Solved

problem sending emails to certain domain. exchange server 2003

Posted on 2013-06-10
7
429 Views
Last Modified: 2013-06-10
Recently some emails are getting stuck on queue to be sent out. But it happens with a few receiving domains outside only. When we send emails out, they are stuck in queue, then stay for about certain time, 30-60 minutes, then evetually go out. When I freeze the emails and force to delete message with NDR, it comes out as following. I thought it's receiving email server's spam filter, but since it happens to  other a few domains, I think there might be some settings are not right at my side, too. Or maybe I just discovered other problems we had before because of the first problem I  found;

"This message was rejected due to the current administrative policy by the destination server. Please retry at a later time. If that fails, contact your system administrator."
0
Comment
Question by:crcsupport
  • 2
  • 2
  • 2
  • +1
7 Comments
 
LVL 9

Assisted Solution

by:EMJSR
EMJSR earned 200 total points
ID: 39235533
You can check the following. Make sure that...

1) Your domain is not blacklisted anywhere (http://mxtoolbox.com/blacklists.aspx)

2) Your domain has an SPF record (https://www.microsoft.com/mscorp/safety/content/technologies/senderid/wizard)

Since it only happens to some domains, I don't think there is necessarily anything wrong with your Exchange server.
0
 
LVL 1

Assisted Solution

by:Rik Van Lier
Rik Van Lier earned 200 total points
ID: 39235565
If your SPF record is not correct you can always test by deleting this record.

without SPF record you should be able to email to the domains where you receive an error.
0
 
LVL 11

Expert Comment

by:James Hodge
ID: 39235581
There are three reasons for this (in order of liklihood):

1) External DNS Configuration
- is a reverse DNS in place? Is an SPF record in place?
Theese need to be setup with your domain name registrar.

2) Your domain is blacklisted
You can check lists here: http://mxtoolbox.com/blacklists.aspx 

3) Internal DNS Configuration Issues
You can check this by running an NSlookup query of the recipient Mailserver and comparing it with http://mxtoolbox.com/ 

James
0
Best Practices: Disaster Recovery Testing

Besides backup, any IT division should have a disaster recovery plan. You will find a few tips below relating to the development of such a plan and to what issues one should pay special attention in the course of backup planning.

 
LVL 9

Assisted Solution

by:EMJSR
EMJSR earned 200 total points
ID: 39235584
The SPF records are actively being used for sender validation. I would NOT remove it at all, just make sure it's correct. If you have the access to remove the SPF record from your DNS Zone file, then you can ammend it as well!

A lot of email providers (such as Googlemail, Live, Yahoo etc.) use it and since Googlemail offers business email, too, the SPF record is definitely a recommended thing to have.

The MS wizard can help setup a correct record if you have the information required (as a sysadmin you should).
0
 
LVL 1

Author Comment

by:crcsupport
ID: 39235723
is following SPF valid?
we have a primary exchange server which sends/receives 10.x.x.100(69.38.x.100), then another SMTP server sends email through the email server as smart host,  FS2 10.x.x.102(69.38.x.102). all incoming emails come to 10.x.x.100. We also have T1 failover. the IPs of the two servers are in the parenthesis. For this SPF, I created as following;

v=spf1 mx a:FS2.mydomain.com ip4:10.x.x.102 ip4:69.38.x.100 ip4:69.38.x.102~all
0
 
LVL 1

Assisted Solution

by:Rik Van Lier
Rik Van Lier earned 200 total points
ID: 39235734
Here you can test SPF records:

http://www.kitterman.com/spf/validate.html
0
 
LVL 11

Accepted Solution

by:
James Hodge earned 100 total points
ID: 39235742
Try using this wizard (my favourite) to create your spf record and compare it with yours.

http://www.spfwizard.net/
0

Featured Post

Does Powershell have you tied up in knots?

Managing Active Directory does not always have to be complicated.  If you are spending more time trying instead of doing, then it's time to look at something else. For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Pop culture is prime bait for hackers seeking to infect user’s computers and mobile devices with malicious malware. Hackers know exactly what the latest trends are online and know how to use them to their advantage.
When you’re making plans to join the modern business race, you should analyze various details that may affect your results. Nowadays, millions of businesses are trying to grow into established and appreciated professional enterprises.
The video tutorial explains the basics of the Exchange server Database Availability groups. The components of this video include: 1. Automatic Failover 2. Failover Clustering 3. Active Manager
Nobody understands Phishing better than an anti-spam company. That’s why we are providing Phishing Awareness Training to our customers. According to a report by Verizon, only 3% of targeted users report malicious emails to management. With compan…

832 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question