Solved

5.7.0 SMTP; 550 5.7.0 Local Policy Violation

Posted on 2013-10-23
6
12,519 Views
Last Modified: 2014-01-31
Hello All,

I have several inbound messages that get bounced with the error message in the title. Sometimes they get through from the same sender and sometimes they do not. They are all on the same domain (not ours). It is not an attachment size issue and our DNS and SPF record shows no errors according to MXToolbox (itnet.ca) and well as we are on no blacklists as of this morning. Our connection is an unfiltered and unmanaged OC3. All SMTP traffic goes through a Symantec Brightmail gateway then onto the Exchange server on the same subnet. I have disabled DNS lookup on all the individual filters in Brightmail but left the main entry for DNS lookup intact. Any help would be greatly appreciated.  

Thank you

David
0
Comment
Question by:Davidloc
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
  • 3
6 Comments
 
LVL 20

Expert Comment

by:thehagman
ID: 39594395
Sorry, but I'd like to clarify the direction of communication: You say inbound messages get bounced, so there is someone external trying to send a valid email to an internal user of your site and one of your system bounces the mail back to the sender. In that case, could you specify whether it is the Symantec Brightmail or the Exchange server where the bouncing takes place?
Also you said that you checked your DNS and SPF - what about the DNS and SPF of the failing external domain?
0
 

Author Comment

by:Davidloc
ID: 39595079
This is someone sending an email into our organization to a known good recipient, again it is successful sometimes with the same external sender. I did not check the external domain's SPF yet. I was hoping to find out where the logs are kept for when Exchange refuses reception of a message. The transaction logs are useless because they only show successfully sent and received messages. There is a Sonicwall 3500 NSA then the Brightmail gateway then the Exchange server in the path.

Thanks  

David
0
 
LVL 20

Expert Comment

by:thehagman
ID: 39595617
You may want to activate logging as here: http://technet.microsoft.com/en-us/library/dd335139%28v=exchg.141%29.aspx
Specifically, have a look at MSExchangeTransport (and maybe MSSExchange AntiSpam)
Don't exaggerate this, as you will fill up the event log.
0
Problems using Powershell and Active Directory?

Managing Active Directory does not always have to be complicated.  If you are spending more time trying instead of doing, then it's time to look at something else. For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why

 

Author Comment

by:Davidloc
ID: 39597217
What logs would have the info of what and why a message was rejected ? Thank you

David
0
 
LVL 20

Accepted Solution

by:
thehagman earned 500 total points
ID: 39598496
After looking into this again, I suspect that setting AntiSpam - General to "High" temporarily should catch your problem. I just can't test it here cause my Exchange 2010 doesn't even have Antispam as  we do that at the boundary gateway.

(Originally I had thought of Transport DSN, but had once more mixed up DSN with NDR)
0
 

Author Comment

by:Davidloc
ID: 39598596
I set it to high and will check it as soon as I get another failure. How do you shut off anti-spam in Exchange 2010? We use Brightmail on our edge already as well.

Thank you for your help , it is really appreciated

David
0

Featured Post

Problems using Powershell and Active Directory?

Managing Active Directory does not always have to be complicated.  If you are spending more time trying instead of doing, then it's time to look at something else. For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This article lists the top 5 free OST to PST Converter Tools. These tools save a lot of time for users when they want to convert OST to PST after their exchange server is no longer available or some other critical issue with exchange server or impor…
In-place Upgrading Dirsync to Azure AD Connect
Many of my clients call in with monstrous Gmail overloading issues with Outlook. A quick tip is to turn off the All Mail and Important folders from synching. Here is a quick video I made to show you how to turn off these and other folders in Gmail s…
There are cases when e.g. an IT administrator wants to have full access and view into selected mailboxes on Exchange server, directly from his own email account in Outlook or Outlook Web Access. This proves useful when for example administrator want…
Suggested Courses

627 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question