Solved

External mail routing issue

Posted on 2014-02-24
12
293 Views
Last Modified: 2014-02-26
Hi,

 I have installed Ex2013 on a separate box.  Over the weekend I have switched the 2010 CAS role to my new CAS server.  I update the external url's on the virtual directories on the new CAS server swapped out the ip's of my 2010 exchange putting it on the new one (as I don't have to make any changes to my public dns records) and set a new ip for my 2010 cas box with mailboxes.  Last, I updated the internet connector to include my new CAS server as a source server.  Basiscally, everything works fine except the now we can't send any external emails.  We got an undeliverable message saying that "client host x.x.x.x blocked using block list 1, mail from IP banned............
0
Comment
Question by:Laxjoey1
  • 6
  • 6
12 Comments
 
LVL 11

Expert Comment

by:Technodweeb
ID: 39884318
Is the IP address that is provided in the bounce message your public IP or one of your private IP's?
0
 

Author Comment

by:Laxjoey1
ID: 39884348
The bounce message IP is our Public IP
0
 
LVL 11

Expert Comment

by:Technodweeb
ID: 39884368
Does the IP in the message match you MX and PTR records in DNS? If so, this sounds like you are blacklisted someplace. If not, your mailserver may be getting viewed as not an authorized mail server and being rejected by the recipient server.

send a test message to EE-TEST@agbsm.net and I will post back the results from my mail server.
0
 
LVL 11

Accepted Solution

by:
Technodweeb earned 500 total points
ID: 39884381
Feb 24 18:07:54 svr005 postfix/smtpd[16800]: warning: 4.30.210.34: address not listed for hostname mail.nhsocal.com
Feb 24 18:07:54 svr005 postfix/smtpd[16800]: connect from unknown[4.30.210.34]
Feb 24 18:07:54 svr005 postfix/smtpd[16800]: NOQUEUE: reject: RCPT from unknown[4.30.210.34]: 550 5.1.1 <EE-TEST@agbsm.net>: Recipient address rejected: User unknown in virtual alias table; from=<JNg@NHSoCal.com> to=<EE-TEST@agbsm.net> proto=ESMTP helo=<anvmail1.nhsocal.com>
Feb 24 18:07:54 svr005 postfix/smtpd[16800]: disconnect from unknown[4.30.210.34]

Open in new window


Is the IP address listed here correct? Seems like it is not... I show a 208.x.y.z address from a DNS query...
0
 

Author Comment

by:Laxjoey1
ID: 39884416
4.30.x.x is our public ip and the 208.x.x.x are our ptr's
0
 
LVL 11

Expert Comment

by:Technodweeb
ID: 39884451
The hostname being resolved does not match the hostname on the mail server. Resolution name is "mail.nhsocal.com" and the server is claiming to be "anvmail1.nhsocal.com"
0
The problems with reply email signatures

Do you wish that you could place an email signature under a reply? Well, unfortunately, you can't. That great Exchange/Office 365 signature you've created will just appear at the bottom of an email chain. What a pain! Is there really no way to solve this? Well, there might be...

 

Author Comment

by:Laxjoey1
ID: 39884469
but both names are included in our certificate registration
0
 
LVL 11

Expert Comment

by:Technodweeb
ID: 39884496
Has nothing to do with the certificate but the name the SMTP service is giving when it issues the HELO or EHLO command.
0
 

Author Comment

by:Laxjoey1
ID: 39884561
I just got updated information from the admin that we only get blocked if we are sending mail to Office 365 users externally , all  other external domains seems to be fine.   We have requested to be unblocked from the block list and we will see what happens after 24 hrs.   Shall I close this case and reopen tomorrow if needed or leave it open?
0
 
LVL 11

Expert Comment

by:Technodweeb
ID: 39885488
Leave it open... I am curious what the outcome is. I sell o365 and support it as well and always looking for good intel.
0
 

Author Comment

by:Laxjoey1
ID: 39886599
Good afternoon, we still getting messages blocked trying to send to office 365 users .  Seems like we don't have any other issues besides that.  The message reads:

CO9EHSMHS015.bigfish.com gave this error:
 Service unavailable; Client host [4.30.210.34] blocked using Blocklist 1, mail from IP banned; To request removal from this list please forward this message to delist@messaging.microsoft.com and include your ip address 4.30.210.34 .

:(
0
 

Author Comment

by:Laxjoey1
ID: 39887525
Hello EchgGURU,

 Got a question, on the digital certificate on the exchange box, the smtp service is not enabled for the digital certificate on the CAS server it only lists POP3, IMAP4 and IIS as services enabled.  Is that the proper configuration.  Please see attached
0

Featured Post

Is Your Active Directory as Secure as You Think?

More than 75% of all records are compromised because of the loss or theft of a privileged credential. Experts have been exploring Active Directory infrastructure to identify key threats and establish best practices for keeping data safe. Attend this month’s webinar to learn more.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

When you send traffic on the network or on wireless it may be in plain text and it may reveal all your passwords and details.  Most programs do not use encryption by default. This is acceptable if you own every device on the network and are sure …
Introduction Ever had certain email messages or responses that you find yourself using over and over again? Do you use Google's Gmail system? If so, then this article is here to help you save time by teaching you how to create email templates from …
In this Experts Exchange video Micro Tutorial, I'm going to show how small business owners who use Google Apps can save money by setting up what is called a catch-all email address in their Gmail accounts. By using the catch-all feature, small busin…
This video shows how to remove a single email address from the Outlook 2010 Auto Suggestion memory. NOTE: For Outlook 2016 and 2013 perform the exact same steps. Open a new email: Click the New email button in Outlook. Start typing the address: …

919 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

22 Experts available now in Live!

Get 1:1 Help Now