Solved

Exchange 2007 - can't email 1 domain (army.mil)

Posted on 2011-09-30
11
471 Views
Last Modified: 2012-05-12
I'm trying to figure out why I can't email a few folks at various army.mil addresses.   some are at usarec.army.mil and some are at us.army.mil, etc.    I can email marines, navy, army corps of engineers and even secretary of defense addresses.  But for some reason, I can't send anything to the army.

gmail works fine, just from my exchange 2007 server, I have issues.  And only with the army.mil server.

I checked mxtoolbox.com and my server isn't listed.

I get a delay after 4 hours, then a failure the next day.  

I'm thinking it's a dns issue?
0
Comment
Question by:james3760
11 Comments
 
LVL 37

Expert Comment

by:Neil Russell
Comment Utility
You would need to post the contents of your failure message to know anymore really
0
 
LVL 15

Expert Comment

by:Jaroslav Mraz
Comment Utility
It coud be DNS problem. But gmail dont using lots of security technologies. Are you using SPF or another feature? Have you set dns record to your comapny? Do you using static IP?
0
 

Author Comment

by:james3760
Comment Utility
Delivery has failed to these recipients or distribution lists:

William Bledsoe ((removedforprivay)@us.army.mil)
Microsoft Exchange has been trying to deliver this message without success and has stopped trying. Please try sending this message again, or provide the following diagnostic text to your system administrator.

  _____  

Sent by Microsoft Exchange Server 2007







Diagnostic information for administrators:

Generating server: mail.wcsecurity.com

(removedforprivacy)@us.army.mil
#550 4.4.7 QUEUE.Expired; message expired ##

Original message headers:

Received: from mail.wcsecurity.com ([10.17.194.54]) by mail.wcsecurity.com
 ([10.17.194.54]) with mapi; Wed, 21 Sep 2011 14:24:45 -0700
From: "James D. Brown" <james@wcsecurity.com>
To: "removed(removed@us.army.mil)" <removed@us.army.mil>
Date: Wed, 21 Sep 2011 14:24:33 -0700
Subject: Gross Paniagua
Thread-Topic: Gross Paniagua
Thread-Index: Acx4pNteO+pOnTQORta4aGQRrWBM+w==
Message-ID: <FB123A6A5B658A4F8040AD016B9FD1D5021DEB1F7825@mail.wcsecurity.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach: yes
X-MS-TNEF-Correlator:
acceptlanguage: en-US
Content-Type: multipart/related;
      boundary="_004_FB123A6A5B658A4F8040AD016B9FD1D5021DEB1F7825mailwcsecur_";
      type="multipart/alternative"
MIME-Version: 1.0

0
 
LVL 12

Expert Comment

by:Deepu Chowdary
Comment Utility
As mentioned post the failuremessage here and also send the mail to army from other user in ur domain and see he is also getting the same result or not.
If he didnt get then the issue is with ur mailbox and if he gets the same error the issue will be DNS or some thing else..
0
 

Author Comment

by:james3760
Comment Utility
Failure message posted above yours.  I'll try from another mailbox right now.

0
Are your corporate email signatures appalling?

Is it scary how unprofessional your email signatures look? Do users create their own terrible designs and give themselves stupid job titles? You can make this a lot easier for yourself by choosing an email signature management solution from Exclaimer today.

 

Author Comment

by:james3760
Comment Utility
Here is a cut/paste from queue:

Identity: mail\93116\263227
Subject: This is a Test....
Internet Message ID: <FB123A6A5B658A4F8040AD016B9FD1D5021DEB1F7A23@mail.wcsecurity.com>
From Address: carolina@wcsecurity.com
Status: Retry
Size (KB): 27
Message Source Name: FromLocal
Source IP: 255.255.255.255
SCL: -1
Date Received: 9/30/2011 10:23:49 AM
Expiration Time: 10/1/2011 10:23:49 AM
Last Error: 451 #4.1.3 Domain of sender address <carolina@wcsecurity.com> does not exist
Queue ID: mail\93116
Recipients:  removed@usarec.army.mil
0
 
LVL 15

Expert Comment

by:Jaroslav Mraz
Comment Utility
So server cant reach it self from internet.
0
 

Author Comment

by:james3760
Comment Utility
I've tried changing the address space in the send connectors.. no luck there.  What's strange is that this is the only domain that I can't send to...  
0
 
LVL 21

Expert Comment

by:Papertrip
Comment Utility
Hi James,

Are you able to provide full headers from one of the mails sent through the same flow that are being delivered successfully?  Sanitized as needed of course, but try to not mangle it too much.  Basically I'm looking for envelope and body from, return-path, sending server IP, any auth results as reported by the receiving server, and anything else that seems abnormal.  How your mail is treated is completely dependent upon the receiving servers' policies, which is why you are seeing inconsistent results while sending to/from other addresses/domains.

I don't know the public IP and/or hostname of your sending server(s) so I can't check DNS for that.  I can assume it's mail.wcsecurity.com but that is just a guess.  There is no SPF record for wcsecurity.com which could also be a contributing factor.
0
 

Accepted Solution

by:
james3760 earned 0 total points
Comment Utility
I got it figured out.  I have a dns service that the Army considered a ghost service, and therefore they were rejecting it, thinking my domain didn't exist.  Basically I have an account at dns2go  so that if I have to spin a server real quick I don't have to wait for propagation.  All I'm using dns2go to do is point to the actual router/machine and all of my domains are with their servers for dns.  So propogation is always in place already and I just change the pointer in a few seconds if needed.... well, the army didn't like that.  I moved that domain to network solutions for dns and it's all good now.    
0
 

Author Closing Comment

by:james3760
Comment Utility
My hunch that it was a dns issue was correct.  After a few hours of testing and moving the dns server to another service, all is good.
0

Featured Post

Find Ransomware Secrets With All-Source Analysis

Ransomware has become a major concern for organizations; its prevalence has grown due to past successes achieved by threat actors. While each ransomware variant is different, we’ve seen some common tactics and trends used among the authors of the malware.

Join & Write a Comment

We are happy to announce a brand new addition to our line of acclaimed email signature management products – CodeTwo Email Signatures for Office 365.
Learn to move / copy / export exchange contacts to iPhone without using any software. Also see the issues in configuration of exchange with iPhone to migrate contacts.
In this video we show how to create a Distribution Group in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Recipients >>…
In this video we show how to create an Address List in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Organization >> Ad…

771 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

12 Experts available now in Live!

Get 1:1 Help Now