Learn how to a build a cloud-first strategyRegister Now

x
?
Solved

Exchange 2010 header -- messages being delayed at delivery to remote host

Posted on 2011-05-06
7
Medium Priority
?
1,434 Views
Last Modified: 2012-05-11
Hi,
I've recently migrated from Ex 2003 to Ex 2010. I have two Exchange 2010 servers set up.
Server 1:  EXCHANGE2010
Server2: EXCHANGE2010-2
It's been about two weeks or so since the upgrade (the Ex2003 server is gone and removed) and everything was going well.
Then, a few days ago my users started getting "Diagnostic-Code: smtp;400 4.4.7 Message delayed" for messages they sent to AOL.  Then the problem started happening with Yahoo.com, then excite.com. Now it's happening to about half a dozen domains and counting.
I have tried the usual
* Reverse DNS ptr is set up correctly
* My sending transport server (EXCHANGE2010.mydomain.lcl) is not on any blacklists.

Below is an example of one of the headers that were delayed. The only thing I see here that might be a problem is that the Received: line has the Local AD domain name in it and not the actual external domain name. Could that be the problem? If so, how do I change that without having to rebuild my entire Exchange environment from scratch?
This is an emergency. Thanks for any and all help!



Received: from EXCHANGE2010.mydomain.lcl ([169.254.1.84]) by
EXCHANGE2010-2.mydomain.lcl ([169.254.2.14]) with mapi id
14.01.0270.001; Fri, 6 May 2011 14:07:56 -0400
From: My Name <mkel@mydomain.com>
To: "midid@aol.com" <theswans@aol.com>
Subject: Sending from Outlook Web App on Friday at 2pm
Thread-Topic: Sending from Outlook Web App on Friday at 2pm
Thread-Index: AcwMGIZpj5KOST+8QU6xZuBmc50x0Q==
Date: Fri, 6 May 2011 18:07:56 +0000
Message-ID: <239AF6D6EBE7CC4B8909E1A34D7C41A29FEDE5@EXCHANGE2010.mydomain.lcl>
Accept-Language: en-US
Content-Language: en-US
X-MS-Exchange-Organization-AuthAs: Internal
X-MS-Exchange-Organization-AuthMechanism: 04
X-MS-Exchange-Organization-AuthSource: EXCHANGE2010-2.mydomain.lcl
X-MS-Has-Attach:
X-MS-Exchange-Organization-SCL: -1
0
Comment
Question by:nachtmsk
  • 4
  • 3
7 Comments
 
LVL 76

Expert Comment

by:Alan Hardisty
ID: 35712307
You have your SEND connector Fully Qualified Domain Name incorrectly set as .lcl which is an invalid domain name.  Please correct this to something that resolves in DNS to the IP address of your Exchange server.

Also, please check my article for additional guidance:

http://www.experts-exchange.com/Software/Server_Software/Email_Servers/A_2427-Problems-sending-mail-to-one-or-more-external-domains.html

Alan
0
 
LVL 1

Author Comment

by:nachtmsk
ID: 35713265
Thanks but the send connector has the FQDN set correctly (not the .lcl one). It's always had the correct FQDN set correctly. It was one of the first thing I did.
The RECEIVE connector on the other hand does have the .lcl addresses in it, but those are not able to be changed -- Exchange won't allow it.
0
 
LVL 76

Expert Comment

by:Alan Hardisty
ID: 35713287
Good - the RECEIVE connector is not relevant and doesn't matter.

Have you checked Reverse DNS and that the Reverse DNS name matches your SEND Connector FQDN and that both resolve in DNS back to your fixed IP Address?
0
Problems using Powershell and Active Directory?

Managing Active Directory does not always have to be complicated.  If you are spending more time trying instead of doing, then it's time to look at something else. For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why

 
LVL 1

Accepted Solution

by:
nachtmsk earned 0 total points
ID: 35713329
Just found that I had a whole bunch of messages sitting in the queue of the second exchange server. I never configured the second server with a reverse PTR because I was only using it as an emergency backup. I guess Exchange uses whatever  Hub server it can get it's hands on?

I'm in the middling of getting that PTR record ready for the second server. Question -- I will also need an SSL cert I'm guess. can I use the same cert I have on the first Exchange server?
Or more specifically, can both exchange servers have the same FQDN set up?
Thanks!
0
 
LVL 76

Expert Comment

by:Alan Hardisty
ID: 35713428
What roles do each Exchange 2010 server hold?
0
 
LVL 1

Author Comment

by:nachtmsk
ID: 35713621
Each server holds MB, HT, CAS  
no Edge. No UN.
0
 
LVL 1

Author Closing Comment

by:nachtmsk
ID: 36160846
The problem was that the second HUB server was sending messages out because the first HUB server was part of a DAG. This is default behavior as per Microsoft docs. Once I added in the Reverse PTR for the second server mail started flowing out. Mail was not flowing out because other hosts would not accept mail from a server w/o a PTR set up.
0

Featured Post

Problems using Powershell and Active Directory?

Managing Active Directory does not always have to be complicated.  If you are spending more time trying instead of doing, then it's time to look at something else. For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

If you have come across a situation where you need to find some EDB mailbox recovery techniques, then here you will find the same. In this article, we will take you through three techniques using which you will be able to perform EDB recovery. You …
Transferring FSMO roles is done when an admin wants to split roles between certain Domain Controllers or the Domain Controller holding the Roles has been forcefully demoted using dcpromo / forceremoval
This video demonstrates how to sync Microsoft Exchange Public Folders with smartphones using CodeTwo Exchange Sync and Exchange ActiveSync. To learn more about CodeTwo Exchange Sync and download the free trial, go to: http://www.codetwo.com/excha…
This video shows how to use Hyena, from SystemTools Software, to bulk import 100 user accounts from an external text file. View in 1080p for best video quality.
Suggested Courses

810 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question