Want to win a PS4? Go Premium and enter to win our High-Tech Treats giveaway. Enter to Win

x
?
Solved

My exchange 2007 server HUB is blacklisted

Posted on 2012-03-16
10
Medium Priority
?
381 Views
Last Modified: 2012-04-05
Hi,

I have 2 hub server in my exchange organisation.

I have configure 1 send connector in evry hub server to send email to Internet.

This send connector us DNS MX to route email.

I have configure a EHLO fqdn, this fqdn point to public adress used in my firewall.

i have only open smtp port 25 outgoing from my hub server.

Are this configuration is correct?

because now i am blacklisted in ips.backscatterer.org and i have 3 email domain refuse my email en send to my user reject message like this:

554 5.7.1 <n.commail@domai>: Relay access denied,

what i can do to resolve the problem??

thanks
0
Comment
Question by:cawasaki
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 7
  • 3
10 Comments
 
LVL 17

Accepted Solution

by:
Suraj earned 2000 total points
ID: 37733203
The set up is correct.

first find out whats the connecting Ip of the problem server which is used to send mails out [black listed one]

- here is how you find

telnet maila.microsoft.com 25
ehlo

after ehlo it will also give you an ip address. [note it, thats the outbound ip used]

Go to mxtoolbox.com and put in that ip in black list - it will tell you which all RBL have blocked you.

- now to resolve the issue or find out why the hub got black listed do this :
1. do you have any relay connector?
2 check queue viewer to see if there is any spams showing
3. take one of the message id of it and do message tracking - check from where is it coming? smtp submission or store?

let me know
monitor the queue
0
 

Author Comment

by:cawasaki
ID: 37737018
Hi xsam,

I have many receive connector, one of them is open relay, i have add many IP adress to authorize them to send email. Its for printers, and many other applications, it user this smtp connector to send email without authentification.

may be when this email pass to internet in my send connector, it keep a trace of internal open relay?

thanks
0
 
LVL 17

Expert Comment

by:Suraj
ID: 37738876
Yes. so lets disable the relay connector and monitor.
0
What is SQL Server and how does it work?

The purpose of this paper is to provide you background on SQL Server. It’s your self-study guide for learning fundamentals. It includes both the history of SQL and its technical basics. Concepts and definitions will form the solid foundation of your future DBA expertise.

 

Author Comment

by:cawasaki
ID: 37739095
i cannot disable it because have many application use it.

it is possible to change this connector to accept only internal email relay and not rely to internet?

thanks
0
 
LVL 17

Expert Comment

by:Suraj
ID: 37740647
Changing your connecting ip would resolve the issue but you need to find out why you were rejected.
0
 

Author Comment

by:cawasaki
ID: 37741314
I need to understand.

the open relay conenctor is a receive conenctor for fiew servers with IP autorisation.

if one of this server send email to internet, it pass first in this receive connector, after that it pass by my send connector to internet.

but, here its my users with authentification receive connector is receive access denied from this domain.

554 5.7.1 <>: Relay access denied
0
 

Author Comment

by:cawasaki
ID: 37741411
Hi,

ok i see in my smtp queue many spam with source IP 255.255.255.255 and without from adress!
0
 

Author Comment

by:cawasaki
ID: 37741445
I have check message tracking, the sender is my postmater adress!
0
 

Author Comment

by:cawasaki
ID: 37741501
Ok, if i have spam in my hub server, the reason is my incomin email antispam not do good job.

postmaster is configured to allow non-deliveyr reports==> SO i send spam!
0
 

Author Closing Comment

by:cawasaki
ID: 37810679
Thanks
0

Featured Post

[Webinar] Lessons on Recovering from Petya

Skyport is working hard to help customers recover from recent attacks, like the Petya worm. This work has brought to light some important lessons. New malware attacks like this can take down your entire environment. Learn from others mistakes on how to prevent Petya like worms.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

A couple of months ago we ran into an issue that necessitated re-creating our Edge Subscriptions. However, when we attempted to execute the command: New-EdgeSubscription -filename C:\NewEdgeSub_01.xml we received an error indicating that the LDAP se…
On September 18, Experts Exchange launched the first installment of the Help Bell, a new feature for Premium Members, Team Accounts, and Qualified Experts. The Help Bell will serve as an additional tool to help teams increase question visibility.
The video tutorial explains the basics of the Exchange server Database Availability groups. The components of this video include: 1. Automatic Failover 2. Failover Clustering 3. Active Manager
The basic steps you have just learned will be implemented in this video. The basic steps are shown to configure an Exchange DAG in a live working Exchange Server Environment and manage the same (Exchange Server 2010 Software is used in a Windows Ser…

610 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question