Solved

Corporate email is failing intermitently for one user when sending to recipients in other countries from the US

Posted on 2014-12-03
9
120 Views
Last Modified: 2015-03-12
Hello - we have a corporate Exchange 2010 server with about 100 users.  One user is experiencing international email problems for the past couple weeks with email bouncing back to her.  She experiences no problems with domestic recipients, however.  It is also an intermittent issue - sometimes the message to an international recipient will work, while other times it is timing out.  This happens with multiple recipients from different domains, as well.  There appears to be no pattern, as of yet.  there have been multiple failures just this morning.  Not sure how to troubleshoot, but here is the common error between them:

1st MESSAGE:   mfavilli@uol.com.br (mfavilli@uol.com.br) <mailto:mfavilli@uol.com.br>
The server has tried to deliver this message, without success, and has stopped trying. Please try sending this message again. If the problem continues, contact your helpdesk.
#550 4.4.7 QUEUE.Expired; message expired ##

2nd MESSAGE:  contact@qedpackers.com
#554 5.4.4 SMTPSEND.DNS.NonExistentDomain; nonexistent domain ##

3rd MESSAGE:  稲垣慶三 (k.inagaki@lamerco.com) <mailto:k.inagaki@lamerco.com>
The server has tried to deliver this message, without success, and has stopped trying. Please try sending this message again. If the problem continues, contact your helpdesk.

Diagnostic information for administrators:
Generating server: EXCHANGE.lacoinc1.local
k.inagaki@lamerco.com
#550 4.4.7 QUEUE.Expired; message expired ##

4th MESSAGE:  Delivery is delayed to these recipients or groups:

mba@sigma-medical.com.tw

Katherine <mailto:Katherine@sigma-medical.com.tw>

Subject: RE: po#20140521003 please pull in shipping schedule

This message hasn't been delivered yet. Delivery will continue to be attempted.
0
Comment
Question by:Damian_Gardner
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 6
  • 3
9 Comments
 
LVL 63

Expert Comment

by:Simon Butler (Sembee)
ID: 40479668
The location of the recipient shouldn't matter.
Do any others on the same server send to the same domains correctly?
Does the problem continue if used from OWA?

The messages are simply timeouts or queued messages, the NDRs are close to useless. You need to look in your queue viewer to see what is going on when the messages are queued.

Simon.
0
 

Author Comment

by:Damian_Gardner
ID: 40480708
Hi Simon - I don't know about other users sending, so I will try sending tests myself, as another user.  Didn't realize the NDRs are useless.  I'll watch the queue viewer then and report back what I see.  thank you
0
 

Author Comment

by:Damian_Gardner
ID: 40480712
By the way - I assume I need to watch the queue AS the email is being sent, correct?  there's nothing logged in it? it's real time, I assume
0
Office 365 Training for Admins - 7 Day Trial

Learn how to provision tenants, synchronize on-premise Active Directory, implement Single Sign-On, customize Office deployment, and protect your organization with eDiscovery and DLP policies.  Only from Platform Scholar.

 
LVL 63

Expert Comment

by:Simon Butler (Sembee)
ID: 40481241
The NDRs you have posted are timeouts. Therefore the message will be in the queue until the timeout has been reached - which is 48 hours by default. You don't need to watch it in real time.

However if the end user is getting back an immediately failure, then that can indicate a different problem.

Simon.
0
 

Author Comment

by:Damian_Gardner
ID: 40481244
Ok - so I did some tests and watched the queue.  For the first one on my list, it looks like the receiving server is doing a reverse lookup and it's not finding our hostname.  Here's the error:

Last Error: 450 4.7.1 Client host rejected: cannot find your hostname, [12.161.143.57]

The FQDN I have in my receive connector is EXCHANGE.LACOINC1.LOCAL, which I believe the server setup itself, on it's own.  Not sure how to be sure what it has to be to satisfy the reverse lookup.
0
 

Author Comment

by:Damian_Gardner
ID: 40481785
well - from what I'm seeing, it has something to do with one of two things.  Based on the results from NSLookup when I check the IP address reported in the rejection notification in the message queue (12.161.143.57 - which is the IP address of our ASA firewall gateway), it SEEMS like the FQDN the recipients server is looking for is the name of our OLD Exchange server from months ago (we migrated from "lacomail" to "exchange" server names early this year.  Strange thing is that nobody has complained about email trouble until just recently.  But the result of the NSLookup clearly shows that server name:

> set type=ptr
> 12.161.143.57
Server:  lacoad1.lacoinc1.local
Address:  192.168.1.9

Non-authoritative answer:
57.143.161.12.in-addr.arpa      canonical name = 57.48/28.143.161.12.in-addr.arp
a
57.48/28.143.161.12.in-addr.arpa        name = lacomail.laco.com


The OTHER thing it might be - and I'm not sure on this - is the rejection error from the recipient server states "cannot find your hostname"....which would be the actual name of our email server "EXCHANGE". Our DNS records show a PTR record for EXCHANGE = 12.161.143.51, which is it's own unique IP address, and this is the public address our email server has had for years.  the name was changed, as mentioned, from LACOMAIL to EXCHANGE about 8 months ago.  So - not sure if I need to change the EXCHANGE PTR record to match the .57 address, or what.

thanks for your help
0
 
LVL 63

Accepted Solution

by:
Simon Butler (Sembee) earned 500 total points
ID: 40481961
You need to do two things.

1. Ensure that the FQDN on the send connector matches the external PTR on the IP address.
2. Ensure the PTR (aka reverse DNS) has a matching A record.

The real name of the Exchange server doesn't matter, as long as the DNS records all match up.

Poor configuration of the remote servers though - it would have been helpful to NDR the message back immediately with that text rather than doing a temporary failure and then causing the messages to timeout instead.

Simon.
0
 

Author Comment

by:Damian_Gardner
ID: 40487252
Sorry for the late response.  Let me check these two points, and let you know.

thanks Simon - I appreciate your help
0
 

Author Comment

by:Damian_Gardner
ID: 40661231
Apologize for forgetting to check back.  We found it was a DNS problem with our server IP address.  Thank you for your help.
0

Featured Post

Is Your DevOps Pipeline Leaking?

Is your CI/CD pipeline a hodge-podge of randomly connected tools? You’ve likely got a tool to fix one problem & then a different tool to fix another, resulting in a cluster of tools with overlapping functionality. Learn how to optimize your pipeline with Gartner's recommendations

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Lotus Notes – formerly IBM Notes – is an email client application, while IBM Domino (earlier Lotus Domino) is an email server. The client possesses a set of features that are even more advanced as compared to that of Outlook. Likewise, IBM Domino is…
Pop culture is prime bait for hackers seeking to infect user’s computers and mobile devices with malicious malware. Hackers know exactly what the latest trends are online and know how to use them to their advantage.
With Secure Portal Encryption, the recipient is sent a link to their email address directing them to the email laundry delivery page. From there, the recipient will be required to enter a user name and password to enter the page. Once the recipient …
Nobody understands Phishing better than an anti-spam company. That’s why we are providing Phishing Awareness Training to our customers. According to a report by Verizon, only 3% of targeted users report malicious emails to management. With compan…

751 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question