Solved

Exchange server 2007 451 error messages ONLY for aol, aim and comcast.

Posted on 2012-03-30
19
758 Views
Last Modified: 2012-04-10
We recently had a new ISP install a new internet line so we got a new WAN ip and info from them as well as a new firewall that they manage. Ever since we changed over on Wednesday we get error 451's when trying to send out to aol, aim and comcast. Why? Nothing has changed on our end and they control the firewall side.

Any help would be great.
0
Comment
Question by:jmahlmann
19 Comments
 
LVL 17

Expert Comment

by:WORKS2011
Comment Utility
you may try this link for comcast problems
0
 
LVL 8

Expert Comment

by:Elmar-H
Comment Utility
It sounds you have your dns settings not configured for new wan ip?
Please check DNS IP and PTR Records for your Exchange Server
0
 
LVL 3

Expert Comment

by:Padamdeep
Comment Utility
Could you post the NDR here?

~ Singh
0
 

Author Comment

by:jmahlmann
Comment Utility
I checked and everything is pointing to the correct new dns ip. I even added an spf record.
0
 
LVL 18

Expert Comment

by:suriyaehnop
Comment Utility
Please post the NDR
0
 

Author Comment

by:jmahlmann
Comment Utility
Could this be a firewall issue or dns issue with the new ISP? There is nothing different about our server and it was working fine before the change? The ISP controls the firewall. What can we look for?
0
 
LVL 3

Expert Comment

by:Padamdeep
Comment Utility
Could you post NDR?

~ Singh
0
 

Author Comment

by:jmahlmann
Comment Utility
comcast.net      DnsConnectorDelivery      Retry      3      Monday, April 02, 2012 10:44:25 AM      451 4.4.0 Primary target IP address responded with: "554 imta24.westchester.pa.mail.comcast.net comcast 64.19.138.115 Comcast requires that all mail servers must have a PTR record with a valid Reverse DNS entry. Currently your mail server does not fill that requirement. For more information, refer to: http://postmaster.comcast.net/smtp-error-codes.php#554." Attempted failover to alternate host, but that did not succeed. Either there are no alternate hosts, or delivery failed to all alternate hosts.

The ISP has added this to their servers. We shall see if that works.
0
 
LVL 3

Expert Comment

by:Padamdeep
Comment Utility
so they are clearly talking about PTR record not found.

Do you know your External IP address or addresses which is seen by external domains?

If you are not sure about it then send an email to Domain who is able to receive emails from you and check email header. That will tell you your external IP seen by Remote Domains.

Once you find yor External IP address, look for PTR record OR post your IP here and I can do it for you.

~ Singh
0
Are your corporate email signatures appalling?

Is it scary how unprofessional your email signatures look? Do users create their own terrible designs and give themselves stupid job titles? You can make this a lot easier for yourself by choosing an email signature management solution from Exclaimer today.

 

Author Comment

by:jmahlmann
Comment Utility
Where do you do it? What am I missing?

Thanks.
0
 
LVL 3

Expert Comment

by:Padamdeep
Comment Utility
ok. In order to answer your question. I need to ask you one.

Do you send emails to other Domain through a SMART Host or you use DNS to send emails directly from your Exchange Server to remote domains?

~ Singh
0
 

Author Comment

by:jmahlmann
Comment Utility
dns
0
 
LVL 3

Expert Comment

by:Padamdeep
Comment Utility
Ok..

1. Open the command prompt on Exchange Server which sends out email to Internet.
2. Type Telnet maila.microsoft.com 25
3. Type Helo abc.com


Perform the above steps here and copy/paste everything from cmd prompt here.

~ Singh
0
 

Author Comment

by:jmahlmann
Comment Utility
It's going back to my ip. Is there a private way to send the ip?
0
 
LVL 3

Expert Comment

by:Padamdeep
Comment Utility
ok..You don't have to share the IP address with me.

Go to the following website.

http://www.mxtoolbox.com/ReverseLookup.aspx

Type the IP address that you have got from command prompt and see if it resolves to a Name/FQDN.

~ Singh
0
 

Author Comment

by:jmahlmann
Comment Utility
This is what I get:
(ipaddress).in-addr.arpa:ptr -monmouth.com: A connection attempt failed because the connected party did not properly respond after a period of time, or established connection failed because connected host has failed to respond
0
 
LVL 3

Expert Comment

by:Padamdeep
Comment Utility
Since you know your outgoing up now, please check with your ISP to find out if it has a valid ptr or not. If you have multiple outgoing up then all those should be having valid ptr.

Singh
0
 

Accepted Solution

by:
jmahlmann earned 0 total points
Comment Utility
It was as I thought. The new ISP had to put the ptr on their servers. It had nothing to do with us.
0
 

Author Closing Comment

by:jmahlmann
Comment Utility
It had to do with the PTR on the ISP side. No one suggested that even thought I said I thought that is what it was. I resolved this last week.
0

Featured Post

What Should I Do With This Threat Intelligence?

Are you wondering if you actually need threat intelligence? The answer is yes. We explain the basics for creating useful threat intelligence.

Join & Write a Comment

"Migrate" an SMTP relay receive connector to a new server using info from an old server.
Following basic email etiquette rules will help you write a professional email and achieve a good, lasting impression with your contacts.
In this video we show how to create a Contact in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Recipients >> Contact ta…
In this video we show how to create a mailbox database in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Servers >> Data…

771 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

14 Experts available now in Live!

Get 1:1 Help Now