Solved

Smart Host for AT&T U-verse

Posted on 2014-01-24
8
1,076 Views
Last Modified: 2014-02-04
We are running SBS2011 with Exchange 2010.  We moved to AT&T U-verse from AT&T DSL.  Before the switch, we were using a SmartHost with AT&T DSL to send messages.  With the SmartHost, we did not have any issues sending to various domains or clients.  After the switch, some messages are being rejected to some clients.  The SmartHost had resolved this problem when we installed the new server several years ago.  I contacted AT&T U-verse to get SmartHost settings for U-verse.  I was told I could talk with Tech360 for a fee to see if they could help with the problem.  I was told they may be able to help with the problem.

Port 25 has been opened but that did not resolve the problem.  We found references to this in EE and on the web.

We are looking for information to configure a SmartHost for U-verse.  Our inbound is working fine.  Some of the outbound is being delivered but we need to resolve the undeliverables.  Any assistnce will be appreciated.
0
Comment
Question by:BNCAdmin
  • 5
  • 2
8 Comments
 
LVL 11

Assisted Solution

by:epichero22
epichero22 earned 250 total points
ID: 39807056
If some outbound is being delivered, then what's different about those denied outbound packets?  I'm guessing that they're trying to leave on ports that have been closed or their destination is closed to said ports.  

Find out what ports your applications need to use and check the firewall to see if they're open or not.  You mentioned Tech360; what did they say?
0
 
LVL 9

Expert Comment

by:M Roe
ID: 39807140
Can you post a undeliverable text with important info cleared
0
 
LVL 1

Author Comment

by:BNCAdmin
ID: 39807788
Thanks for the replies.  We have not contacted Tech360.  Wanted to see if the EE team would have a solution before paying for an answer that may not be there.  My manager will contact AT&T again about the support we were promised for moving to U-verse before agreeing to a paid solution.

According to our research and contact with AT&T, only port 25 is used for incoming and outbound messages.  Firewall is open for this port.

The text shown below was from a failed delivery.  
---------------------------------------------------------------------------------------------------------
Delivery has failed to these recipients or groups:

sentto@receiver.org (sentto@receiver.org)
The recipient's e-mail system isn't accepting messages now. Please try resending this message later or contact the recipient directly.

Diagnostic information for administrators:

Generating server: Ourserver.domain.local

sentto@receiver.org
#550 4.3.2 QUEUE.Admin; message deleted by administrative action ##

Original message headers:

Received: from Ourserver.domain.local ([fe80::3b8:6284:c31d:5bc2]) by
 Ourserver.domain.local ([fe80::3b8:6284:c31d:5bc2%11]) with mapi id
 14.01.0438.000; Wed, 22 Jan 2014 10:37:09 -0500
From: Sender.name <sender@sender.com>
To: "sentto@receiver.org" <sentto@receiver.org>
Subject: FW: MESSAGE-E-Verify
Thread-Topic: MESSAGE-E-Verify
Thread-Index: Ac8NTDPb9JFprhzTRnut/vNObiA7SwKOr64g
Disposition-Notification-To: Sender.name <sender@sender.com>
Date: Wed, 22 Jan 2014 15:37:09 +0000
Message-ID: <9E3393AC8EBB604C878FA06D887AC71C3E4D5828@Ourserver.domain.local>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach: yes
X-MS-TNEF-Correlator:
x-originating-ip: [192.168.3.121]
Content-Type: multipart/mixed;
      boundary="_004_9E3393AC8EBB604C878FA06D887AC71C3E4D5828BNCSERVER01bncl_"
MIME-Version: 1.0
0
PRTG Network Monitor: Intuitive Network Monitoring

Network Monitoring is essential to ensure that computer systems and network devices are running. Use PRTG to monitor LANs, servers, websites, applications and devices, bandwidth, virtual environments, remote systems, IoT, and many more. PRTG is easy to set up & use.

 
LVL 9

Assisted Solution

by:M Roe
M Roe earned 250 total points
ID: 39813309
I would try to send out on different port like 465

25 is usually blocked by servers all over the world not just AT&T even thought you say it is opened for you.

Mike
0
 
LVL 1

Author Comment

by:BNCAdmin
ID: 39813422
This is another reject message sent to a different client. This was sent to an e-mail domain hosted by Google.  

Admitting I do not fully understand the technical side of e-mail - my background is more with application software than network - how would we check the PTR records?  I have seen a reference to PTR during our research.  Could this issue be with DNS since we changed our I.P. address?  

