Solved

Email Delayed for all my users

Posted on 2013-05-13
15
389 Views
Last Modified: 2013-05-14
I have 20 email domains on my Exchange Server, and 5 of these email domains are getting delayed email and some are not receiving the email at all. It is confirm that our 3rd party spam firewall is having some issues. Is there away to re point the mail directly to my server? Please advise.
0
Comment
Question by:tomfontanilla
  • 9
  • 6
15 Comments
 
LVL 6

Expert Comment

by:BurundiLapp
ID: 39161210
You need to change your DNS settings for these domains so that their MX records point to the external IP address of your SMTP server.  This could take 24 to 48 hours to replicate fully though and then the same to replicate back, you could also experience some strange issues with users trying to send mail to yourselves if your IP changes, they may have trust issues.

If you have any SPF records setup for those domains they will need altering as well.

You will also need to ensure that your SMTP settings are correct on the server so it can accept email for those particular domains from any external IP and not just your ANTI-SPAM providers IP addresses.
0
 

Author Comment

by:tomfontanilla
ID: 39161422
We changes the DNS settings for all domains last night, but we still not getting some of the emails. What do you mean by "SMTP settings are correct on the server"? Isn't all i need to do is to accepts those domain? Please advise.
0
 

Author Comment

by:tomfontanilla
ID: 39161429
Here the result when i check the email address being question.

email.domain.com.inbound10.mxlogic.net. 10 xxx.xx.144.3 smtp
email.domain.com.inbound10.mxlogic.net. 10 xxx.xx.144.2 smtp
email.domain.com.inbound10.mxlogic.net. 10 xxx.xx.145.2 smtp
email.domain.com.inbound10.mxlogic.net. 10 xxx.xx.145.3 smtp
email.domain.com.inbound10.mxlogicmx.net. 10 xxx.xx.145.2 smtp
email.domain.com.inbound10.mxlogicmx.net. 10 xxx.xx.144.2 smtp

Trying to connect to all mailservers:

email.domain.com.inbound10.mxlogic.net. - xxx.xx.144.3 [Successful connect: Got a good response [250 user@email.domain.com ok (RCPTMode: normal/deferred) ]
email.domain.com.inbound10.mxlogic.net. - xxx.xx.144.2 [Successful connect: Got a good response [250 user@email.domain.com ok (RCPTMode: normal/deferred) ]
email.domain.com.inbound10.mxlogic.net. - xxx.xx.145.2 [Successful connect: Got a good response [250 user@email.domain.com ok (RCPTMode: normal/deferred) ]
email.domain.com.inbound10.mxlogic.net. - xxx.xx.145.3 [Successful connect: Got a good response [250 user@email.domain.com ok (RCPTMode: normal/deferred) ]
email.domain.com.inbound10.mxlogicmx.net. - xxx.xx.145.2 [Successful connect: Got a good response [250 user@email.domain.com ok (RCPTMode: normal/deferred) ]
email.domain.com.inbound10.mxlogicmx.net. - xxx.xx.144.2 [Successful connect: Got a good response [250 user@email.domain.com ok (RCPTMode: normal/deferred) ]
0
 
LVL 6

Expert Comment

by:BurundiLapp
ID: 39161444
On the SMTP service on your email server it should be setup to only allow IP connections from your ANTI_SPAM people's IP address, this is to ensure that only they can you send you emails once they have checked them for SPAM, all your MX records for all 20 of your domains should have pointed to your ANTI-SPAM provider.

Now that you are bypassing the ANTI-SPAM for 5 of those domains you may find that the only emails you are receiving for the 5 domains are still coming through your ANTI-SPAM provider as your changes last night will not have propogated to all the DNS servers on the internet so quite a few of the people sending you emails will still be sending to your old MX records.

Check the headers of an email you have received very recently on one of the 5 domains and see if the email went directly from the senders email server to yours or if it passed through your ANTI-SPAM providers email servers.

What OS and Email software/SMTP service are you running on your externally facing email server?
0
 

Author Comment

by:tomfontanilla
ID: 39161582
We have Exchange 2007 SP1 running on Windows 2003 64 Bit STD SP2.
0
 
LVL 6

Expert Comment

by:BurundiLapp
ID: 39161665
You will need to review the Receive Connector on the Edge Server (presuming your externally facing exchange server is in fact an Edge server) , if it is configured to allow all connections to relay to your 20 domains then your SMTP configuration is fine, if not you will  possibly have to create a new Receive Connector for those 5 domains and configure it to allow all external connections to relay to those 5  domains.

