Solved

Corporate email is failing intermitently for one user when sending to recipients in other countries from the US

Posted on 2014-12-03
9
116 Views
Last Modified: 2015-03-12
Hello - we have a corporate Exchange 2010 server with about 100 users.  One user is experiencing international email problems for the past couple weeks with email bouncing back to her.  She experiences no problems with domestic recipients, however.  It is also an intermittent issue - sometimes the message to an international recipient will work, while other times it is timing out.  This happens with multiple recipients from different domains, as well.  There appears to be no pattern, as of yet.  there have been multiple failures just this morning.  Not sure how to troubleshoot, but here is the common error between them:

1st MESSAGE:   mfavilli@uol.com.br (mfavilli@uol.com.br) <mailto:mfavilli@uol.com.br>
The server has tried to deliver this message, without success, and has stopped trying. Please try sending this message again. If the problem continues, contact your helpdesk.
#550 4.4.7 QUEUE.Expired; message expired ##

2nd MESSAGE:  contact@qedpackers.com
#554 5.4.4 SMTPSEND.DNS.NonExistentDomain; nonexistent domain ##

3rd MESSAGE:  稲垣慶三 (k.inagaki@lamerco.com) <mailto:k.inagaki@lamerco.com>
The server has tried to deliver this message, without success, and has stopped trying. Please try sending this message again. If the problem continues, contact your helpdesk.

Diagnostic information for administrators:
Generating server: EXCHANGE.lacoinc1.local
k.inagaki@lamerco.com
#550 4.4.7 QUEUE.Expired; message expired ##

4th MESSAGE:  Delivery is delayed to these recipients or groups:

mba@sigma-medical.com.tw

Katherine <mailto:Katherine@sigma-medical.com.tw>

Subject: RE: po#20140521003 please pull in shipping schedule

This message hasn't been delivered yet. Delivery will continue to be attempted.
0
Comment
Question by:Damian_Gardner
  • 6
  • 3
9 Comments
 
LVL 63

Expert Comment

by:Simon Butler (Sembee)
ID: 40479668
The location of the recipient shouldn't matter.
Do any others on the same server send to the same domains correctly?
Does the problem continue if used from OWA?

The messages are simply timeouts or queued messages, the NDRs are close to useless. You need to look in your queue viewer to see what is going on when the messages are queued.

Simon.
0
 

Author Comment

by:Damian_Gardner
ID: 40480708
Hi Simon - I don't know about other users sending, so I will try sending tests myself, as another user.  Didn't realize the NDRs are useless.  I'll watch the queue viewer then and report back what I see.  thank you
0
 

Author Comment

by:Damian_Gardner
ID: 40480712
By the way - I assume I need to watch the queue AS the email is being sent, correct?  there's nothing logged in it? it's real time, I assume
0
PRTG Network Monitor: Intuitive Network Monitoring

Network Monitoring is essential to ensure that computer systems and network devices are running. Use PRTG to monitor LANs, servers, websites, applications and devices, bandwidth, virtual environments, remote systems, IoT, and many more. PRTG is easy to set up & use.

 
LVL 63

Expert Comment

by:Simon Butler (Sembee)
ID: 40481241
The NDRs you have posted are timeouts. Therefore the message will be in the queue until the timeout has been reached - which is 48 hours by default. You don't need to watch it in real time.

However if the end user is getting back an immediately failure, then that can indicate a different problem.

Simon.
0
 

Author Comment

by:Damian_Gardner
ID: 40481244
Ok - so I did some tests and watched the queue.  For the first one on my list, it looks like the receiving server is doing a reverse lookup and it's not finding our hostname.  Here's the error:

Last Error: 450 4.7.1 Client host rejected: cannot find your hostname, [12.161.143.57]

The FQDN I have in my receive connector is EXCHANGE.LACOINC1.LOCAL, which I believe the server setup itself, on it's own.  Not sure how to be sure what it has to be to satisfy the reverse lookup.
0
 

Author Comment

by:Damian_Gardner
ID: 40481785
well - from what I'm seeing, it has something to do with one of two things.  Based on the results from NSLookup when I check the IP address reported in the rejection notification in the message queue (12.161.143.57 - which is the IP address of our ASA firewall gateway), it SEEMS like the FQDN the recipients server is looking for is the name of our OLD Exchange server from months ago (we migrated from "lacomail" to "exchange" server names early this year.  Strange thing is that nobody has complained about email trouble until just recently.  But the result of the NSLookup clearly shows that server name:

> set type=ptr
> 12.161.143.57
Server:  lacoad1.lacoinc1.local
Address:  192.168.1.9

Non-authoritative answer:
57.143.161.12.in-addr.arpa      canonical name = 57.48/28.143.161.12.in-addr.arp
a
57.48/28.143.161.12.in-addr.arpa        name = lacomail.laco.com


The OTHER thing it might be - and I'm not sure on this - is the rejection error from the recipient server states "cannot find your hostname"....which would be the actual name of our email server "EXCHANGE". Our DNS records show a PTR record for EXCHANGE = 12.161.143.51, which is it's own unique IP address, and this is the public address our email server has had for years.  the name was changed, as mentioned, from LACOMAIL to EXCHANGE about 8 months ago.  So - not sure if I need to change the EXCHANGE PTR record to match the .57 address, or what.

thanks for your help
0
 
LVL 63

Accepted Solution

by:
Simon Butler (Sembee) earned 500 total points
ID: 40481961
You need to do two things.

1. Ensure that the FQDN on the send connector matches the external PTR on the IP address.
2. Ensure the PTR (aka reverse DNS) has a matching A record.

The real name of the Exchange server doesn't matter, as long as the DNS records all match up.

Poor configuration of the remote servers though - it would have been helpful to NDR the message back immediately with that text rather than doing a temporary failure and then causing the messages to timeout instead.

Simon.
0
 

Author Comment

by:Damian_Gardner
ID: 40487252
Sorry for the late response.  Let me check these two points, and let you know.

thanks Simon - I appreciate your help
0
 

Author Comment

by:Damian_Gardner
ID: 40661231
Apologize for forgetting to check back.  We found it was a DNS problem with our server IP address.  Thank you for your help.
0

Featured Post

PRTG Network Monitor: Intuitive Network Monitoring

Network Monitoring is essential to ensure that computer systems and network devices are running. Use PRTG to monitor LANs, servers, websites, applications and devices, bandwidth, virtual environments, remote systems, IoT, and many more. PRTG is easy to set up & use.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Find out what you should include to make the best professional email signature for your organization.
This article explains how to install and use the NTBackup utility that comes with Windows Server.
how to add IIS SMTP to handle application/Scanner relays into office 365.
This video shows how to quickly and easily add an email signature for all users on Exchange 2016. The resulting signature is applied on a server level by Exchange Online. The email signature template has been downloaded from: www.mail-signatures…

828 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question