Solved

Google Apps and on premise email

Posted on 2014-10-20
10
458 Views
Last Modified: 2014-11-16
Here is the scenario:
Client has a hosted Lotus Domino (makes no difference what email system it is at the back end) system that uses Google Apps as its email gateway (both ways)
Client has a number of 'team' groups setup with SMTP Addresses in Domino
When an external email account (say a customer) sends an email to one of these team groups, the members of the group receive the email.

Except, only the internal members are getting these emails. If, contained in one of these groups, is an external email address - say a consultant etc. the customer receives an NDR that states:
Delivery has failed to these recipients or groups:
user@recipient.com
A problem occurred while delivering this message to this email address. Try sending this message again. If the problem continues, please contact your helpdesk.
The following organization rejected your message: gmail-smtp-relay.l.google.COM.
Diagnostic information for administrators:
Generating server: webmail.clientdomain.com
user@recipient.com
gmail-smtp-relay.l.google.COM
Remote Server returned '<gmail-smtp-relay.l.google.COM #5.0.0 X-Notes; Error transferring to gmail-smtp-relay.l.goo gle.COM; SMTP Protocol Returned a Permanent Error 550 5.7.1 Invalid cr edentials for relay [client.server.ip.addr]. md8sm67683wjb.3 - gsmtp>'

Any one seen this before?

Thanks
Mark/
0
Comment
Question by:Mark Galvin
  • 5
  • 5
10 Comments
 
LVL 46

Expert Comment

by:Sjef Bosman
ID: 40393365
Are  you sure that Domino isn't involved? Just to make that 100% sure, can you verify that the server's log database does not contain references to mails received and rejected around thetimes that they were sent?
0
 
LVL 13

Author Comment

by:Mark Galvin
ID: 40393767
Our Domino consultant has checked. The Domino server is passing the email over the to the Google stack for processing.

What we  believing is taking place here is that the Google Stack believes that it is being used by the external sender as some kind of relay and thus blocking the email.

If an internal user then forwards the email that was received from user@recipient.com to the external consultant it is processed and received without issue.
0
 
LVL 46

Accepted Solution

by:
Sjef Bosman earned 500 total points
ID: 40395306
As suggested on this page: https://productforums.google.com/forum/#!msg/apps/U1ibc6cJQZI/ul3MRx1bLcwJ : contact Google's Support Department and let them fix the issue.

Does the Domino server do a login into Gmail? That setting can be found in Domino's Configuration Settings document for the server, under Router/SMTP, Basic, Use authentication when sending messages to the relay host.
0
Use Case: Protecting a Hybrid Cloud Infrastructure

Microsoft Azure is rapidly becoming the norm in dynamic IT environments. This document describes the challenges that organizations face when protecting data in a hybrid cloud IT environment and presents a use case to demonstrate how Acronis Backup protects all data.

 
LVL 13

Author Comment

by:Mark Galvin
ID: 40396310
Hi Sjef

Thats a good suggestion and we will try it. The Domino server currently doesnt log onto the Google App when relaying email and the NDR does state 'Invalid cr edentials for relay'.

If we turn this on, can we use any Google App account that is an admin?
0
 
LVL 46

Expert Comment

by:Sjef Bosman
ID: 40396329
Probably, not sure... But try, by all means. :-)
0
 
LVL 13

Author Comment

by:Mark Galvin
ID: 40406048
trying today.
0
 
LVL 13

Author Comment

by:Mark Galvin
ID: 40432153
Tried to use my Google Apps account (which is full admin) and then tested:
Delivery has failed to these recipients or groups:
user@recipient.com
A problem occurred while delivering this message to this email address. Try sending this message again. If the problem continues, please contact your helpdesk.
The following organization rejected your message: gmail-smtp-relay.l.google.COM.
Diagnostic information for administrators:
Generating server: webmail.clientdomain.com
user@recipient.com
gmail-smtp-relay.l.google.COM
Remote Server returned '<gmail-smtp-relay.l.google.COM #5.0.0 X-Notes; Error transferring to gmail-smtp-relay.l.goo gle.COM; SMTP Protocol Returned a Permanent Error>'

Just to recap here:
webmail.clientdomain.com = my clients mail server
user@recipient.com = the external consultants email address that is a member of an distribution group on the clients internal mail system

The error here is not as specific as the original error, where it stated the credentials were wrong. Now it doesn’t really give a 'real' error.
0
 
LVL 46

Expert Comment

by:Sjef Bosman
ID: 40432191
Where are the groups defined, in Google or in Domino?
0
 
LVL 13

Author Comment

by:Mark Galvin
ID: 40432244
The groups and their members are configured on the Domino server. All the distribution occurs there.

The SMTP address of the group is configured on the Google App side as all that occurs there is the mail filtering and then routing through to Domini.

Thanks
Mark
0
 
LVL 46

Expert Comment

by:Sjef Bosman
ID: 40432772
I hope you use the correct port to send mails to Google, see http://email.about.com/od/accessinggmail/f/Gmail_SMTP_Settings.htm

For outbound SMTP to a different provider, we use port 587 with Negotiated SSL, where the credentials are in the Configuration document.
0

Featured Post

PRTG Network Monitor: Intuitive Network Monitoring

Network Monitoring is essential to ensure that computer systems and network devices are running. Use PRTG to monitor LANs, servers, websites, applications and devices, bandwidth, virtual environments, remote systems, IoT, and many more. PRTG is easy to set up & use.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Having multiple API's on a site 10 39
Magento Email Addresses 5 26
QUEUED email in my exchange 2003 for unknown reasons... 7 41
Google profile picture 4 19
Learn about cloud computing and its benefits for small business owners.
Email signatures have numerous marketing benefits. Here are 8 top reasons to turn your email signature into a marketing channel.
This Micro Tutorial demonstrates the importance of annotations in Google Analytics and how they should be used to document changes made to a site, Google updates (Ex: Panda & Penguin), marketing campaigns, and any other events that might have contri…
In this Experts Exchange video Micro Tutorial, I'm going to show how small business owners who use Google Apps can save money by setting up what is called a catch-all email address in their Gmail accounts. By using the catch-all feature, small busin…

773 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question