?
Solved

Cannot email to a specific Domain from my Exchange Server

Posted on 2011-03-10
10
Medium Priority
?
634 Views
Last Modified: 2012-08-13
Hello,

We are continuing to have problems wherein my domain (RAPADOCS.COM) is bouncing messages from the HEALTHTEXAS.ORG domain. I can send email to that domain, however they cannot send to me.  I'm not sure where the the problem appears to be and I've checked our SONIC firewall.  Maybe I'm missing something and it's not allowing email from HEALTHTEXAS.ORG because my Sonic Firewall refuses connections from email servers whose inbound and outbound port addresses do not match. I'm not sure if this is the issue and I'm not sure how to troubleshoot this issue.

Thanks,

nimdatx

0
Comment
Question by:Jaime Campos
  • 6
  • 4
10 Comments
 
LVL 76

Expert Comment

by:Alan Hardisty
ID: 35096850
Please have a read of my article and check your configuration to make sure that they are configured correctly:

http://www.experts-exchange.com/Software/Server_Software/Email_Servers/A_2427-Problems-sending-mail-to-one-or-more-external-domains.html
0
 
LVL 76

Expert Comment

by:Alan Hardisty
ID: 35096997
Please ask them to send me a test message - they are hiding behind a Barracuda spam appliance and they might not be configured correctly, only we won't know because of this.

My address is alan @ it-eye.co.uk and my anti-spam software will tell me all I need to know about how their server is configured.

Many thanks

Alan
0
 
LVL 1

Author Comment

by:Jaime Campos
ID: 35097305
I sent you a test from my end. Maybe you can see something on my side. I'll see if they can send to you as well.

I readed your document and performed your steps.

What is my IP off Exchange Server
12.49.168.68

Reverse DNS Lookup
Server: 208.82.183.131
Address: 208.82.183.131#53
Non-authoritative answer:
Name: rapadocs.com
Address: 24.173.46.250

Blacklist
Checking 12.49.168.68 against 103 known blacklists...
Listed 0 times with 2 timeouts.
All seemed to be ok.

Web Reputation Score:
      Neutral
 Why is the reputation Neutral?
Your IP address or domain is within acceptable parameters.

Extended Whois
Invalid AWS Request!
Invalid AWS Request!
Invalid AWS Request!
Invalid AWS Request!
Invalid AWS Request!
WHOIS Lookup
Owner      Renal Associates, P.A.
Status      Locked
Created      2006-11-17
Changed      2009-09-23
Expires      2016-11-17
Registrar      ENOM, INC.
Admin Email      nawils@sbcglobal.net
Tech Email      nawils@sbcglobal.net

Invalid AWS Request!
Invalid AWS Request!
Invalid AWS Request!
Invalid AWS Request!
Invalid AWS Request!
Top Level Domains Available
.com      .net      .org      .biz      .info      .us
                                    

SSL Certificate
Valid?      ERROR
Created      2009-05-16 11:57:15 GMT
Expires      2011-05-16 11:57:15 GMT
Issued To      Totalpcsol.net
San Antonio, US
Issued By      Microsoft Internet Information Server

THANKS SO MUCH for checking.

nimdatx

0
Making Bulk Changes to Active Directory

Watch this video to see how easy it is to make mass changes to Active Directory from an external text file without using complicated scripts.

 
LVL 76

Expert Comment

by:Alan Hardisty
ID: 35097347
Your email came through fine - which suggests you are configured happily.  I'll just check my server and report back in a sec.

Either way - that won't do much for testing your inbound mail-flow.  Usually problems like this are down to poor configuration at the sending end.
0
 
LVL 76

Expert Comment

by:Alan Hardisty
ID: 35097368
Yep - came through cleanly.  Your config looks fine.
0
 
LVL 1

Author Comment

by:Jaime Campos
ID: 35097957
My Information
IP off Exchange Server
12.49.168.68

Reverse DNS Lookup
Server: 208.82.183.131
Address: 208.82.183.131#53
Non-authoritative answer:
Name: rapadocs.com
Address: 24.173.46.250 <- Isn't this IP supposed to be 12.49.168.68, which comes up as my IP when I run MX lookup? Is that address supposed to have RDNS or my MX IP 12.49.168.68?

