Solved

5.7.0 SMTP; 550 5.7.0 Local Policy Violation

Posted on 2013-10-23
6
10,525 Views
Last Modified: 2014-01-31
Hello All,

I have several inbound messages that get bounced with the error message in the title. Sometimes they get through from the same sender and sometimes they do not. They are all on the same domain (not ours). It is not an attachment size issue and our DNS and SPF record shows no errors according to MXToolbox (itnet.ca) and well as we are on no blacklists as of this morning. Our connection is an unfiltered and unmanaged OC3. All SMTP traffic goes through a Symantec Brightmail gateway then onto the Exchange server on the same subnet. I have disabled DNS lookup on all the individual filters in Brightmail but left the main entry for DNS lookup intact. Any help would be greatly appreciated.  

Thank you

David
0
Comment
Question by:Davidloc
  • 3
  • 3
6 Comments
 
LVL 20

Expert Comment

by:thehagman
ID: 39594395
Sorry, but I'd like to clarify the direction of communication: You say inbound messages get bounced, so there is someone external trying to send a valid email to an internal user of your site and one of your system bounces the mail back to the sender. In that case, could you specify whether it is the Symantec Brightmail or the Exchange server where the bouncing takes place?
Also you said that you checked your DNS and SPF - what about the DNS and SPF of the failing external domain?
0
 

Author Comment

by:Davidloc
ID: 39595079
This is someone sending an email into our organization to a known good recipient, again it is successful sometimes with the same external sender. I did not check the external domain's SPF yet. I was hoping to find out where the logs are kept for when Exchange refuses reception of a message. The transaction logs are useless because they only show successfully sent and received messages. There is a Sonicwall 3500 NSA then the Brightmail gateway then the Exchange server in the path.

Thanks  

David
0
 
LVL 20

Expert Comment

by:thehagman
ID: 39595617
You may want to activate logging as here: http://technet.microsoft.com/en-us/library/dd335139%28v=exchg.141%29.aspx
Specifically, have a look at MSExchangeTransport (and maybe MSSExchange AntiSpam)
Don't exaggerate this, as you will fill up the event log.
0
Complete VMware vSphere® ESX(i) & Hyper-V Backup

Capture your entire system, including the host, with patented disk imaging integrated with VMware VADP / Microsoft VSS and RCT. RTOs is as low as 15 seconds with Acronis Active Restore™. You can enjoy unlimited P2V/V2V migrations from any source (even from a different hypervisor)

 

Author Comment

by:Davidloc
ID: 39597217
What logs would have the info of what and why a message was rejected ? Thank you

David
0
 
LVL 20

Accepted Solution

by:
thehagman earned 500 total points
ID: 39598496
After looking into this again, I suspect that setting AntiSpam - General to "High" temporarily should catch your problem. I just can't test it here cause my Exchange 2010 doesn't even have Antispam as  we do that at the boundary gateway.

(Originally I had thought of Transport DSN, but had once more mixed up DSN with NDR)
0
 

Author Comment

by:Davidloc
ID: 39598596
I set it to high and will check it as soon as I get another failure. How do you shut off anti-spam in Exchange 2010? We use Brightmail on our edge already as well.

Thank you for your help , it is really appreciated

David
0

Featured Post

IT, Stop Being Called Into Every Meeting

Highfive is so simple that setting up every meeting room takes just minutes and every employee will be able to start or join a call from any room with ease. Never be called into a meeting just to get it started again. This is how video conferencing should work!

Join & Write a Comment

Disabling the Directory Sync Service Account in Office 365 will stop directory synchronization from working.
Local Continuous Replication is a cost effective and quick way of backing up Exchange server data. The following article describes the steps required to configure Local Continuous Replication. Also, the article tells you how to restore from a backup…
In this video we show how to create an Address List in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Organization >> Ad…
In this video we show how to create an Accepted Domain in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Mail Flow >> Ac…

706 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

15 Experts available now in Live!

Get 1:1 Help Now