--------------------------------------------------------------------------------------------------------------------------
mx.google.com rejected your message to the following e-mail addresses:

sentto@domain.org (sentto@domain.org)

mx.google.com gave this error:
[2602:301:7772:6020:b1ae:58a:702a:84da] Our system has detected that this message does not meet IPv6 sending guidelines regarding PTR records and authentication. Please review https://support.google.com/mail/?p=ipv6_authentication_error for more information. qp3si15227713bkb.245 - gsmtp

Your message wasn't delivered due to a permission or security issue. It may have been rejected by a moderator, the address may only accept e-mail from certain senders, or another restriction may be preventing delivery.

Diagnostic information for administrators:

Generating server: Ourserver.server.local

sentto@domain.org
mx.google.com #550-5.7.1 [2602:301:7772:6020:b1ae:58a:702a:84da] Our system has detected that 550-5.7.1 this message does not meet IPv6 sending guidelines regarding PTR 550-5.7.1 records and authentication. Please review 550-5.7.1 https://support.google.com/mail/?p=ipv6_authentication_error for more 550 5.7.1 information. qp3si15227713bkb.245 - gsmtp ##

Original message headers:

Received: from Ourserver.server.local ([fe80::3b8:6284:c31d:5bc2]) by
 Ourserver.server.local ([fe80::3b8:6284:c31d:5bc2%11]) with mapi id
 14.01.0438.000; Mon, 27 Jan 2014 13:00:52 -0500
From: User name <sentfrom@domain.com>
To: "sentto@domain.org" <sentto@domain.org>
Subject: FW: Report from The Customer Account
Thread-Topic: Report from The Customer Account
Thread-Index: Ac8biFqLplaF/YUCT72elYAbGcy8rAAAP7wHAAAvUTAAAE9HwA==
Date: Mon, 27 Jan 2014 18:00:50 +0000
Message-ID: <9E3393AC8EBB604C878FA06D887AC71C3E4E72F4@Ourserver.server.local>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-originating-ip: [2602:301:7772:6020:2d31:cda2:d1b5:5fe3]
Content-Type: multipart/alternative;
      boundary="_000_9E3393AC8EBB604C878FA06D887AC71C3E4E72F4BNCSERVER01bncl_"
MIME-Version: 1.0
-------------------------------------------------------------------------------------------------------------------------------

Can you suggest utilities or programs that could be used to troubleshoot if this is a DNS/PTR issue?

Thanks for your help.
0
 
LVL 1

Accepted Solution

by:
BNCAdmin earned 0 total points
ID: 39820886
After working with two different AT&T U-verse support techs over the past two days plus another I.T. support friend, we were able to determine our problem was related to incorrect reverse DNS and PTR records due to the change in our external fixed I.P.  Once we got these records corrected, most of our e-mail sending issues were resolved.  We still have a few isolated issues that we are working on that may be not related.

I learned that the I.P. address we get thru whatsmyip.com or similar websites is considered a "sticky" I.P. and not the fixed I.P. used in DNS.  This had caused a problem when trying to identify the I.P. address that would be used for rDNS.  

It was also determined that AT&T U-verse does not have a SmartHost like AT&T DSL.
0
 
LVL 1

Author Comment

by:BNCAdmin
ID: 39820904
Thanks for all the assistance
0
 
LVL 1

Author Closing Comment

by:BNCAdmin
ID: 39831972
Thanks for the replies on this issue.  Your comments provided items we should check or reverify during this process.  E-mail problems, especially those related to possible DNS issues, are not always easy to identify and resolve.  Your replies were appreciated.
0

Featured Post

Back Up Your Microsoft Windows Server®

Back up all your Microsoft Windows Server – on-premises, in remote locations, in private and hybrid clouds. Your entire Windows Server will be backed up in one easy step with patented, block-level disk imaging. We achieve RTOs (recovery time objectives) as low as 15 seconds.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This article lists the top 5 free OST to PST Converter Tools. These tools save a lot of time for users when they want to convert OST to PST after their exchange server is no longer available or some other critical issue with exchange server or impor…
Read this checklist to learn more about the 15 things you should never include in an email signature.
In this Micro Video tutorial you will learn the basics about Database Availability Groups and How to configure one using a live Exchange Server Environment. The video tutorial explains the basics of the Exchange server Database Availability grou…
This video shows how to quickly and easily add an email signature for all users on Exchange 2016. The resulting signature is applied on a server level by Exchange Online. The email signature template has been downloaded from: www.mail-signatures…

809 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question