Solved

Emails with .gov extension are stuck in queue

Posted on 2011-03-23
20
757 Views
Last Modified: 2012-05-11
For some odd reason Exchange 2003 won't send out emails ending with a .gov extension, they just stay stuck in the queue. Everything else goes out just fine. This started a few weeks ago. I haven't made any changes, but it does the regular windows updates.

I use Sendlabs SMTP to send out email because it is lot easier than dealing with AT&T's constantly shifting rules with spam, it is running on Windows Server 2003 behind a Sonicwall TZ190 firewall.

I have cleared cached DNS stuff on DNS server and restarted the machine, still .gov emails are still getting stuck then eventually sending back an error saying "No route was found for the recipient server."

How do I fix this?
0
Comment
Question by:Bob Stone
  • 9
  • 8
  • 2
  • +1
20 Comments
 
LVL 31

Expert Comment

by:DrUltima
ID: 35202660
If you do an NSLOOKUP of the .gov domain to which you are trying to send from your Exchange server(s), does it correctly resolve?

DrUltima
0
 
LVL 8

Expert Comment

by:I Qasmi
ID: 35204635
Check the mail id through which the messages are being sent to various recepients.
Does the sender exist in the AD Database or not if not then check for the validity of the sender
through testexchangeconnectivity.com Situations comes into picture when there might be spam attack causing emails to get stuck in the queue.
0
 
LVL 9

Author Comment

by:Bob Stone
ID: 35207999
I got a DNS timeout on the nslookup.

The mail IDs are valid, most of the current ones are from me as a test.
0
 
LVL 31

Expert Comment

by:DrUltima
ID: 35208590
Can you paste the results in for me?
0
 
LVL 9

Author Comment

by:Bob Stone
ID: 35209025
Upon digging through DNS settings I noticed that the resolver was set to an old OpenDNS account that expired a while back, after changing it to the new DynDNS one I have now it was able to resolve ... sorta, I get some odd results, it adds my domain name to the end of it for some odd reason.

C:\Documents and Settings\exchange>nslookup ssa.gov
Server:  server.adname.extdomain.org
Address:  192.168.1.156

Non-authoritative answer:
Name:    ssa.gov.extdomain.org
Address:  216.146.35.99

Open in new window


Why would it do that?
0
 
LVL 76

Expert Comment

by:Alan Hardisty
ID: 35209098
Bob,

Please have a read of my article (which hopefully makes sense) and shout if you get stuck anywhere:

http://www.experts-exchange.com/Software/Server_Software/Email_Servers/A_2427-Problems-sending-mail-to-one-or-more-external-domains.html

You need to check you are RFC compliant and that means Reverse DNS, FQDN on your SMTP Virtual Server doesn't end .local - which they often do on Exchange 2003 unless changed manually, you are not blacklisted and the world loves you : )

Alan
0
 
LVL 9

Author Comment

by:Bob Stone
ID: 35209139
OK will do, but it is supposed to be sending all the mail through to DynDNS' SendLab SMTP service, why wouldn't they just go out like everything else?
0
 
LVL 76

Expert Comment

by:Alan Hardisty
ID: 35209166
Are you using an SMTP Connector or just the SmartHost option on the SMTP Virtual Server?

Could be a screwy SMTP Connector causing you headaches.
0
 
LVL 9

Author Comment

by:Bob Stone
ID: 35209173
An SMTP connector configured with authentication.
0
 
LVL 76

Expert Comment

by:Alan Hardisty
ID: 35209184
Might be a good idea to download Metabase Explorer and see what's cooking in your Metabase!

http://support.microsoft.com/kb/840671

You might have an entry in the Metabase causing the problem.
0
Why You Should Analyze Threat Actor TTPs

After years of analyzing threat actor behavior, it’s become clear that at any given time there are specific tactics, techniques, and procedures (TTPs) that are particularly prevalent. By analyzing and understanding these TTPs, you can dramatically enhance your security program.

 
LVL 76

Expert Comment

by:Alan Hardisty
ID: 35209191
Have you tried deleting and creating a new SMTP Connector?
0
 
LVL 9

Author Comment

by:Bob Stone
ID: 35209250
I will try killing the SMTP connector and redoing it. I dunno why I didn't think of that. But first it is break time, I'll let you know in about 15 or so.
0
 
LVL 76

Expert Comment

by:Alan Hardisty
ID: 35209274
:) - Enjoy.
0
 
LVL 9

Author Comment

by:Bob Stone
ID: 35209563
Deleted SMTP connector, added new SMTP connector, and restarted SMTP service. No change :(

It still strikes me as odd that the NSlookup would be fine but it gets stuck and there is no cached lookup in DNS entries, does it need a manual DNS entry or something?
0
 
LVL 76

Expert Comment

by:Alan Hardisty
ID: 35209583
It shouldn't need anything - if the Address Space is * - everything should leave the building.

Did you download Metabase Explorer?
0
 
LVL 9

Author Comment

by:Bob Stone
ID: 35209679
Just did, what am I supposed to be looking for?
0
 
LVL 76

Expert Comment

by:Alan Hardisty
ID: 35209721
Look under:

Server> LM> SmtpSvc> 1> Domain

Anything .gov listed?
0
 
LVL 76

Accepted Solution

by:
Alan Hardisty earned 500 total points
ID: 35209901
Worst case - try creating a new SMTP Connector - scope it just for the .gov domain and send via DNS.  Stop and restart the SMTP Service and see if the messages leave the building.
0
 
LVL 9

Author Closing Comment

by:Bob Stone
ID: 35209997
Worked like charm. Thanks a ton m8 :)
0
 
LVL 9

Author Closing Comment

by:Bob Stone
ID: 35209998
Worked like charm. Thanks a ton m8 :)
0

Featured Post

Top 6 Sources for Identifying Threat Actor TTPs

Understanding your enemy is essential. These six sources will help you identify the most popular threat actor tactics, techniques, and procedures (TTPs).

Join & Write a Comment

Local Continuous Replication is a cost effective and quick way of backing up Exchange server data. The following article describes the steps required to configure Local Continuous Replication. Also, the article tells you how to restore from a backup…
Marketers need statistics and metrics like everybody else needs oxygen. In this article we explain how to enable marketing campaign statistics for Microsoft Exchange mail.
In this video we show how to create a Resource Mailbox in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: Navigate to the Recipients >> Resources tab.: "Recipients" is our default selection …
To show how to generate a certificate request in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.:  First we need to log into the Exchange Admin Center. Navigate to the Servers >> Certificates…

743 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

10 Experts available now in Live!

Get 1:1 Help Now