Solved

I get an 544 server requires PTR for unauthenticated connectors.

Posted on 2014-10-22
8
289 Views
Last Modified: 2014-11-13
I am using HP insight to monitor my servers. I am ruining MailEnable as my serve. when I sent a test email from my Insight application The email is never received.  I track the message from my email server and I get the following message
"554 This server requires PTR for unauthenticated connections". So the email is getting to my email server but is not not sending it to the inbox of the recipient Please advise
0
Comment
Question by:pdperkins
  • 4
  • 4
8 Comments
 
LVL 32

Expert Comment

by:aleghart
ID: 40398049
It seems the error message is telling you exactly what to do:

1. authenticate before sending
--or--
2. create a PTR record in DNS for the host attempting to connect

The mail is _not_ making it to your server, therefore it is not a problem routing and delivering to the user's Inbox.

The SMTP connection is dropped before ever receiving the data.
0
 

Author Comment

by:pdperkins
ID: 40399119
I have checked the PTR records in DNS and they are all there. When I trace the email here is what I get
"
Trace: Tracing message with Message ID [ED5BF750E67042E6B06F2DC701C60D56.MAI] from the SMTP Inbound Queue

Result: [ED5BF750E67042E6B06F2DC701C60D56.MAI] was not routed from the SMTP inbound message queue by the local MTA Service.
SMTP Debug log matches:


Virus filter log matches:
Error with reading log file C:\Program Files (x86)\Mail Enable\LOGGING\MTA\MEAVGEN-Report-141023.log. Error Could not find file 'C:\Program Files (x86)\Mail Enable\LOGGING\MTA\MEAVGEN-Report-141023.log'.

Important: Message ID [ED5BF750E67042E6B06F2DC701C60D56.MAI] has not been routed through MailEnable queues. Check the log details for the reason. If in a cluster you will need to check each cluster server log files.

Status: SMTP Inbound transaction details for Message ID [ED5BF750E67042E6B06F2DC701C60D56.MAI] follow below:
10/23/14 07:10:09      SMTP-IN      ED5BF750E67042E6B06F2DC701C60D56.MAI      216      192.168.0.1                  220 mail.americare.net ESMTP MailEnable Service, Version: 8.50-8.50- ready at 10/23/14 07:10:09      0      0            
10/23/14 07:10:09      SMTP-IN      ED5BF750E67042E6B06F2DC701C60D56.MAI      216      192.168.0.1      HELO      HELO AMC-AVSA.americare.net      250 Requested mail action okay, completed      43      29            
10/23/14 07:10:09      SMTP-IN      ED5BF750E67042E6B06F2DC701C60D56.MAI      216      192.168.0.1      MAIL      MAIL FROM:<hpinsight@americare.net>      250 Requested mail action okay, completed      43      37            
10/23/14 07:10:09      SMTP-IN      ED5BF750E67042E6B06F2DC701C60D56.MAI      216      192.168.0.1      RCPT      RCPT TO:<paul@americare.net>      554 This server requires PTR for unauthenticated connections.      63      30            
10/23/14 07:10:09      SMTP-IN      ED5BF750E67042E6B06F2DC701C60D56.MAI      216      192.168.0.1      DATA      DATA      503 Bad sequence of commands. You must specify the recipients of a message before you can send it      99      6            
10/23/14 07:10:09      SMTP-IN      ED5BF750E67042E6B06F2DC701C60D56.MAI      216      192.168.0.1      QUIT      QUIT      221 Service closing transmission channel      42      6
0
 
LVL 32

Expert Comment

by:aleghart
ID: 40399526
Is this using a LAN connection?  Which device is using 192.168.0.1?

If this is the inside interface for the mail server, then it must be pointed to an internal DNS server, and place PTR records there for the private subnet 192.168.0.x for the HP service "AMC-AVSA.americare.net".

If you're pointing to an outside DNS server and PTR record, it won't have your private (192.168..) address.

Alternative, if you can't sort out the PTR and HELO, is to authenticate the SMTP session with user credentials.
0
Back Up Your Microsoft Windows Server®

Back up all your Microsoft Windows Server – on-premises, in remote locations, in private and hybrid clouds. Your entire Windows Server will be backed up in one easy step with patented, block-level disk imaging. We achieve RTOs (recovery time objectives) as low as 15 seconds.

 

Author Comment

by:pdperkins
ID: 40400090
this is a Lan connection. The device connected to 192.168.0.1 is the Default Vlan1 lan connection on my router.
I have checked the PTR records and they are correct
0
 
LVL 32

Expert Comment

by:aleghart
ID: 40400179
What is the MailEnable product using for DNS?  Internal server or external?

How did you check the PTR records?  Did you create them internally, or externally with the owner/admin of the netblock?

If you create internal PTR records, but the mail server is resolving to an external DNS server, then it will fail PTR resolution.
0
 

Author Comment

by:pdperkins
ID: 40412936
The DNS is on internal servers. The PTR records I created as admin.
0
 
LVL 32

Accepted Solution

by:
aleghart earned 500 total points
ID: 40413418
I'm not clear on your topology and addressing.  Could you provide a drawing?

If the SMTP relay is logging your HP Insight service with an IP of 192.168.0.1, then something's not right.  Your Insight service should have it's own IP address.  If it's in the same LAN as the SMTP relay, then you should see the IP in the logs.

What are the IP addresses if the Insight service and the SMTP relay?  And how are they connected?
0
 

Author Closing Comment

by:pdperkins
ID: 40440856
gave me enough ideas to resolve
Thanks
0

Featured Post

The Eight Noble Truths of Backup and Recovery

How can IT departments tackle the challenges of a Big Data world? This white paper provides a roadmap to success and helps companies ensure that all their data is safe and secure, no matter if it resides on-premise with physical or virtual machines or in the cloud.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Radius ASA Authentication Failed 4 72
7 camera surveillance system hacked 6 52
Creating a Vendor Admin user 23 52
Upgrade BIOS / EUFI at Scale 4 34
Examines three attack vectors, specifically, the different types of malware used in malicious attacks, web application attacks, and finally, network based attacks.  Concludes by examining the means of securing and protecting critical systems and inf…
This article outlines the process to identify and resolve account lockout in an Active Directory environment.
This is used to tweak the memory usage for your computer, it is used for servers more so than workstations but just be careful editing registry settings as it may cause irreversible results. I hold no responsibility for anything you do to the regist…
Sending a Secure fax is easy with eFax Corporate (http://www.enterprise.efax.com). First, Just open a new email message.  In the To field, type your recipient's fax number @efaxsend.com. You can even send a secure international fax — just include t…

770 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question