Incoming Mail with attachment Delivery Delays - Exchange 2013
Hi Guys,
We are having a incoming mail delivery delays.
Environment (YYYYY.org.au):
Exchange 2013 CU3 with separate CAS and MBX roles
Windows 2012
Puremessage spam filtering on MBX server role
Allowed maximum attachment size to send/receive - 35 MB
Scenario:
1. Email works internally
2. Receiving and sending emails with out attachments is instantaneous to and from external parties.
3. Receiving emails with attachments from external senders (Ex: gmail) over 3 MB get delayed. Sometimes by 10-20 hours
4. Sending emails from the organization to external senders (Ex: gmail) with attachments over 3 MB is instantaneous.
So the problem we are facing is receiving emails with attachments from external senders. “Some” of these get delivered after long delays but many go missing.
Following is an email header analysis of a delayed message.
Hop Delay from by with time (UTC)
1 * 000s-ex-mbx-qs3.AAA.edu.au
2 * 000S-EX-HUB-NP2.AAA.edu.au
3 57 seconds 000s-ex-tmg-np2.AAA.edu.au
4 41 seconds CH1EHSMHS001.bigfish.com 10.43.68.231 mail13-ch1.bigfish.com ESMTP 3/6/2014 12:25:36 AM
5 3 seconds mail13-ch1 127.0.0.1 mail13-ch1 3/6/2014 12:25:39 AM
6 3 seconds mail13-ch1 127.0.0.1 mail13-ch1-R.bigfish.com ESMTP 3/6/2014 12:25:42 AM
7 0 seconds mail13-ch1-R.bigfish.com 10.43.68.246 CH1EHSOBE005.bigfish.com 10.43.70.55 Microsoft SMTP Server 3/6/2014 12:25:42 AM
8 20 hour ch1outboundpool.messaging.
9 2 minutes CAS01.YYYYY.org.au 10.0.100.211 MBX01.YYYYY.org.au 10.0.100.125 Microsoft SMTP Server (TLS) 3/6/2014 7:59:40 PM
10 * MBX01.YYYYY.org.au 10.0.100.125
If you notice , Hop number 8 took 20 hours to complete.
Test results form MX toolbox
Test Result
SMTP Transaction Time 5.881 seconds
SMTP Reverse Banner Check OK – YYY.YYY.YYY.YYY resolves to mail.YYYYY.org.au
SMTP Reverse DNS Mismatch OK - Reverse DNS matches SMTP Banner
SMTP TLS OK - Supports TLS.
SMTP Connection Time 1.092 seconds - Good on Connection time
SMTP Open Relay OK - Not an open relay.
Does anyone has any idea about the possible cause of this receive delay.
Any suggestion would be greatly appreciated.
We are having a incoming mail delivery delays.
Environment (YYYYY.org.au):
Exchange 2013 CU3 with separate CAS and MBX roles
Windows 2012
Puremessage spam filtering on MBX server role
Allowed maximum attachment size to send/receive - 35 MB
Scenario:
1. Email works internally
2. Receiving and sending emails with out attachments is instantaneous to and from external parties.
3. Receiving emails with attachments from external senders (Ex: gmail) over 3 MB get delayed. Sometimes by 10-20 hours
4. Sending emails from the organization to external senders (Ex: gmail) with attachments over 3 MB is instantaneous.
So the problem we are facing is receiving emails with attachments from external senders. “Some” of these get delivered after long delays but many go missing.
Following is an email header analysis of a delayed message.
Hop Delay from by with time (UTC)
1 * 000s-ex-mbx-qs3.AAA.edu.au
2 * 000S-EX-HUB-NP2.AAA.edu.au
3 57 seconds 000s-ex-tmg-np2.AAA.edu.au
4 41 seconds CH1EHSMHS001.bigfish.com 10.43.68.231 mail13-ch1.bigfish.com ESMTP 3/6/2014 12:25:36 AM
5 3 seconds mail13-ch1 127.0.0.1 mail13-ch1 3/6/2014 12:25:39 AM
6 3 seconds mail13-ch1 127.0.0.1 mail13-ch1-R.bigfish.com ESMTP 3/6/2014 12:25:42 AM
7 0 seconds mail13-ch1-R.bigfish.com 10.43.68.246 CH1EHSOBE005.bigfish.com 10.43.70.55 Microsoft SMTP Server 3/6/2014 12:25:42 AM
8 20 hour ch1outboundpool.messaging.
9 2 minutes CAS01.YYYYY.org.au 10.0.100.211 MBX01.YYYYY.org.au 10.0.100.125 Microsoft SMTP Server (TLS) 3/6/2014 7:59:40 PM
10 * MBX01.YYYYY.org.au 10.0.100.125
If you notice , Hop number 8 took 20 hours to complete.
Test results form MX toolbox
Test Result
SMTP Transaction Time 5.881 seconds
SMTP Reverse Banner Check OK – YYY.YYY.YYY.YYY resolves to mail.YYYYY.org.au
SMTP Reverse DNS Mismatch OK - Reverse DNS matches SMTP Banner
SMTP TLS OK - Supports TLS.
SMTP Connection Time 1.092 seconds - Good on Connection time
SMTP Open Relay OK - Not an open relay.
Does anyone has any idea about the possible cause of this receive delay.
Any suggestion would be greatly appreciated.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Please state a reason for selecting your own comment as the solution.
Because no one else provide the solution.
Because no one else provide the solution.
Primary target for anything like this is always third party filtering services.
Remove it, reboot the server, test again. Disabling the product is NOT enough, you have to remove it to confirm it isn't the cause.
Simon.