Relay,08CDA78394E7B184,8,192.168.1.182:25,192.168.1.34:3313,>,250-ENHANCEDSTATUSCODES,
2011-03-07T20:13:03.687Z,HUB1\Relay,08CDA78394E7B184,9,192.168.1.182:25,192.168.1.34:3313,>,250-AUTH,
2011-03-07T20:13:03.687Z,HUB1\Relay,08CDA78394E7B184,10,192.168.1.182:25,192.168.1.34:3313,>,250-8BITMIME,
2011-03-07T20:13:03.687Z,HUB1\Relay,08CDA78394E7B184,11,192.168.1.182:25,192.168.1.34:3313,>,250-BINARYMIME,
2011-03-07T20:13:03.687Z,HUB1\Relay,08CDA78394E7B184,12,192.168.1.182:25,192.168.1.34:3313,>,250 CHUNKING,
2011-03-07T20:13:03.937Z,HUB1\Relay,08CDA78394E7B184,13,192.168.1.182:25,192.168.1.34:3313,<,MAIL FROM:<pinnacle@schooldomain.k12.md.us>,
2011-03-07T20:13:03.937Z,HUB1\Relay,08CDA78394E7B184,14,192.168.1.182:25,192.168.1.34:3313,*,08CDA78394E7B184;2011-03-07T20:13:03.594Z;1,receiving message
2011-03-07T20:13:03.937Z,HUB1\Relay,08CDA78394E7B184,15,192.168.1.182:25,192.168.1.34:3313,>,250 2.1.0 Sender OK,
2011-03-07T20:13:03.969Z,HUB1\Relay,08CDA78394E7B184,16,192.168.1.182:25,192.168.1.34:3313,<,RCPT TO:<username@gmail.com>,
2011-03-07T20:13:03.969Z,HUB1\Relay,08CDA78394E7B184,17,192.168.1.182:25,192.168.1.34:3313,*,Tarpit for '0.00:00:05',
2011-03-07T20:13:08.984Z,HUB1\Relay,08CDA78394E7B184,18,192.168.1.182:25,192.168.1.34:3313,>,550 5.7.1 Unable to relay,
2011-03-07T20:13:08.984Z,HUB1\Relay,08CDA78394E7B184,19,192.168.1.182:25,192.168.1.34:3313,<,QUIT,
2011-03-07T20:13:08.984Z,HUB1\Relay,08CDA78394E7B184,20,192.168.1.182:25,192.168.1.34:3313,>,221 2.0.0 Service closing transmission channel,
2011-03-07T20:13:08.984Z,HUB1\Relay,08CDA78394E7B184,21,192.168.1.182:25,192.168.1.34:3313,-,,Local
0
Comment
Question by:Joel Parmer
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
3 Comments
 
LVL 37

Accepted Solution

by:
Neil Russell earned 2000 total points
ID: 35060927
Create a seperate receive connector for that server IP only, set anonymous access and then do as detailed here http://technet.microsoft.com/en-us/library/bb232021.aspx
0
 
LVL 13

Expert Comment

by:upalakshitha
ID: 35070602
0
 

Author Comment

by:Joel Parmer
ID: 35072053
Turns out I had everything set up right except for running the powershell command:

Get-ReceiveConnector "Anonymous Relay" | Add-ADPermission -User "NT AUTHORITY\ANONYMOUS LOGON" -ExtendedRights "Ms-Exch-SMTP-Accept-Any-Recipient"

Thank you for the link.
0

Featured Post

Are your AD admin tools letting you down?

Managing Active Directory can get complicated.  Often, the native tools for managing AD are just not up to the task.  The largest Active Directory installations in the world have relied on one tool to manage their day-to-day administration tasks: Hyena. Start your trial today.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This article aims to explain the working of CircularLogArchiver. This tool was designed to solve the buildup of log file in cases where systems do not support circular logging or where circular logging is not enabled
A couple of months ago we ran into an issue that necessitated re-creating our Edge Subscriptions. However, when we attempted to execute the command: New-EdgeSubscription -filename C:\NewEdgeSub_01.xml we received an error indicating that the LDAP se…
To show how to generate a certificate request in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.:  First we need to log into the Exchange Admin Center. Navigate to the Servers >> Certificates…
To add imagery to an HTML email signature, you have two options available to you. You can either add a logo/image by embedding it directly into the signature or hosting it externally and linking to it. The vast majority of email clients display l…
Suggested Courses

801 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question