Link to home
Create AccountLog in
Avatar of Lumious
LumiousFlag for United States of America

asked on

How to Create Exchange Server 2010 MX Records - GoDaddy Configs - Webmail Configs

Hi,

We have registered our domain with GoDaddy.com (lets say www.example.com).  We created a domain server (example.local) and exchange server.  I can send emails to outside the domain email accounts but I can’t receive emails from outside the domain.  I am able to send an email to internet email addresses like gmail but I am not able to send email to some outside (lets say @comcast.net, @test.com, etc…).  I’m thinking I have to creat an A and MX record of some sort in GoDaddy.com to point to local domain?

I’m also having an issue in webmail for my exchange.  I can access webmail locally on network (lets say https://webmail.example.local/owa).  But when it comes to trying to access it on the outside network it doesn’t load correctly.  I want users to be able to type in https://webmail.example.com or https://webmail.example.com/owa (not sure which one it would have to be) on the outside network and be able to sign into their email accounts.

In the exchange server it shows this as the following for OWA:

Internal URL:

https://LTS01-EXAMPLE-001.example.local/owa

External URL:

https://webmail.example.com/owa

I believe everything is set up correctly on the exchange server because I had this working before.  All the DNS settings in GoDaddy got reset and I wasn’t the one initially who set everything up.  

Scenario:

Your outside IP address is 24.25.26.27
Your internal IP address of your exchange server is 10.5.1.144
Your internal domain is example.local
Your email domain is example.com
IP Address Type: Dynamic NOT Static

Right now the example.com domain is registered with GoDaddy.com and has the Free Website builder applied to it.  So when you go to the website it says “Coming Soon”.  So in the DNS Manager, there is already an “A” Record of “@” pointing to whatever IP address they assigned to the website.  It’s fine that GoDaddy is hosting the website on their end but I’m hosting the exchange servers and I don’t want to use GoDaddy’s email.

GoDaddy’s DNS Configs:

User generated image
Also another thing I forgot to mention is that I have DynDNS set up on the server that is running the exchange server just in case the Dynamic IP changes, that won't matter.

DynDNS:

example.dyndns-server.com

If anyone could assist me in getting this up and running I would greatly appreciate it.  If we have to go step-by-step for the configurations that's perfectly fine.  I'm available to respond basically all day and will get back to you as soon as I can.  Whatever information is needed I can provide.

Thanks and good luck in solving this one!
Avatar of Dhananjay
Dhananjay
Flag of India image

You set the receive connector to allow Anonymous.
 
Create a send connector
http://technet.microsoft.com/en-us/library/bb201724.aspx
 
Create a MX record on your ISP side
Avatar of Lumious

ASKER

Hi,

Receive Connector Information:

Client Connector:

User generated image
Client Connector Properties:

User generated image
Default Connector:

User generated image
Default Connector Properties:

User generated image
Internal Relay Connector:

User generated image
Internal Relay Connector Properties:

User generated image
First lets distinguish if these settings are correct, then we can move on from there.

Please advise.

Thanks
Avatar of Joseph_Barron
Joseph_Barron

I assume all your ports are going through the firewall to the server or you have rules allowing them to pass to the server for 80, 443, 24, etc.

Secondly, you may want to setup a reverse DNS lookup with Godaddy.com.

Also check to make sure the IP address that you have for your server is NOT on a block list for some odd reason.

I would also highly recommend that you get a Certificate with Godaddy.com and install it as well.
Avatar of Lumious

ASKER

Hi,

Send Connector Information:

External Connector:

User generated image
External Connector Properties: General

User generated image
External Connector Properties: Address Space

User generated image
External Connector Properties: Network

User generated image
External Connector Properties: Source Server

User generated image
Second, lets distinguish if these settings are correct, then we can move on from there.

Please advise.

Thanks
Avatar of Lumious

ASKER

Hi,

Question 1:
I assume all your ports are going through the firewall to the server or you have rules allowing them to pass to the server for 80, 443, 24, etc.

Answer 1:
I have a SonicWALL that has rules set up to allow the specific ports to that specific server.

SonicWALL Config:

User generated image
Question 2:
Secondly, you may want to setup a reverse DNS lookup with Godaddy.com.

Answer 2:
I'm not entirely sure how this is done.  If someone would like to explain in detail I would greatly appreciate it.

Question 3:
Also check to make sure the IP address that you have for your server is NOT on a block list for some odd reason.

Answer 3:
I don't believe it's on a block list anywhere.  If it was, where would I start for that or who would I contact?

Question 4:
I would also highly recommend that you get a Certificate with Godaddy.com and install it as well.

Answer 4:
This can be done later on since this won't effect email flow for right now.

Thanks
Avatar of Lumious

ASKER

Hi,

To: djsharma

You mentioned to create an MX Record on my ISP side.

