Exchange 2010 - IP Allow List Not Working

Posted on 2014-07-11
Last Modified: 2014-10-18
I have two Exchange 2010 servers I manage at different clients where I'm experiencing the same problem. The Exchange anti-spam is enabled on both servers in question. What's occurring is, email sent from specific domains is being rejected regardless of the fact that I have the IP Allow List enabled on each with the sending IP of the problem email domain listed. Despite the IP's appearing in IP Allow List, the server continues to block the messages. I have double verified that both the IP Allow List is enabled and that I have the correct IP addresses listed. I know it's Exchange blocking the messages after reviewing the transport logs where the reason for rejection states, "550 5.7.1 Sender ID (PRA) Domain Does Not Exist." I do have Sender ID enabled and verified that the email domain of this specific sender does not have a SPF record created so it makes perfect sense that the Sender ID test would fail and reject the message aside from the fact that I have it on the IP Allow List. I'm not sure if something is possibly taken precedence over the IP Allow List? I could disable the Sender ID but I'd prefer to know what's causing the issue.

Thanks in advance!
Question by:Danstr1
    LVL 12

    Expert Comment

    by:Michael Machie
    An email can come from multiple different IPs from the same Domain. For instance, a remote User would not have the same IP when working remotely (unless using a Proxy on that IP), but will have the same Domain info. I would attempt to add the entire Domain name to your Safe Sender's List and see how that goes. This will allow anything from that @Domain to pass through regardless of the IP Allow used.

    Author Comment

    The sending IP has remained consistent when I reviewed the transport logs. However, I did add the domain itself to the whitelist in Exchange by performing the steps below. After doing so, email messages are still being blocked. Error message in transport logs states Sender ID as the reason for the failure. I don't understand why Exchange continues to block the emails in questions!?

    Set-ContentFilterConfig –BypassedSenderDomain (“,”)

    Accepted Solution

    I ended resolving the issue by disabling the Sender ID filtering in the built-in Exchange anti-spam.  I was hesitant to do so but I do have additional spam mechanisms in place. I still confused as to why the messages in question were continuing to be filtered despite the fact that I had included them in the safe sender's list as well as their domain in the bypassed sender domain. The issue really was on their end since they didn't have SPF records created which is why the messages were being blocked in the first place. We just need a means from time to time to allow specific email domains through since a fair amount of the companies we interact with have limited if any IT support.
    LVL 12

    Expert Comment

    by:Michael Machie
    Sounds like you found the fix. You should close this question as solved by yourself.

    Author Closing Comment

    The is really more of a workaround than a solution.

    Featured Post

    The problems with reply email signatures

    Do you wish that you could place an email signature under a reply? Well, unfortunately, you can't. That great Exchange/Office 365 signature you've created will just appear at the bottom of an email chain. What a pain! Is there really no way to solve this? Well, there might be...

    Join & Write a Comment

    Create high volume marketing opportunities using email signatures with these top 10 DOs and DON'Ts of email signature marketing.
    Use these top 10 tips to master the art of email signature design. Create an email signature design that will easily wow recipients, promote your brand and highlight your professionalism.
    In this video we show how to create a Resource Mailbox in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: Navigate to the Recipients >> Resources tab.: "Recipients" is our default selection …
    To show how to create a transport rule in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Mail Flow >> Rules tab.:  To cr…

    746 members asked questions and received personalized solutions in the past 7 days.

    Join the community of 500,000 technology professionals and ask your questions.

    Join & Ask a Question

    Need Help in Real-Time?

    Connect with top rated Experts

    15 Experts available now in Live!

    Get 1:1 Help Now