Solved

Issue in Exchange server 2013 send /receive

Posted on 2015-02-23
9
482 Views
Last Modified: 2015-03-03
HI,
I have setup an exchange server 2013 cu7 on Windows 2012 R2 Standard.
I have seperate AD server running on the same OS mentioned above.

My Exchange installation was fine but aster installation i couldn't send and receive email from outside. Internal is working fine.

When i send to couple of external email ids like gmail i am getting error like
mx.google.com rejected your message to the following email addresses:

Your message wasn't delivered due to a permission or security issue. It may have been rejected by a moderator, the address may only accept email from certain senders, or another restriction may be preventing delivery.

mx.google.com gave this error:
[86.98.5.254 12] Our system has detected that this message is likely unsolicited mail. To reduce the amount of spam sent to Gmail, this message has been blocked. Please visit http://support.google.com/mail/bin/answer.py?hl=en&answer=188131 for more information. qu4si7170968pbb.17 - gsmtp


Couple of emails are qued up and not sending.

Also  when i send email to my exchange user i am not receiving.

I tried Microsoft remote connectivty analyser and i am getting the error.

      Testing TCP port 25 on host mail.atomoptions.ae to ensure it's listening and open.
       The specified port is either blocked, not listening, or not producing the expected response.


I am using a fortigate firewall and using fortigate dyndns.
The domain is from 1and1 and i created the mx recored and it is pointing to the firewall.

I also done the port forwarding also.

Please help me in resolving the issue.


Thanks
Raneesh.A
0
Comment
Question by:Raneesh A
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
9 Comments
 
LVL 19

Expert Comment

by:Kash
ID: 40625654
have you got port 25 open on the firewall and nating/pointing to the exchange ?

are you able to send emails at all i.e: apart from google, have you tried sending to any other recipient. are you getting the same error message
0
 

Author Comment

by:Raneesh A
ID: 40625717
yes i have allowed all port to the exchange ip including nat..
i tried to send to another domain and is stuck in mail queue.
0
 
LVL 10

Expert Comment

by:nashiooka
ID: 40625774
The NDR was generated by Google, there for the mail did get sent and was bounced from outside your organization.  Therefore it's not likely to be a firewall issue.  It looks like Google thinks it's SPAM.  You could try hot mail or yahoo etc...  This would tell you a lot.
0
Complete VMware vSphere® ESX(i) & Hyper-V Backup

Capture your entire system, including the host, with patented disk imaging integrated with VMware VADP / Microsoft VSS and RCT. RTOs is as low as 15 seconds with Acronis Active Restore™. You can enjoy unlimited P2V/V2V migrations from any source (even from a different hypervisor)

 

Author Comment

by:Raneesh A
ID: 40627463
my server name is atomex.atomoptions.ae and i changed the mx record as mail.atomoptions.ae (owa,ecp...) and created A record in dns server for mail and autodiscover to point to exchange server .


I tried sending to other domains and received error
Generating server: atomex.atomoptions.ae
Receiving server: mx00.1and1.com (74.208.5.3)
raneesh.a@inichesoln.com
Remote Server at mx00.1and1.com (74.208.5.3) returned '400 4.4.7 Message delayed'
2/23/2015 3:04:32 PM - Remote Server at mx00.1and1.com (74.208.5.3) returned '451-4.4.0 Primary target IP address responded with: "554-perfora.net (mxeueus002) Nemesis ESMTP Service not available 451-4.4.0 554-No SMTP service 451 4.4.0 554 invalid DNS PTR resource record." Attempted failover to alternate host, but that did not succeed. Either there are no alternate hosts, or delivery failed to all alternate hosts. The last endpoint attempted was 74.208.5.3:25'


For Hotmail

Generating server: atomex.atomoptions.ae
raneeshkalam@hotmail.com
COL004-MC1F40.hotmail.com
Remote Server returned '550 OU-002 (COL004-MC1F40) Unfortunately, messages from 86.98.86.75 weren't sent. Please contact your Internet service provider since part of their network is on our block list. You can also refer your provider to http://mail.live.com/mail/troubleshooting.aspx#errors.'
0
 

Author Comment

by:Raneesh A
ID: 40627471
Also this the error i got from google when i tried to send an email to our exchnage user

Delivery to the following recipient has been delayed:

     raneesh.a@atomoptions.com

Message will be retried for 1 more day(s)

Technical details of temporary failure:
The recipient server did not accept our requests to connect. Learn more at http://support.google.com/mail/bin/answer.py?answer=7720
[(10) mail.atomoptions.ae. [2.50.42.138]:25: socket error]
0
 
LVL 11

Accepted Solution

by:
hecgomrec earned 500 total points
ID: 40628294
From your errors above I can tell you it seems your IP is Blacklisted.  Your emails are going out but there is an error on the SMTP transport.

Check all these:

Your public IP should be mapped (NAT) on your firewall to your internal server's IP (with all or required ports)
You must have public DNS and MX records matching your server's certificates (mail.atomoptions.ae or owa.ato....,etc)
You must be passing your SMTP communication to the same ISP.  You can't send over SMTP using an IP range from another ISP ( 86.98.86.75   --  2.50.42.138) and when I ping your server I got 86.98.4.224.  So make sure you are using the right server IP to send your SMTP.

Check you internal DNS and MX records to match your server's internal IP so when you look for mail.atomoptions.ae within your network you'll get your internal IP.
0
 
LVL 19

Expert Comment

by:Kash
ID: 40628553
NDR is normally received when your emails hit another server. It is telling us that you are on RBLs.

Try using a smart host first to rule out any NDR issues. If after using smarthost you can't send then I would start looking at other issues.
0
 

Author Comment

by:Raneesh A
ID: 40630149
I think my isp is blocking port 25.
When i tried smart host in send connector the emails are going. but not receiving emails to exchange  .
0
 

Author Comment

by:Raneesh A
ID: 40641267
Issue resolved . it was because of our dyndns .
0

Featured Post

Get Actionable Data from Your Monitoring Solution

Your communication platform is only as good as the relevance of the information you send. Ensure your alerts get to the right people every time with actionable responses. Create escalation rules that ensure everyone follows the process and nothing is left to chance.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

The new Gmail Phishing Scam going around is surprising even the savviest of users with its sophisticated techniques.
Unified and professional email signatures help maintain a consistent company brand image to the outside world. This article shows how to create an email signature in Exchange Server 2010 using a transport rule and how to overcome native limitations …
In this Micro Video tutorial you will learn the basics about Database Availability Groups and How to configure one using a live Exchange Server Environment. The video tutorial explains the basics of the Exchange server Database Availability grou…
This video shows how to quickly and easily add an email signature for all users on Exchange 2016. The resulting signature is applied on a server level by Exchange Online. The email signature template has been downloaded from: www.mail-signatures…

696 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question