Could you explain this in a little more detail with the settings?  I'm guessing if I do this, it would be on my Domain Controller?  If so, when adding the MX Record, could you provide an example of what I would add in whatever sections I would have to enter information in at?

Thanks
Question 1:

Your missing HTTPS from the list. That is port 443 and is used by OWA.

Question 2:
You need to contact Godaddy support and they will set that up for you. That will stop some blocking of outbound email by spam filters.

Question 3:
Go to this site and check your IP.

http://www.mxtoolbox.com/blacklists.aspx?AG=GBL&gclid=CN_emcORyrMCFQWnnQodbR8AIw

Also you can register that Address (1) for free and have it email you if it ever gets blocked.

Question 4:
It just makes working with Outlook Anywere, OWA and mobile devices easier.
Avatar of Lumious

ASKER

Hi,

I've added HTTPS (443) to the Service Group that I showed earlier as well as Port 24.

User generated image
I've checked my IP address at that website you provied and it shows Blacklisted in some areas.

User generated image
The IP Address that I put in there was the Dynamic Pubic IP that the ISP has provided me.  If this is a concern with the blacklisted items, how do I go about correcting this?

GoDaddy's Configs:

User generated image
As you can see by the configurations in GoDaddy DNS there is already an "A" record for "@" which points to the IP Address GoDaddy gave for the Domain.com.  There is a "CNAME" Record for "www" that points to "@".  

Yesterday GoDaddy suggested that I add the following:

"A" Record of "webmail" pointing to the Dynamic Public IP Address of my ISP
"MX" Record of Host "webmail" Priority "5" Pointing to "webmail.domain.com"

For this my question is:

- Is this set up correctly or not?
- Before I contact GoDaddy to ask about the Reverse DNS, I would like to make sure everything is set up correctly in the configurations and I would like to know exactly what I would say to GoDaddy so that it is configured against the correct thing.

I've also just noticed that I can send email to "gmail" accounts and they receive them but I can't receive any email from "gmail" accounts.  Also when navigating to "webmail.domain.com internally on the network, I get the correct webmail page.  But when I try to navigate to webmail.domain.com externally on outside network, I get the Home Page to my SonicWALL?

Any throughts?  I know there are a lot of issues right here but if we can work through them step-by-step I would greatly appreciate it.

Please Advise.

Thanks,
OK, now I'm confused.

Question: Do you have a Static IP Address(es) for your server?

You mentioned Dynamic IP addresses, which you NEVER want to have your DNS records pointing to.

Secondly, inbound email will be blocked by some ISPs if you do not have a business account and/or a static IP address. Comcast does that on my office and is one of the reasons I moved to Google Apps.

Joe
Avatar of Lumious

ASKER

Hi,

- I do not have a Static IP.  I have the Dynamic IP of: 24.25.26.27 (example) from Comcast.  The Exchange Server has an IP of 10.5.1.144 (example) and has DynDNS client on it running.  DynDNS is set up to: "example.dyndns-server.com".  DynDNS makes it so that if my Dynamic IP Address changes, it won't matter, because it updates with it so it always stays connected.  I was under the impression that this can be used for people who have Dynamic instead of Static.

Please Advise.

Thanks
I have exactly the same configuration. Dynamic IP, with Comcast and DynDNS running on it. I use that server now for remote access to the VMWare Workstaion used for development.

But originally I was running my SBS 2003 server on that circuit. Then Comcast turned off SMTP for all but Business Class customers. That stopped my Internet Email from flowing to my server. It was up and down, worked some times, didn't work others.

Recommend you get a static IP or 3 from Comcast, switch to business class service (if your not already). You can then get rid of DynDNS
You need to test your SMTP setup. Use

http://mxtoolbox.com/

Enter your IP address or internet domain.

Click Test SMTP or SMTP Diag button or link to test.

Post results.
Avatar of Lumious

ASKER

I will be offline for 45 min. I will reply back with all information. Getting some lunch.

I'm open to any suggestions on how to get this up and running. I will see if we can purchase some static ip's as well but aren't they usually on the expensive side? If we can get this to work with the Dynamic IP that would be great but if not that's ok. We then could look into another method. Also thank you all for continuing to assist me through this issue.

Thanks
Do you have Comcast Business Class service?

If not, and my thought is that you do not, then you may be dead in the water until you switch to business class service. If Comcast is like my Comcast, they purposefully block SMTP traffic on non-business class customer. You cannot host your email server and receive email without Business class service.

Good thing is that its not much more expensive. Bad thing is, it is not as fast.

http://customer.comcast.com/help-and-support/internet/email-port-25-no-longer-supported/

Good luck.
Avatar of Lumious

ASKER

Are we still going to continue working on this or are we basically done until if I decide to get static ip's?