Healthtexas information

RDNS: Healthtexas.org
Server: 208.82.183.131
Address: 208.82.183.131#53

Non-authoritative answer:
Name: Healthtexas.org
Address: 168.143.83.194

MX Record: Healthtexas.org
mail.healthtexas.org      76.195.29.204

DNS Lookup: Healthtexas.org
healthtexas.org            168.143.83.194






0
 
LVL 76

Expert Comment

by:Alan Hardisty
ID: 35100797
The IP Address you connected to my server from is 12.49.168.68 and your EHLO Domain Name is rapamail.rapadocs.com - Reverse DNS on that IP resolves as rapamail.rapadocs.com

The MXTOOLBOX test for DNS Report doesn't work on Exchange 2007 / 2010 because they connect to your RECEIVE Connector not your SEND connector and you can receive and send on differnet IP Addresses, so you can safely ignore that test.

Your side is good to go and looks very RFC compliant to me.  Can't say the same thing for the other end without them sending me a test message or knowing more info.
0
 
LVL 1

Author Comment

by:Jaime Campos
ID: 35112655
alanhardisty,

I'm waiting for a callback from Senior System Admin from Health Texas Organization. Now, meanwhile I've done all your recommended testing with your wonderful article, however is there anything else I can do that you would do once you recieve there email. Can you explain how you check it from your end, so maybe I can learn how to further my email troubleshooting skills.

Thanks,

Jaime Campos
0
 
LVL 76

Accepted Solution

by:
Alan Hardisty earned 2000 total points
ID: 35115630
It depends on what they say in the email.

We had a customer who was not receiving an email from someone sending to them and despite us having his entire email flow whitelisted, spam and everything, he was not receiving the email, so of course he was blaming us (as usual).

Well, I trawled through our Vamsoft ORF Anti-Spam logs (which are brilliant and easy to sort / filter) and could not even see a connection attempt from the relevant mail server in question.  I then added a filter on our Forefront TMG server and couldn't see anything on that either.

So - I fired an email back to my customer and told him that they were not even coming anywhere near our server and that the problem was most definitely at the sending end.

The sending end ran some telnet tests and those messages came through happily!

They then 'tweaked' a setting at their end and then magically the emails started to flow properly.

As usual - this turned out to be a problem at the sending end, which in most cases it is (but not in all cases).

As your server is RFC compliant and everything checks out your end - they may be specifically blocking you, don't like something you are putting in a email such as an autosignature or they are just using a system that doesn't communicate well with an Exchange server!

I worked on a question where a company could not email someone and after various tests - it turned out that their telephone number in their autosignature was triggering the spam filter and getting their emails rejected!  That was different!!
0
 
LVL 1

Author Closing Comment

by:Jaime Campos
ID: 35168950
Thanks so much for all your help.
0

Featured Post

Creating Active Directory Users from a Text File

If your organization has a need to mass-create AD user accounts, watch this video to see how its done without the need for scripting or other unnecessary complexities.

Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Using Granular Exchange Recovery Software to recover specific items from corrupt Exchange mailboxes. With Granular recovery techniques,  repair exchange mailbox and then move single items objects stored in Exchange EDB Files such as emails, contacts…
Importing Outlook PST contacts to Exchange Server can become a complicated task. Situations arise where an Exchange user is not able to import contacts from PST to Exchange Mailboxes in an efficient manner. Try SysTools Exchange Import to move conta…
This video shows how to quickly and easily deploy an email signature for all users in Office 365 and prevent it from being added to replies and forwards. (the resulting signature is applied on the server level in Exchange Online) The email signat…
There are cases when e.g. an IT administrator wants to have full access and view into selected mailboxes on Exchange server, directly from his own email account in Outlook or Outlook Web Access. This proves useful when for example administrator want…

590 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question