Solved

Exchange server 2007 451 error messages ONLY for aol, aim and comcast.

Posted on 2012-03-30
19
777 Views
Last Modified: 2012-04-10
We recently had a new ISP install a new internet line so we got a new WAN ip and info from them as well as a new firewall that they manage. Ever since we changed over on Wednesday we get error 451's when trying to send out to aol, aim and comcast. Why? Nothing has changed on our end and they control the firewall side.

Any help would be great.
0
Comment
Question by:jmahlmann
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
19 Comments
 
LVL 17

Expert Comment

by:WORKS2011
ID: 37789969
you may try this link for comcast problems
0
 
LVL 8

Expert Comment

by:Elmar-H
ID: 37790580
It sounds you have your dns settings not configured for new wan ip?
Please check DNS IP and PTR Records for your Exchange Server
0
 
LVL 3

Expert Comment

by:Padamdeep
ID: 37791056
Could you post the NDR here?

~ Singh
0
Office 365 Training for IT Pros

Learn how to provision tenants, synchronize on-premise Active Directory, implement Single Sign-On, customize Office deployment, and protect your organization with eDiscovery and DLP policies.  Only from Platform Scholar.

 

Author Comment

by:jmahlmann
ID: 37791433
I checked and everything is pointing to the correct new dns ip. I even added an spf record.
0
 
LVL 19

Expert Comment

by:suriyaehnop
ID: 37794898
Please post the NDR
0
 

Author Comment

by:jmahlmann
ID: 37795603
Could this be a firewall issue or dns issue with the new ISP? There is nothing different about our server and it was working fine before the change? The ISP controls the firewall. What can we look for?
0
 
LVL 3

Expert Comment

by:Padamdeep
ID: 37796928
Could you post NDR?

~ Singh
0
 

Author Comment

by:jmahlmann
ID: 37797025
comcast.net      DnsConnectorDelivery      Retry      3      Monday, April 02, 2012 10:44:25 AM      451 4.4.0 Primary target IP address responded with: "554 imta24.westchester.pa.mail.comcast.net comcast 64.19.138.115 Comcast requires that all mail servers must have a PTR record with a valid Reverse DNS entry. Currently your mail server does not fill that requirement. For more information, refer to: http://postmaster.comcast.net/smtp-error-codes.php#554." Attempted failover to alternate host, but that did not succeed. Either there are no alternate hosts, or delivery failed to all alternate hosts.

The ISP has added this to their servers. We shall see if that works.
0
 
LVL 3

Expert Comment

by:Padamdeep
ID: 37797093
so they are clearly talking about PTR record not found.

Do you know your External IP address or addresses which is seen by external domains?

If you are not sure about it then send an email to Domain who is able to receive emails from you and check email header. That will tell you your external IP seen by Remote Domains.

Once you find yor External IP address, look for PTR record OR post your IP here and I can do it for you.

~ Singh
0
 

Author Comment

by:jmahlmann
ID: 37797121
Where do you do it? What am I missing?

Thanks.
0
 
LVL 3

Expert Comment

by:Padamdeep
ID: 37797139
ok. In order to answer your question. I need to ask you one.

Do you send emails to other Domain through a SMART Host or you use DNS to send emails directly from your Exchange Server to remote domains?

~ Singh
0
 

Author Comment

by:jmahlmann
ID: 37797148
dns
0
 
LVL 3

Expert Comment

by:Padamdeep
ID: 37797182
Ok..

1. Open the command prompt on Exchange Server which sends out email to Internet.
2. Type Telnet maila.microsoft.com 25
3. Type Helo abc.com


Perform the above steps here and copy/paste everything from cmd prompt here.

~ Singh
0
 

Author Comment

by:jmahlmann
ID: 37797221
It's going back to my ip. Is there a private way to send the ip?
0
 
LVL 3

Expert Comment

by:Padamdeep
ID: 37797277
ok..You don't have to share the IP address with me.

Go to the following website.

http://www.mxtoolbox.com/ReverseLookup.aspx

Type the IP address that you have got from command prompt and see if it resolves to a Name/FQDN.

~ Singh
0
 

Author Comment

by:jmahlmann
ID: 37797764
This is what I get:
(ipaddress).in-addr.arpa:ptr -monmouth.com: A connection attempt failed because the connected party did not properly respond after a period of time, or established connection failed because connected host has failed to respond
0
 
LVL 3

Expert Comment

by:Padamdeep
ID: 37804007
Since you know your outgoing up now, please check with your ISP to find out if it has a valid ptr or not. If you have multiple outgoing up then all those should be having valid ptr.

Singh
0
 

Accepted Solution

by:
jmahlmann earned 0 total points
ID: 37810738
It was as I thought. The new ISP had to put the ptr on their servers. It had nothing to do with us.
0
 

Author Closing Comment

by:jmahlmann
ID: 37826741
It had to do with the PTR on the ISP side. No one suggested that even thought I said I thought that is what it was. I resolved this last week.
0

Featured Post

Problems using Powershell and Active Directory?

Managing Active Directory does not always have to be complicated.  If you are spending more time trying instead of doing, then it's time to look at something else. For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Learn to move / copy / export exchange contacts to iPhone without using any software. Also see the issues in configuration of exchange with iPhone to migrate contacts.
There are times when we need to generate a report on the inbox rules, where users have set up forwarding externally in their mailbox. In this article, I will be sharing a script I wrote to generate the report in CSV format.
To show how to generate a certificate request in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.:  First we need to log into the Exchange Admin Center. Navigate to the Servers >> Certificates…
This video discusses moving either the default database or any database to a new volume.
Suggested Courses

631 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question