Thanks
Its not about static IPs as much as it is about the type of service you have with Comcast.

Do you have Comcast Business Class service or a consumer / home product?

If you have Comcast Business Class, then most likely the problem lies in your configuration. If you don't, then you may be banging your head against the wall, in other words, Comcasts firewall and may NEVER get SMTP traffic to your server.

As I recommended before, you need to test your SMTP connectivity from outside to see if packets are being blocked or getting through. This site has a great tool for diagnosing the connectivity.

http://mxtoolbox.com/

Enter your IP address or internet domain.

Click Test SMTP or SMTP Diag button or link to test.

Post the results. Some things will work and other will fail. They all don't have to work to get email through.

But if it fails and you don't have Comcast Business Class, then likely you need to get that and I recommend static IPs to simplify your configuration.
BTW, the blocks on the IP address you entered in mytoolbox, that showed the IP address was blacklisted is likely the cause for why outbound email is NOT getting to some Recipients.

It is NOT the cause for the inbound issue.
Avatar of Lumious

ASKER

Hi,

See GoDaddy Configs:

User generated image
With those configs in GoDaddy the following results from putting in my Internet Domain (example.com) that I have registered with GoDaddy to the site you provided and clicking SMTP Test.

User generated image
Thanks
Avatar of Lumious

ASKER

Hi,

I have:

Comcast Consumer/Home Product

NOT Business Class

Thanks
That is what I was afraid of. I think it is very likely that it simply is NOT going to work. Comcast has specifically blocked SMTP traffic on the Consumer/Home products.

I ran into the same problem.
Avatar of Lumious

ASKER

Hi,

Ok so since they are blocking SMTP is there any other way to get around this that you know of?  For the GoDaddy records, couldn't I use the DynDNS entry instead of using the Dynamic IP or something like that?

If not, no worries.  Please let me know the alternative that I would have to go down in order to get this to work.  I believe you mentioned switching to Comcast Business Class and purchasing 3 Static IP's.  Just please verify what I potentially would do.  Then I will look into that later on.

Thanks again for all your help.

Please let me know when you get a chance.

Thanks
ASKER CERTIFIED SOLUTION
Avatar of Joseph_Barron
Joseph_Barron

Link to home
membership
Create an account to see this answer
Signing up is free. No credit card required.
Create Account
Avatar of Lumious

ASKER

Thank you for assisting me with this issue and providing great alternatives.

Keep up the good work!
Good luck with your configuration.
Thanks for the points.
Avatar of Lumious

ASKER

Hi,

Ok this is going to blow your mind everyone.  With the following configurations below, I'm able to:

- Send email internal to internal
- Send email internal to external (to comcast, gmail, etc...)
- Receive email internal to internal
- Receive email external to internal (from comcast, gmail, etc...)

The only issue is that when I try to go to webmail.domain.com it takes me right to my SonicWALL login interface.  Below you will see what I added in my exchange, what is running specifically on my exchange, and the new configurations in GoDaddy.

GoDaddy Configs:

User generated image
Exchange Server Additional Changes:

User generated image
DynDNS is currently running on the Exchange Server:

User generated image
SonicWALL DynDNS Entry:

User generated image
If someone could explain why this is working now for email I would greatly appreciate it.

I also need assistance on correcting the webmail issue.  When you go to Webmail.Domain.com it takes you to the SonicWALL Login interface.  This is incorrect obviously.

Here are the configs for OWA:

User generated image
Please let me know when you have a chance.

Thanks
I'm not seeing any of the images.
Avatar of Lumious

ASKER

Hi,

Additional points will be rewarded whether we have to start up another question.

Thanks,
Avatar of Lumious

ASKER

Hi,

Yes sorry about the images.  I just re-edited the post and uploaded them again.  Please let me know if you still can't see the images.  Refresh your screen as well.

Thanks,
It looks like you are sending email through another outside SMTP server. I guess that would work, If you have the email accounts available on that server.

Issues you might have are distribution email accounts and or multiple domains that you need to have go to the same account in Exchange. I have a client that has the firm.com email and the association.com email address for all staff. They also like to have first@domain.com, first.last@domain.com and last@domain.com aliases. This can easily be handled when the mail flow from the external source, but having the SMTP server in exchange manage the transport.

I still recommend simply getting the Business Class Service with Comcast, getting a set of 3 IP address (one for your exchange server and one for VPN services, etc). The last is for testing outside connectivity.

It is just easier to troubleshoot email issues, when there are less moving parts.

I recommend you post another experts exchange ASK request with your specific Webmail issues.
Avatar of Lumious

ASKER

Hi,

Thank you for getting back to me so quickly.  I've opened up another question in regards to my webmail issue.

https://www.experts-exchange.com/questions/27936094/Exchange-Server-2010-Webmail-Issues.html

Thanks