Still celebrating National IT Professionals Day with 3 months of free Premium Membership. Use Code ITDAY17

x
?
Solved

Exchange 2010 Server unable to relay 550 5.7.1 from external users

Posted on 2014-03-10
13
Medium Priority
?
1,278 Views
Last Modified: 2014-03-16
Emails sent from external clients to my exchange server 2010 box are getting "unable to relay 550 5.7.1" I have all the proper permissions in the receive connectors. Default receive connector I have anonymous users, Exchange users, Exchange servers etc, if the domain is .local this should not matter correct ?
0
Comment
Question by:precisionit
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
13 Comments
 
LVL 63

Expert Comment

by:Simon Butler (Sembee)
ID: 39917835
Are you sure the response is coming from your server?
Anonymous only is all that you need to have enabled on the Receive Connector. The public domain must be listed on the Accepted Domains list.

The WINDOWS domain being .local is fine, Exchange doesn't really care.

Simon.
0
 
LVL 9

Expert Comment

by:Ahmed786
ID: 39917837
Below article would be helpful written by Paul Cunningham.

http://exchangeserverpro.com/how-to-configure-a-relay-connector-for-exchange-server-2010/
0
 
LVL 9

Expert Comment

by:Ahmed786
ID: 39917869
Are you able to send email to external users from your exchange organization ?

You mean to say that other external user say hotmail or yahoo mail id are not able to send you email and they get error 550 5.7.1 as an NDR ?
0
Office 365 Training for IT Pros

Learn how to provision tenants, synchronize on-premise Active Directory, implement Single Sign-On, customize Office deployment, and protect your organization with eDiscovery and DLP policies.  Only from Platform Scholar.

 
LVL 9

Expert Comment

by:Ahmed786
ID: 39917917
If external users are getting error while sending email to your organization then the problem is from there end, they need to set proper setting in receive connector.
0
 

Author Comment

by:precisionit
ID: 39917920
Yes I am able to send to external user's but users are getting bounce backs for example if I send from gmail or another exchange organization.
0
 

Author Comment

by:precisionit
ID: 39917930
This is what external users are getting

Technical details of permanent failure:
 Google tried to deliver your message, but it was rejected by the server for the recipient domain companyname.com by mail.companyname.com. [71.187.215.41].

 The error that the other server returned was:
 550 5.7.1 Unable to relay
0
 
LVL 5

Expert Comment

by:Arjun Vyavahare
ID: 39917968
Can you please try to verify MX using below URL:
http://www.zmailer.org/mxverify.html

If you get error message then it seems that there is issue with your MX Record.

Request you to share us the output.

Regards,
Arjun
0
 

Author Comment

by:precisionit
ID: 39918576
I forgot to mention that I can receive internally if I email from inside the domain, I can only send to external domains.
0
 
LVL 9

Expert Comment

by:Ahmed786
ID: 39920130
Are you using any firewall in your network which is faced to the internet, that might be causing the problem.

You may refer microsoft article on how to Configure Internet Mail Flow Directly Through a Hub Transport Server

http://technet.microsoft.com/en-us/library/bb738138.aspx
0
 
LVL 8

Expert Comment

by:thomasdavis
ID: 39920259
Test inbound SMTP https://testconnectivity.microsoft.com/ and post results.

You can also test your email server here http://mxtoolbox.com/SuperTool.aspx?action=smtp%3a&run=networktools

Do you have a receive connector in the server config hub transport to accept traffic from port 25.
Do you have receive mail from remote servers 0.0.0.0-255.255.255.255?
Then check your permission groups. Who has permission to connect to this receive connector? Anonymous users?
0
 

Accepted Solution

by:
precisionit earned 0 total points
ID: 39920261
Okay so I figured out a solution, I am posting this so the other guy does not have to spend hours trying to figure this out.
The problem was that the domain was changed from .com to .local, somehow this caused DNS issues and relay to anonymous did not work also.
I was able to fix by PowerShell with the below command.

Get-ReceiveConnector “relay” | Add-ADPermission -User “NT AUTHORITY\ANONYMOUS LOGON” -ExtendedRights “ms-Exch-SMTP-Accept-Any-Recipient”

"relay" should be replaced by the name of your connector.

Tested it and I was able to receive emails from gmail, Hotmail and external Exchange.
0
 
LVL 9

Expert Comment

by:Ahmed786
ID: 39920290
The above command was present in my first link provide above in the

If you scroll down to that article you can find below as

Scott Granado says:
October 8, 2013 at 2:36 pm
no no no… just because this works, its not the right way to do it… Please see: http://technet.microsoft.com/en-us/library/bb232021(v=exchg.141).aspx

Make the change in the Exchange Shell to allow relay for anon user:
Get-ReceiveConnector “Anonymous Relay” | Add-ADPermission -User “NT AUTHORITY\ANONYMOUS LOGON” -ExtendedRights “Ms-Exch-SMTP-Accept-Any-Recipient”

The issue could be due to numerous things but we have to go step wise just to make sure it works and doesn't harm anything in future.
0
 

Author Closing Comment

by:precisionit
ID: 39932363
Because It requires powershell.
0

Featured Post

What does it mean to be "Always On"?

Is your cloud always on? With an Always On cloud you won't have to worry about downtime for maintenance or software application code updates, ensuring that your bottom line isn't affected.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

In-place Upgrading Dirsync to Azure AD Connect
New style of hardware planning for Microsoft Exchange server.
In this video we show how to create an Accepted Domain in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Mail Flow >> Ac…
To add imagery to an HTML email signature, you have two options available to you. You can either add a logo/image by embedding it directly into the signature or hosting it externally and linking to it. The vast majority of email clients display l…

705 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question