Solved

Installed 2010 Edge Transport and now getting 451 4.4.0 on 2007 Hub Transport

Posted on 2011-09-20
6
592 Views
Last Modified: 2012-05-12
Greetings,

I'm in the middle of an Exchange 2003 / 2007 to 2010 transition.  Mailflow was working between all 3 environments.  I installed an Exchange 2010 Edge Transport server in the DMZ, created a new subscription and applied to internal org via Hub Transport 2010 server.  Test-EdgeSynchronization and Start-Syncrhonization were successful but mail starts queuing up on the Hub transport server with error 451 4.4.0 and 451 5.7.3 Cannot achieve Exchange Server authentication.

Any ideas what may be wrong?
0
Comment
Question by:loudelat
  • 4
  • 2
6 Comments
 
LVL 28

Expert Comment

by:sunnyc7
ID: 36571531
Did you open port 50636 from DMZ to Internal network for Edge Sync ?
Check the port requirements here:
http://technet.microsoft.com/en-us/library/cc526574.aspx

I'd restart AD LDS on Edge Server and give it a shot.

There are some guides here:
http://technet.microsoft.com/en-us/library/bb124896(EXCHG.80).aspx

and this kb
http://support.microsoft.com/kb/976108


0
 

Author Comment

by:loudelat
ID: 36571669
Thanks. Required ports are open. DNS resolution is successful. Restarted services but still not working.
0
 

Accepted Solution

by:
loudelat earned 0 total points
ID: 36575780
Issue resolved. ASA firewall was performing fixup on smtp which was causing mail delivery issues. Disabled fixup and all is well again.
0
Top 6 Sources for Identifying Threat Actor TTPs

Understanding your enemy is essential. These six sources will help you identify the most popular threat actor tactics, techniques, and procedures (TTPs).

 

Author Closing Comment

by:loudelat
ID: 36597790
Resolved by submitter.
0
 

Author Comment

by:loudelat
ID: 36575789
Resolved
0
 
LVL 28

Expert Comment

by:sunnyc7
ID: 36575931
Thanks for updating the ticket with the solution.
0

Featured Post

Shouldn't all users have the same email signature?

You wouldn't let your users design their own business cards, would you? So, why do you let them design their own email signatures? Think of the damage they could be doing to your brand reputation! Choose the easy way to manage set up and add email signatures for all users.

Join & Write a Comment

Resolve DNS query failed errors for Exchange
This article explains in simple steps how to renew expiring Exchange Server Internal Transport Certificate.
To show how to create a transport rule in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Mail Flow >> Rules tab.:  To cr…
To add imagery to an HTML email signature, you have two options available to you. You can either add a logo/image by embedding it directly into the signature or hosting it externally and linking to it. The vast majority of email clients display l…

744 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

12 Experts available now in Live!

Get 1:1 Help Now