?
Solved

Email Delayed for all my users

Posted on 2013-05-13
15
Medium Priority
?
407 Views
Last Modified: 2013-05-14
I have 20 email domains on my Exchange Server, and 5 of these email domains are getting delayed email and some are not receiving the email at all. It is confirm that our 3rd party spam firewall is having some issues. Is there away to re point the mail directly to my server? Please advise.
0
Comment
Question by:tomfontanilla
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 9
  • 6
15 Comments
 
LVL 6

Expert Comment

by:BurundiLapp
ID: 39161210
You need to change your DNS settings for these domains so that their MX records point to the external IP address of your SMTP server.  This could take 24 to 48 hours to replicate fully though and then the same to replicate back, you could also experience some strange issues with users trying to send mail to yourselves if your IP changes, they may have trust issues.

If you have any SPF records setup for those domains they will need altering as well.

You will also need to ensure that your SMTP settings are correct on the server so it can accept email for those particular domains from any external IP and not just your ANTI-SPAM providers IP addresses.
0
 

Author Comment

by:tomfontanilla
ID: 39161422
We changes the DNS settings for all domains last night, but we still not getting some of the emails. What do you mean by "SMTP settings are correct on the server"? Isn't all i need to do is to accepts those domain? Please advise.
0
 

Author Comment

by:tomfontanilla
ID: 39161429
Here the result when i check the email address being question.

email.domain.com.inbound10.mxlogic.net. 10 xxx.xx.144.3 smtp
email.domain.com.inbound10.mxlogic.net. 10 xxx.xx.144.2 smtp
email.domain.com.inbound10.mxlogic.net. 10 xxx.xx.145.2 smtp
email.domain.com.inbound10.mxlogic.net. 10 xxx.xx.145.3 smtp
email.domain.com.inbound10.mxlogicmx.net. 10 xxx.xx.145.2 smtp
email.domain.com.inbound10.mxlogicmx.net. 10 xxx.xx.144.2 smtp

Trying to connect to all mailservers:

email.domain.com.inbound10.mxlogic.net. - xxx.xx.144.3 [Successful connect: Got a good response [250 user@email.domain.com ok (RCPTMode: normal/deferred) ]
email.domain.com.inbound10.mxlogic.net. - xxx.xx.144.2 [Successful connect: Got a good response [250 user@email.domain.com ok (RCPTMode: normal/deferred) ]
email.domain.com.inbound10.mxlogic.net. - xxx.xx.145.2 [Successful connect: Got a good response [250 user@email.domain.com ok (RCPTMode: normal/deferred) ]
email.domain.com.inbound10.mxlogic.net. - xxx.xx.145.3 [Successful connect: Got a good response [250 user@email.domain.com ok (RCPTMode: normal/deferred) ]
email.domain.com.inbound10.mxlogicmx.net. - xxx.xx.145.2 [Successful connect: Got a good response [250 user@email.domain.com ok (RCPTMode: normal/deferred) ]
email.domain.com.inbound10.mxlogicmx.net. - xxx.xx.144.2 [Successful connect: Got a good response [250 user@email.domain.com ok (RCPTMode: normal/deferred) ]
0
Learn Veeam advantages over legacy backup

Every day, more and more legacy backup customers switch to Veeam. Technologies designed for the client-server era cannot restore any IT service running in the hybrid cloud within seconds. Learn top Veeam advantages over legacy backup and get Veeam for the price of your renewal

 
LVL 6

Expert Comment

by:BurundiLapp
ID: 39161444
On the SMTP service on your email server it should be setup to only allow IP connections from your ANTI_SPAM people's IP address, this is to ensure that only they can you send you emails once they have checked them for SPAM, all your MX records for all 20 of your domains should have pointed to your ANTI-SPAM provider.

Now that you are bypassing the ANTI-SPAM for 5 of those domains you may find that the only emails you are receiving for the 5 domains are still coming through your ANTI-SPAM provider as your changes last night will not have propogated to all the DNS servers on the internet so quite a few of the people sending you emails will still be sending to your old MX records.

Check the headers of an email you have received very recently on one of the 5 domains and see if the email went directly from the senders email server to yours or if it passed through your ANTI-SPAM providers email servers.

