• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 562
  • Last Modified:

Cannot receive email from a specific domain

I am having difficulty receiving email from a specific domain. We are using forefront for exchange, and exchange 2007. For some reason I think our system is marking their email as spam and boucing it. THey are not receiving NDR's probably because there server doesnt allow and their email is hosted offsite. To test I disabled all the antispam services in exchange, such as content filter, etc. Then they were able to send to us with no problems. I also have them on an allow list in forefront. Is there somewhere else I should be putting there domain name in exchange to whitelist them, or in forefront I am not seeing?
0
JessicaWatters
Asked:
JessicaWatters
  • 10
  • 4
  • 3
  • +1
1 Solution
 
rnicolausCommented:
Exchange Server 2007 can apply whitelists and blocklists on Edge Transport servers and Hub Transport servers that have the Exchange Server 2007 Anti-Spam components installed.

Whitelists are configured in two places.  Whitelisted IP addresses (or the IP Allow List) are handled by the Connection Filter agent but are not configured at the organisation level.  Instead they are configured on the Edge Transport or Hub Transport servers.  Typically the IP address whitelist is configured on any Transport server that accepts email from the internet."

Full article with screenshots: http://www.allspammedup.com/2009/01/managing-whitelists-and-blocklists-for-exchange-server-environments/

Also, check if the domain is blacklisted anywhere:  http://www.mxtoolbox.com/blacklists.aspx

0
 
JessicaWattersAuthor Commented:
Ok so I entered in the ip allow list providers list the following: "domain.com" for the organization. We resent a test and still didnt come through. Should I be entering it another way and not their domain.com?
0
 
rnicolausCommented:
I believe you have to restart the SMTP service for it to take effect.
0
Has Powershell sent you back into the Stone Age?

If managing Active Directory using Windows Powershell® is making you feel like you stepped back in time, you are not alone.  For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why.

 
JessicaWattersAuthor Commented:
Does it automatically take into effect after a period of time? I dont watn to restart service during business hours.
0
 
Keith AlabasterEnterprise ArchitectCommented:
If you have entered into Forefront and hit the Save button it will take effect. Forefront will have stopped and restarted the services behind the scenes already.
0
 
JessicaWattersAuthor Commented:
Ok....well this is where I entered the domain in forefront: filter lists-->Allowed Senders.
DO I also need to enter it in Filter Lists-->sender domains?

Should I NOT need to enter in exchange IP List Providers then?
0
 
Keith AlabasterEnterprise ArchitectCommented:
sender domains is where I would expect to see it.
0
 
JessicaWattersAuthor Commented:
Sender-domains filtering enables you to filter messages from particular senders or domains.  So, it's meant to block particular senders or domains, not exclude.  When you add a domain to this list, you are telling Forefront to block it, not exclude it.  Plus, Sender-domains filtering only works for Realtime and Manual scan jobs.  Realtime is internally sent mail, from one internal user to another internal user.  Sender-domains will not work on Transport scan.

THis is what I found....so prob. not a good idea to enter in Sender Domains!
0
 
Keith AlabasterEnterprise ArchitectCommented:
Hang on a bit. It won't take THAT long to uninstall my FPE and install FSE.
0
 
dexITCommented:
Did you try running the recipient's mail server through a PBL check?
0
 
JessicaWattersAuthor Commented:
No...what is PBL check? you mean RBL? If so not they are not on a blacklist.
0
 
JessicaWattersAuthor Commented:
SOrry I see what PBL is......I have to look into this
0
 
JessicaWattersAuthor Commented:
I dont see where I can check there domain on the spamhaus site if this is where you are referring to. Any suggestions?
0
 
JessicaWattersAuthor Commented:
We do use zen.spamhaus.org in exchange under our IP Blocklist Providers. SO now I need to figure out if they are on that list. How can I check....not able to clearly see on their site?
0
 
rnicolausCommented:
I remember a similar issue where the ISP didn't set Reverse DNS properly.  Do you have reverse DNS setup for your mail server's IP address?  If you don't know, check if it here:  http://www.mxtoolbox.com/

If it's not setup - you usually ask your ISP to set it RDNS
0
 
rnicolausCommented:
and from my 1st post:

"Also, check if the domain is blacklisted anywhere:  http://www.mxtoolbox.com/blacklists.aspx"
0
 
JessicaWattersAuthor Commented:
I had to add a long list of their IP addresses for their MX servers that their mail goes through in exchange in IP allow list anti spam for the server settings. It eventually let the mail through....I needed a lot of IP's as they were hosting their mail offsite.
0
 
JessicaWattersAuthor Commented:
I was able to get to what I needed to figure out by his help.
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

Free Tool: Subnet Calculator

The subnet calculator helps you design networks by taking an IP address and network mask and returning information such as network, broadcast address, and host range.

One of a set of tools we're offering as a way of saying thank you for being a part of the community.

  • 10
  • 4
  • 3
  • +1
Tackle projects and never again get stuck behind a technical roadblock.
Join Now