Solved

NDR only happens for two particular domains. Error 451 4.4.0 DNS query failed. Error 421 4.2.1

Posted on 2013-11-13
6
1,027 Views
Last Modified: 2013-11-20
Hello,
We have issue with NDR for two particular domains. All other domains have no issues:
Error 451 4.4.0 DNS query failed
Error 421 4.2.1

I followed the following two articles to change the setting to use External DNS lookups but it didn’t help…
http://www.networkadminsecrets.com/2010/04/421-and-451-exchange-2007-errors.html
http://www.noelpulis.com/fix-exhcange-2010-error-451-440-error-dns-query-failed/

THank you.
0
Comment
Question by:claudiamcse
6 Comments
 
LVL 77

Expert Comment

by:arnold
ID: 39646886
The error deals with an inability to resolve a domain.
Use betterwhis.com to lookup the domain's record to make sure its registration has not lapsed.

The information also includes the servers responsible for the domain
nslookup -q=NS domainname.com. <nameserver responsible for the domain>
If you get an error I.e. Data returned points to root servers or get no such domain, the issue is with the hosting name servers.

There is nothing you can do to solve it.  The domain owner has to address/resolve the issue.
0
 

Author Comment

by:claudiamcse
ID: 39646912
But the users could send before to that domain two weeks before we implemented 2010 server.....so, the domain was good. Also, we have the same error for few domains. Please see the screenshoterror

Also I noticed this in the Exchange Send SMTP log:
69.43.161.123:25,*,,"Failed to connect. Error Code: 10061, Error Message: No connection could be made because the target machine actively refused it 69.43.161.1234:25"
      Note: I changed the real IP for privacy reasons, but just wanted to say that external IP of the 2010 is different than the IP mentioned in the Send connector log…..Not sure why it is showing different IP in the Send connector log than the IP should be

Please advice

Than you so much.

Also the message never leaves Exchange 2010 server.... it goes from 2003 and to 2010....
Is there a work around for this? As I said, the mentioned above links that I posted didn't work
0
 
LVL 77

Accepted Solution

by:
arnold earned 500 total points
ID: 39646932
Check whether your 2010 configuration enabled anti-virus/spam mechanisms.

Are the domains with which you are having issues your own? Double check your internal DNS or the DNS on which the 2010 relies.

The difficulty to diagnose the issue, one has to know info.

Try mxtoolbox.com
Lookup the domain.
Then try the smtp test.
0
Efficient way to get backups off site to Azure

This user guide provides instructions on how to deploy and configure both a StoneFly Scale Out NAS Enterprise Cloud Drive virtual machine and Veeam Cloud Connect in the Microsoft Azure Cloud.

 
LVL 4

Expert Comment

by:FutureTechSysDOTcom
ID: 39646945
Agreed with Arnold especially MXToolbox.  

On the screenshot you posted, 6th line down where it gives "Error 554 Spam Email" - if I am reading that correctly, it is rejecting YOUR email as junk, which means there is something it doesn't like about it.  

I'd check those two domains as well as your own with mxtoolbox.  If you see yellow or red, fix it :)
0
 
LVL 15

Expert Comment

by:Skyler Kincaid
ID: 39647013
Another quick check is you can try to ping those domains just to see if the server is able to resolve the request to an IP or not.
0
 

Author Closing Comment

by:claudiamcse
ID: 39663832
Thank you
0

Featured Post

Optimizing Cloud Backup for Low Bandwidth

With cloud storage prices going down a growing number of SMBs start to use it for backup storage. Unfortunately, business data volume rarely fits the average Internet speed. This article provides an overview of main Internet speed challenges and reveals backup best practices.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

MS Outlook is a world-class email client application that is mainly used for e-communication globally.  In this article, we will discuss the basic idea about MS Outlook, its advanced features, and types of MS Outlook File formats.
This article aims to explain the working of CircularLogArchiver. This tool was designed to solve the buildup of log file in cases where systems do not support circular logging or where circular logging is not enabled
This tutorial will walk an individual through the steps necessary to join and promote the first Windows Server 2012 domain controller into an Active Directory environment running on Windows Server 2008. Determine the location of the FSMO roles by lo…
This tutorial will walk an individual through the process of transferring the five major, necessary Active Directory Roles, commonly referred to as the FSMO roles to another domain controller. Log onto the new domain controller with a user account t…

832 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question