Solved

Emails Rejected

Posted on 2012-04-06
8
738 Views
Last Modified: 2012-04-06
We recently had a new Firewall / Router installed by a third party company who mishandled the project and was fired. Now we are left to clean up their mess. The last of the issues to be cleaned up is:

A small portion of outgoing (SMTP) email traffic is being rejected by the the recipient. The delivery failure message references our router's internal IP Address (as opposed to our external IP Address of our DNS Host), as well as the Computer Name of the sender.

Any help on the matter would be great, as we cannot figure this out. Thanks1
0
Comment
Question by:fieldb1
8 Comments
 
LVL 7

Expert Comment

by:BelushiLomax
ID: 37816314
Is it always the same user?
when you do nslookups on your email external a records and mx records, what do they return?
0
 
LVL 11

Expert Comment

by:Khandakar Ashfaqur Rahman
ID: 37816330
There might have several reasons for delivery failure.One of the common reason is blacklisting.However, you need post delivery failure message.
0
 

Author Comment

by:fieldb1
ID: 37816783
Yes, it's strange because we are getting some delivery failures stating that we are blacklisted. But the fact that others report the internal IP of the router makes me think that that's the problem and the other servers throwing it back with that error.

On a side note, there is always the possibility of having been hacked and used for spamming. We have been requesting to be removed from blacklists. Microsoft (Hotmail) removed us and email are going through; on the other had AT&T reports blocked for abuse as well, but repeated requests to them have not allowed our emails to go through.

Here is the top portion of the delivery failure message:

Could not deliver message to the following recipient(s):

Failed Recipient: support@windward.net
Reason: Remote host said: 601 Attempted to send the message to the following ip's:
      208.65.144.13, 208.65.145.12, 208.65.144.12

   -- The header and top 20 lines of the message follows --

Received: from ImyComputerName(UnknownHost [192.168.0.254]) by SwaffordTransport.com with SMTP;
0
Use Case: Protecting a Hybrid Cloud Infrastructure

Microsoft Azure is rapidly becoming the norm in dynamic IT environments. This document describes the challenges that organizations face when protecting data in a hybrid cloud IT environment and presents a use case to demonstrate how Acronis Backup protects all data.

 
LVL 13

Expert Comment

by:Sandy
ID: 37816899
Please provide message headers and even you can also read out the reason behind it. I think the error was relay access denied.
0
 
LVL 11

Accepted Solution

by:
Khandakar Ashfaqur Rahman earned 500 total points
ID: 37816908
If your IP is blacklisted, at first you need to scan your Local net with updated anti-virus.Then you have to request for delisting.
It'll show unknown host if you don't have associated PTR record.

All of your LAN computer should send email through your SMTP server.When some of your LAN computers are infected with virus then those computers generate spams.These spams don't pass through your SMTP but hit directly to destination Mail server.

Let's consider:
192.168.0.0/24 is your LAN Net
192.168.0.1 is your gateway and firewall
192.168.0.2 is your mail server.

You simply need to configure firewall into your router
Source:Mail server    Destination:Any   Source Port:Any  Destination port:25    Action:Allow
Source:Any                Destination :Any  Source Port:Any  Destination Port:25    Action:Deny

Use updated anti-virus for your mail server.Also request your ISP to set PTR record against your routers public IP
Otherwise it'll be blacklisted again.
0
 

Author Comment

by:fieldb1
ID: 37816977
To Belushi:

No, it could be any user.
0
 

Author Comment

by:fieldb1
ID: 37817008
To Rigan:

The PTR seems to be the problem. We have spoken with our ISP (Charter) and our Mail Service Provider (Smarter Mail). Neither of them have been able to help us solve the issue.
0
 
LVL 11

Expert Comment

by:Khandakar Ashfaqur Rahman
ID: 37817083
So many mail servers like AOL won't accept email from your server if you don't have PTR record.
0

Featured Post

Microsoft Certification Exam 74-409

Veeam® is happy to provide the Microsoft community with a study guide prepared by MVP and MCT, Orin Thomas. This guide will take you through each of the exam objectives, helping you to prepare for and pass the examination.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Are you one of those front-line IT Service Desk staff fielding calls, replying to emails, all-the-while working to resolve end-user technological nightmares? I am! That's why I have put together this brief overview of tools and techniques I use in o…
Resolve Outlook connectivity issues after moving mailbox to new Exchange 2016 server
In this Micro Video tutorial you will learn the basics about Database Availability Groups and How to configure one using a live Exchange Server Environment. The video tutorial explains the basics of the Exchange server Database Availability grou…
Nobody understands Phishing better than an anti-spam company. That’s why we are providing Phishing Awareness Training to our customers. According to a report by Verizon, only 3% of targeted users report malicious emails to management. With compan…

809 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question