Solved

exchange 2010 IP problem

Posted on 2012-03-30
5
84 Views
Last Modified: 2016-01-07
presently we have two exchange servers 03 and 2010 still having a problem with send connector from the 2010 box. Looks like the default behavior is for the 03 box to send through the 2010 server.
Did start a question on this and did get pointed correctly at the limitations of connectors between the the two servers.The problem remains however,that the sent email has the wrong ip and is being blocked by spam filters.
Existing factors
1) both servers can communicate with no problems
2) outside emails are received by both servers
3) when i create a generic DNS based send connector all send emails from both servers end up in the 2010 queue.
4) sent emails are stamped with the new exchange server and the ip of our firewall
5) I have created a NAT pol in our Sonicwall from the new server to a public IP. Whatismyip at the server returns the correct ip.
6) an A record with published for the new server through our DNS service provider. servername resolves correctly.  Reverse lookup does not.

Why is my outgoing email getting the ip of the firewall and not the ip of the mail server?
Should I publish another MX record for the new mail server while we move mailboxes and retire the old?

Thanks
0
Comment
Question by:fred_lambert
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
5 Comments
 
LVL 46

Accepted Solution

by:
Craig Beck earned 500 total points
ID: 37791531
Ok, the outgoing email is being stamped with the IP address of the firewall because it is sending from the firewall's default IP address.  You have an inbound NAT configured to one IP address, but you are only using the default IP address for outbound.  Also, you need your MX IP address to match your Reverse DNS entry for your mail server.

If you have a range of IP addresses, let's say 213.100.215.1 - 213.100.215.5 just for this example, your firewall would have 213.100.215.6 as its primary IP address.  You have published inbound SMTP on 213.100.215.1 and created an MX record to point to this IP address and you have configured your Reverse DNS entry correctly.

What would happen here is mail would come in to your Exchange server from external clients on 213.100.215.1.  This would not be a problem.  However, when you send mail, your firewall is sending mail with a translated source address of 213.100.215.6.  This would not match your Reverse DNS entry (which will be configured for 213.100.215.1) so external mail servers will reject the mail.

In short you need to create an outbound NAT rule to translate SMTP traffic to 213.100.215.1 instead of 213.100.215.6
0
 

Author Comment

by:fred_lambert
ID: 37791656
Thx.... I did try natting the new exchange server to the old exchange server public IP in the Sonicwall...(used the actual outgoing nat config of the old mail server)... again got the correct public ip   when using WHATISMYIP. outgoing mail still got stamped with the IP of the Sonicwall..  I'm baffled
0
 

Author Comment

by:fred_lambert
ID: 37797501
Found solution in modifying the services associated with the outgoing address object in my Sonicwall. All is well
Thx
0

Featured Post

Online Training Solution

Drastically shorten your training time with WalkMe's advanced online training solution that Guides your trainees to action. Forget about retraining and skyrocket knowledge retention rates.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This article aims to explain the working of CircularLogArchiver. This tool was designed to solve the buildup of log file in cases where systems do not support circular logging or where circular logging is not enabled
As cyber crime continues to grow in both numbers and sophistication, a troubling trend of optimization has emerged over the last year.
In this Micro Video tutorial you will learn the basics about Database Availability Groups and How to configure one using a live Exchange Server Environment. The video tutorial explains the basics of the Exchange server Database Availability grou…
how to add IIS SMTP to handle application/Scanner relays into office 365.
Suggested Courses
Course of the Month6 days, 7 hours left to enroll

636 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question