Solved

I get an 544 server requires PTR for unauthenticated connectors.

Posted on 2014-10-22
8
292 Views
Last Modified: 2014-11-13
I am using HP insight to monitor my servers. I am ruining MailEnable as my serve. when I sent a test email from my Insight application The email is never received.  I track the message from my email server and I get the following message
"554 This server requires PTR for unauthenticated connections". So the email is getting to my email server but is not not sending it to the inbox of the recipient Please advise
0
Comment
Question by:pdperkins
  • 4
  • 4
8 Comments
 
LVL 32

Expert Comment

by:aleghart
ID: 40398049
It seems the error message is telling you exactly what to do:

1. authenticate before sending
--or--
2. create a PTR record in DNS for the host attempting to connect

The mail is _not_ making it to your server, therefore it is not a problem routing and delivering to the user's Inbox.

The SMTP connection is dropped before ever receiving the data.
0
 

Author Comment

by:pdperkins
ID: 40399119
I have checked the PTR records in DNS and they are all there. When I trace the email here is what I get
"
Trace: Tracing message with Message ID [ED5BF750E67042E6B06F2DC701C60D56.MAI] from the SMTP Inbound Queue

Result: [ED5BF750E67042E6B06F2DC701C60D56.MAI] was not routed from the SMTP inbound message queue by the local MTA Service.
SMTP Debug log matches:


Virus filter log matches:
Error with reading log file C:\Program Files (x86)\Mail Enable\LOGGING\MTA\MEAVGEN-Report-141023.log. Error Could not find file 'C:\Program Files (x86)\Mail Enable\LOGGING\MTA\MEAVGEN-Report-141023.log'.

Important: Message ID [ED5BF750E67042E6B06F2DC701C60D56.MAI] has not been routed through MailEnable queues. Check the log details for the reason. If in a cluster you will need to check each cluster server log files.

Status: SMTP Inbound transaction details for Message ID [ED5BF750E67042E6B06F2DC701C60D56.MAI] follow below:
10/23/14 07:10:09      SMTP-IN      ED5BF750E67042E6B06F2DC701C60D56.MAI      216      192.168.0.1                  220 mail.americare.net ESMTP MailEnable Service, Version: 8.50-8.50- ready at 10/23/14 07:10:09      0      0            
10/23/14 07:10:09      SMTP-IN      ED5BF750E67042E6B06F2DC701C60D56.MAI      216      192.168.0.1      HELO      HELO AMC-AVSA.americare.net      250 Requested mail action okay, completed      43      29            
10/23/14 07:10:09      SMTP-IN      ED5BF750E67042E6B06F2DC701C60D56.MAI      216      192.168.0.1      MAIL      MAIL FROM:<hpinsight@americare.net>      250 Requested mail action okay, completed      43      37            
10/23/14 07:10:09      SMTP-IN      ED5BF750E67042E6B06F2DC701C60D56.MAI      216      192.168.0.1      RCPT      RCPT TO:<paul@americare.net>      554 This server requires PTR for unauthenticated connections.      63      30            
10/23/14 07:10:09      SMTP-IN      ED5BF750E67042E6B06F2DC701C60D56.MAI      216      192.168.0.1      DATA      DATA      503 Bad sequence of commands. You must specify the recipients of a message before you can send it      99      6            
10/23/14 07:10:09      SMTP-IN      ED5BF750E67042E6B06F2DC701C60D56.MAI      216      192.168.0.1      QUIT      QUIT      221 Service closing transmission channel      42      6
0
 
LVL 32

Expert Comment

by:aleghart
ID: 40399526
Is this using a LAN connection?  Which device is using 192.168.0.1?

If this is the inside interface for the mail server, then it must be pointed to an internal DNS server, and place PTR records there for the private subnet 192.168.0.x for the HP service "AMC-AVSA.americare.net".

If you're pointing to an outside DNS server and PTR record, it won't have your private (192.168..) address.

Alternative, if you can't sort out the PTR and HELO, is to authenticate the SMTP session with user credentials.
0
Surfing Is Meant To Be Done Outdoors

Featuring its rugged IP67 compliant exterior and delivering broad, fast, and reliable Wi-Fi coverage, the AP322 is the ideal solution for the outdoors. Manage this AP with either a Firebox as a gateway controller, or with the Wi-Fi Cloud for an expanded set of management features

 

Author Comment

by:pdperkins
ID: 40400090
this is a Lan connection. The device connected to 192.168.0.1 is the Default Vlan1 lan connection on my router.
I have checked the PTR records and they are correct
0
 
LVL 32

Expert Comment

by:aleghart
ID: 40400179
What is the MailEnable product using for DNS?  Internal server or external?

How did you check the PTR records?  Did you create them internally, or externally with the owner/admin of the netblock?

If you create internal PTR records, but the mail server is resolving to an external DNS server, then it will fail PTR resolution.
0
 

Author Comment

by:pdperkins
ID: 40412936
The DNS is on internal servers. The PTR records I created as admin.
0
 
LVL 32

Accepted Solution

by:
aleghart earned 500 total points
ID: 40413418
I'm not clear on your topology and addressing.  Could you provide a drawing?

If the SMTP relay is logging your HP Insight service with an IP of 192.168.0.1, then something's not right.  Your Insight service should have it's own IP address.  If it's in the same LAN as the SMTP relay, then you should see the IP in the logs.

What are the IP addresses if the Insight service and the SMTP relay?  And how are they connected?
0
 

Author Closing Comment

by:pdperkins
ID: 40440856
gave me enough ideas to resolve
Thanks
0

Featured Post

Industry Leaders: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

The related questions "How do I recover the passwords for my Q-See DVR" and "How can I reset my Q-See DVR to eliminate a password" are seen several times a week.  Here we discuss the grim reality of the situation.
There's a lot of hype surrounding blockchain technology. Here's how it works and some of the novel ways it' s now being used - including for data protection.
With the power of JIRA, there's an unlimited number of ways you can customize it, use it and benefit from it. With that in mind, there's bound to be things that I wasn't able to cover in this course. With this summary we'll look at some places to go…
With Secure Portal Encryption, the recipient is sent a link to their email address directing them to the email laundry delivery page. From there, the recipient will be required to enter a user name and password to enter the page. Once the recipient …

756 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question