Still celebrating National IT Professionals Day with 3 months of free Premium Membership. Use Code ITDAY17

x
?
Solved

SBS 2011:  Exchange 2010 server on email blacklist

Posted on 2013-06-27
12
Medium Priority
?
916 Views
Last Modified: 2013-07-03
Hi All,

A customer recently rang to say their emails arent all being sent.  On investigation they are on an emai lblacklist.

I've put a request in to have it removed.  But need help to find out why?

Also, how do I find out how many emails have been sent today?

The Queue only has 15 emails waiting, which are all because of the blacklist.

Any suggestions?

D
0
Comment
Question by:detox1978
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 6
  • 5
12 Comments
 
LVL 8

Assisted Solution

by:s3e3
s3e3 earned 400 total points
ID: 39282372
The blacklist provider will usually tell you why it was blacklisted.
Open relay is common, check your server's smtp by using the tools on dnsstuff.com

It's hard to tell how many outbound emails are blocked because some receiving servers do not use IP block lists or have less aggressive spam filtering.
If outbound emails are blocked users will get a message on most occasions.
0
 
LVL 2

Author Comment

by:detox1978
ID: 39282434
The blacklist company have whitelisted them for 30 days as it's the first time they've appeared on the list.  But it was an automated system that sent a generic email.  You "may" have a virus etc....
0
 
LVL 76

Assisted Solution

by:Alan Hardisty
Alan Hardisty earned 1600 total points
ID: 39282512
Which Blacklist(s) did they appear on?

Is port 25 outbound closed off on the firewall from all LAN IPs apart from the SBS 2011 server's IP?  If not - it needs to be.
0
U.S. Department of Agriculture and Acronis Access

With the new era of mobile computing, smartphones and tablets, wireless communications and cloud services, the USDA sought to take advantage of a mobilized workforce and the blurring lines between personal and corporate computing resources.

 
LVL 2

Author Comment

by:detox1978
ID: 39282593
at the moment there is no ports blocked on the lan and the exchange server accepts from all sources.

Open relay isnt enabled.
0
 
LVL 76

Assisted Solution

by:Alan Hardisty
Alan Hardisty earned 1600 total points
ID: 39282599
You should be blocking port 25 outbound for all LAN IP's other than the Exchange server or a virus infected PC will get you blacklisted because you haven't blocked it from sending spam out.

Chances are you have an infected computer and that is why you got blacklisted.

Which Blacklist did you hit?????
0
 
LVL 2

Author Comment

by:detox1978
ID: 39282752
They were on BARRACUDA's blacklist
0
 
LVL 76

Assisted Solution

by:Alan Hardisty
Alan Hardisty earned 1600 total points
ID: 39282800
Okay - so that would be most likely down to a virus infected computer.

Did you check for Open Relay on your server on http://www.mailradar.com/openrelay/ ?
0
 
LVL 2

Author Comment

by:detox1978
ID: 39283088
Thanks for the tips.

Server passed the open relay checks and i've restricted port 25 to the SMTP server.

Are there any checks I can do on the server.  As they were only on one blacklist i'm starting to think they havent done anything to be on there.
0
 
LVL 76

Accepted Solution

by:
Alan Hardisty earned 1600 total points
ID: 39283180
An outbreak would usually mean you end up on several lists, so they may have been inadvertently listed.

Did you check when the last listing was?  Was it recently?
0
 
LVL 2

Author Comment

by:detox1978
ID: 39283199
They noticed some email stopped being sent around 2pm BST and that they were on a blacklist around 4pm.  They applied to be removed around 6pm and were removed soon after.

All emails are working now, but I was hoping to find out how/why they got on the list in the first place.
0
 
LVL 76

Assisted Solution

by:Alan Hardisty
Alan Hardisty earned 1600 total points
ID: 39283206
If you can log activity on your firewall then log port 25 activity that is blocked and that may tell you where the problem lies, otherwise you may never know.
0
 
LVL 2

Author Closing Comment

by:detox1978
ID: 39297916
thanks
0

Featured Post

Important Lessons on Recovering from Petya

In their most recent webinar, Skyport Systems explores ways to isolate and protect critical databases to keep the core of your company safe from harm.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

If you troubleshoot Outlook for clients, you may want to know a bit more about the OST file before doing your next job. IMAP can cause a lot of drama if removed in the accounts without backing up.
Check out this step-by-step guide for using the newly updated Experts Exchange mobile app—released on May 30.
This video discusses moving either the default database or any database to a new volume.
This video demonstrates how to sync Microsoft Exchange Public Folders with smartphones using CodeTwo Exchange Sync and Exchange ActiveSync. To learn more about CodeTwo Exchange Sync and download the free trial, go to: http://www.codetwo.com/excha…

670 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question