Did you check the headers of a recent email to one of the 5 affected domains, are emails still going the ...mxlogic.net email servers?
0
 

Author Comment

by:tomfontanilla
ID: 39161712
We don't use  Edge Server at all, even before my time. It's kind of strange that emails are getting delayed after made the changes.
0
The curse of the end user strikes again      

You’ve updated all your end user’s email signatures. Hooray! But guess what? They’re playing around with the HTML, adding stupid taglines and ruining the imagery. Find out how you can save your signatures from end users today.

 
LVL 6

Expert Comment

by:BurundiLapp
ID: 39161814
If Exchange is being used for incoming and outgoing mail then in the Exchange Managment Console look under 'Server Configuration' then 'Hub transport', click on the name of your externally facing exchange server if you have more than one of them and see what Receive connectors you have configured.  

You should have one with a description that suggests it is for internet traffic.  That will be the one you need to check to see what IP addresses it is configured to allow.
0
 

Author Comment

by:tomfontanilla
ID: 39161976
I see that the receive connector it is configured to all available IPv4 addresses on port 25.
0
 
LVL 6

Expert Comment

by:BurundiLapp
ID: 39162020
That sounds like it can receive from anywhere then.

If you have a machine on another internet connection seperate from the one your send and receive emails on I would try connecting manually to your external email server and try sending an email via telnet.

telnet <your email servers external ip address> 25
helo <the ip you are sending from>
mail from:bob@bob.com
rcpt to:<genuine email address@your_actual_domain.com>
data
Subject: test
test 123
blah blah blah 
.
quit

Open in new window


If that works you can send emails into your system from any external IP address.

Ideally you need to get hold of an error message from a system that can't send to you to see what errors are being produced.
0
 

Author Comment

by:tomfontanilla
ID: 39162466
I will try to find away goet an outside world Internet connection to run telnet. But by the mean time, this is what the sender sent me when they trying to send an email to us.

postini #550 mta inaccessible for too long for domain - psmtp ##
0
 

Author Comment

by:tomfontanilla
ID: 39162792
I just confirmed this that our 3rd party spamfirewall still having a problem. I need to re-point this to my server. How do i accomplish this?
0
 
LVL 6

Accepted Solution

by:
BurundiLapp earned 500 total points
ID: 39164091
Are talking about the 5 domains or all your domains now?  Is your 3rd party SPAM firewall a device or is it the company formaly known as MXlogic.net?

If your third party is unable to relay your emails from their servers to yours then the only way to bypass them is to change your MX records as you have done for the 5 domains.

The problem doing that is that it takes up to 2 days for DNS records to propogate to DNS servers around the world AND if some servers don't refresh their DNS records that often they could still be using stale DNS records weeks after you have made the change.

I would look at finding a more reliable 3rd party SPAM filtering provider after this, in the 10 years we have been using 3rd parties to filter SPAM we have never had so much as a days outage.
0
 

Author Closing Comment

by:tomfontanilla
ID: 39164332
Excellent response
0
 

Author Comment

by:tomfontanilla
ID: 39164335
Yes its the 5 domain, and yes it is MXlogic.net.
0

Featured Post

What Should I Do With This Threat Intelligence?

Are you wondering if you actually need threat intelligence? The answer is yes. We explain the basics for creating useful threat intelligence.

Join & Write a Comment

Not sure what the best email signature size is? Are you worried about email signature image size? Follow this best practice guide.
Local Continuous Replication is a cost effective and quick way of backing up Exchange server data. The following article describes the steps required to configure Local Continuous Replication. Also, the article tells you how to restore from a backup…
In this video we show how to create an Address List in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Organization >> Ad…
With the advent of Windows 10, Microsoft is pushing a Get Windows 10 icon into the notification area (system tray) of qualifying computers. There are many reasons for wanting to remove this icon. This two-part Experts Exchange video Micro Tutorial s…

758 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

17 Experts available now in Live!

Get 1:1 Help Now