Want to win a PS4? Go Premium and enter to win our High-Tech Treats giveaway. Enter to Win


Email issue

Posted on 2014-02-19
Medium Priority
Last Modified: 2014-02-24
We have a customer who's unable to deliver email to us, no one else that I'm aware of is having this issue. They're mail provider is hostgator.com and I've worked with their support staff to try and resolve and we aren't making any headway. We have an inbound spam filter and the logs do not indicate a connection attempt from abc.com, nor do the firewall logs show a connection attempt - watched them real-time. I have verified on both the firewall and spam filter their domain and IP address is not being blocked.

A traceroute and DNS lookup from their mail server work properly. I have verified our domain is clean, not on any blacklists. Below are the logs from their attempt to send email to us from trouble domain.  

2014-02-18 14:51:46 1WFrdq-00072o-So <= test@abc.com H=localhost.localdomain ( []:60990 I=[]:25 P=esmtpa A=dovecot_login:test@abc.com S=638 id=a0322880150e6dc38e6891ae2d832634@abc.com T="gatoraustin2" from <hgtest@abc.com> for rlivermore@twns.com
2014-02-18 14:51:46 cwd=/var/spool/exim 3 args: /usr/sbin/exim -Mc 1WFrdq-00072o-So
2014-02-18 14:51:46 1WFrdq-00072o-So SMTP connection outbound 1392756706 1WFrdq-00072o-So abc.com rlivermore@twns.com
2014-02-18 14:52:50 1WFrdq-00072o-So mail2.twns.com [] Connection timed out
2014-02-18 14:52:50 1WFrdq-00072o-So == rlivermore@twns.com R=lookuphost T=remote_smtp defer (110): Connection timed out
Question by:BERITM
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 5
  • 2
  • 2
  • +3

Expert Comment

by:Dave Gould
ID: 39870688
The problem sounds 99% certain to be on your customers mail system.
What mail system are they using?
Are they sure that they are using the DNS and dont have any false configs somewhere?
When they said that they tested DNS, did they run an nslookup from their mail server?
Did they specify that the should look at the MX record or did you give them the server name?
Can they try a manual telnet to port 25 to your inbound mail server from their mail server? If so can they emulate the smtp protocol and send a mail manually?
ie ...
telnet yourmailserver.com 25
helo yourmaildomain
mail from: <any.user@theirdomain.com>
rcpt to: <any.user@yourdomain.com>
blah blah blah

Expert Comment

by:Arpit Bajpai
ID: 39870690
Hi looking at the logs I can see you are trying to send email via port 25..which now days is blocked by default.

Try the following steps.
Delete the MX records and put them back... (only 5% chances that this will work
Change the port on local server to 587 using security TLS.

I hope this will help. further more let me know the domain name in private so that i can run some tests.

LVL 37

Expert Comment

by:Jamie McKillop
ID: 39870730

This isn't a DNS issue as the logs show the IP is resolving correctly. It is the same IP I get when I do a lookup. Have they tried to telnet to port 25 of your server from their server?

Problems using Powershell and Active Directory?

Managing Active Directory does not always have to be complicated.  If you are spending more time trying instead of doing, then it's time to look at something else. For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why

LVL 36

Expert Comment

ID: 39870745
Please note I cannot connect to mail2.twns.com [] either (both port 25 and 587) (it's also the current MX record on my side. so it's not a DNS problem either on the customer's side)
I'm not so sure it's a problem on the customer's side!

Author Comment

ID: 39870757
trappa01, it does appear to be a problem on their end but unless I can somehow prove it then it becomes a silly finger pointing contest. They are using a Linux variant. DNS does resolve correctly though I did not have them verify the mx record, sent an email to them asking for them to try. I had them try a telnet session to port 25 to our filter by both FQDN and IP address.

Are you suggesting I have our public MX record be deleted and added back in? We are not using TLS and prefer not to do so

Expert Comment

by:Jeff Perry
ID: 39870761
twns.com does not have an spf record.

Ask the hostgator techs if they are configured to require spf records.

Author Comment

ID: 39870765
Kimputer, how did you try connecting, telnet from a command prompt?
LVL 37

Expert Comment

by:Jamie McKillop
ID: 39870772
Do not delete and recreate your MX record. That is not necessary. They are fine.

This is for sure an issue on the sender's side. Unfortunately, there is nothing you are going to be able to do to prove it. Since your firewall doesn't even show a connection attempt, there are no logs on your side to prove or disprove the issue is on the sender's side. You would need access to the sender's firewall logs.

LVL 36

Expert Comment

ID: 39870786
BERITM: yes from command line, telnet
Here's some more info

E:\Documents and Settings\Administrator>telnet 25
Connecting To not open a connection to host on port 25 : C
onnect failed

E:\Documents and Settings\Administrator>telnet gmail-smtp-in.l.google.com 25
220 mx.google.com ESMTP l41si1522301eew.102 - gsmtp

E:\Documents and Settings\Administrator>tracert 25
  5   102 ms   101 ms   105 ms  us-was03a-rd1-xe-0-3-0.aorta.net []

  6   115 ms   115 ms   124 ms  us-chi01a-ri2-gi-6-1-0.aorta.net [
  7   115 ms   115 ms   116 ms
  8   162 ms   161 ms   162 ms  mcdldsrj01-ae1.0.rd.ph.cox.net []
  9   163 ms   163 ms   165 ms
 10     *        *        *     Request timed out.
 11     *        *        *     Request timed out.
 12   174 ms   176 ms   171 ms  mail.twns.com []
 13   173 ms   170 ms   175 ms  mail2.twns.com []
 14     *        *        *     Request timed out.
 15     *        *        *     Request timed out.
 16     *        *        *     Request timed out.
 17     *        *        *     Request timed out.
 18     *        *        *     Request timed out.
 19     *        *        *     Request timed out.
 20     *        *        *     Request timed out.
 21     *        *        *     Request timed out.
 22     *        *        *     Request timed out.
 23     *        *        *     Request timed out.
 24     *        *        *     Request timed out.
 25     *

Author Comment

ID: 39870795
The trace route is good but its odd the telnet attempt failed

Accepted Solution

BERITM earned 0 total points
ID: 39871071
Turns out the customer was blacklisted at lashback, their service provider is working on resolving the issue.

Author Closing Comment

ID: 39882063
mxtoolbox found the source of the problem

Featured Post

Creating Active Directory Users from a Text File

If your organization has a need to mass-create AD user accounts, watch this video to see how its done without the need for scripting or other unnecessary complexities.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

I don't pretend to be an expert at this, but I have found a few things that are useful. I hope that sharing them here will help others, so they will not have to face some rather hard choices. Since I felt this to be a topic of enough importance and…
Want to know how to use Exchange Server Eseutil command? Go through this article as it gives you the know-how.
To show how to create a transport rule in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Mail Flow >> Rules tab.:  To cr…
This video discusses moving either the default database or any database to a new volume.
Suggested Courses

618 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question