What OS and Email software/SMTP service are you running on your externally facing email server?
0
 

Author Comment

by:tomfontanilla
ID: 39161582
We have Exchange 2007 SP1 running on Windows 2003 64 Bit STD SP2.
0
 
LVL 6

Expert Comment

by:BurundiLapp
ID: 39161665
You will need to review the Receive Connector on the Edge Server (presuming your externally facing exchange server is in fact an Edge server) , if it is configured to allow all connections to relay to your 20 domains then your SMTP configuration is fine, if not you will  possibly have to create a new Receive Connector for those 5 domains and configure it to allow all external connections to relay to those 5  domains.

Did you check the headers of a recent email to one of the 5 affected domains, are emails still going the ...mxlogic.net email servers?
0
 

Author Comment

by:tomfontanilla
ID: 39161712
We don't use  Edge Server at all, even before my time. It's kind of strange that emails are getting delayed after made the changes.
0
 
LVL 6

Expert Comment

by:BurundiLapp
ID: 39161814
If Exchange is being used for incoming and outgoing mail then in the Exchange Managment Console look under 'Server Configuration' then 'Hub transport', click on the name of your externally facing exchange server if you have more than one of them and see what Receive connectors you have configured.  

You should have one with a description that suggests it is for internet traffic.  That will be the one you need to check to see what IP addresses it is configured to allow.
0
 

Author Comment

by:tomfontanilla
ID: 39161976
I see that the receive connector it is configured to all available IPv4 addresses on port 25.
0
 
LVL 6

Expert Comment

by:BurundiLapp
ID: 39162020
That sounds like it can receive from anywhere then.

If you have a machine on another internet connection seperate from the one your send and receive emails on I would try connecting manually to your external email server and try sending an email via telnet.

telnet <your email servers external ip address> 25
helo <the ip you are sending from>
mail from:bob@bob.com
rcpt to:<genuine email address@your_actual_domain.com>
data
Subject: test
test 123
blah blah blah 
.
quit

Open in new window


If that works you can send emails into your system from any external IP address.

Ideally you need to get hold of an error message from a system that can't send to you to see what errors are being produced.
0
 

Author Comment

by:tomfontanilla
ID: 39162466
I will try to find away goet an outside world Internet connection to run telnet. But by the mean time, this is what the sender sent me when they trying to send an email to us.

postini #550 mta inaccessible for too long for domain - psmtp ##
0
 

Author Comment

by:tomfontanilla
ID: 39162792
I just confirmed this that our 3rd party spamfirewall still having a problem. I need to re-point this to my server. How do i accomplish this?
0
 
LVL 6

Accepted Solution

by:
BurundiLapp earned 2000 total points
ID: 39164091
Are talking about the 5 domains or all your domains now?  Is your 3rd party SPAM firewall a device or is it the company formaly known as MXlogic.net?

If your third party is unable to relay your emails from their servers to yours then the only way to bypass them is to change your MX records as you have done for the 5 domains.

The problem doing that is that it takes up to 2 days for DNS records to propogate to DNS servers around the world AND if some servers don't refresh their DNS records that often they could still be using stale DNS records weeks after you have made the change.

I would look at finding a more reliable 3rd party SPAM filtering provider after this, in the 10 years we have been using 3rd parties to filter SPAM we have never had so much as a days outage.
0
 

Author Closing Comment

by:tomfontanilla
ID: 39164332
Excellent response
0
 

Author Comment

by:tomfontanilla
ID: 39164335
Yes its the 5 domain, and yes it is MXlogic.net.
0

Featured Post

Has Powershell sent you back into the Stone Age?

If managing Active Directory using Windows Powershell® is making you feel like you stepped back in time, you are not alone.  For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Are you looking for the options available for exporting EDB files to PST? You may be confused as they are different in different Exchange versions. Here, I will discuss some options available.
This month, Experts Exchange sat down with resident SQL expert, Jim Horn, for an in-depth look into the makings of a successful career in SQL.
In this video we show how to create an email address policy in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.:  First we need to log into the Exchange Admin Center. Navigate to the Mail Flow…
Windows 8 came with a dramatically different user interface known as Metro. Notably missing from that interface was a Start button and Start Menu. Microsoft responded to negative user feedback of the Metro interface, bringing back the Start button a…
Suggested Courses

650 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question