Want to protect your cyber security and still get fast solutions? Ask a secure question today.Go Premium

x
?
Solved

email bouncing back

Posted on 2016-11-03
10
Medium Priority
?
2,846 Views
Last Modified: 2016-11-11
We have a single exchange 2016 server running on a Windows 2012 (std) server under hyperv, which appears to be working OK.

Unfortunately, we have on recipient who does not receive or mail, and we get a bounce back, as follows :-

mx1416.ess.rzc.cudaops.com rejected your message to the following email addresses:
Jon Pinder (JPin***@*********.co.uk)
Your message couldn't be delivered and there was no valid enhanced status code being issued by the remote mail system to determine the exact cause, status: '550 permanent failure for one or more recipients (jpin***@*********.co.uk:blocked)'.
mx1416.ess.rzc.cudaops.com gave this error:
permanent failure for one or more recipients (jpin***@*********.co.uk:blocked)

Diagnostic information for administrators:
Generating server: exch2016.******.local
JPin***@*********.co.uk
mx1416.ess.rzc.cudaops.com
Remote Server returned '550 permanent failure for one or more recipients (jpin***@*********.co.uk:blocked)'
Original message headers:
Received: from exch2016.******.local (192.***.**.223) by exch2016.******.local
 (192.***.**.223) with Microsoft SMTP Server (version=TLS1_2,
 cipher=TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384_P384) id 15.1.544.27; Wed, 26
 Oct 2016 15:13:05 +0100
Received: from exch2016.******.local ([fe80::4a1:ffb0:8292:d868]) by
 exch2016.******.local ([fe80::4a1:****:8292:d868%12]) with mapi id
 15.01.0544.027; Wed, 26 Oct 2016 15:13:05 +0100
From: nic** <nic**@******-******.co.uk>
To: J** Pin*** <JPin***@*********.co.uk>
Subject: RE:
Thread-Index: AQHSL5LqAARXhrh+vkSr0nov8vAbnqC6xrdw
Date: Wed, 26 Oct 2016 14:13:05 +0000
Message-ID: <355fa14881234da186171a611ae60fd5@******-*******.co.uk>
References: <OF37DC72C3.5B4E3A93-ON80258058.004DF9A5-80258058.004E031B@*********.co.uk>
In-Reply-To: <OF37DC72C3.5B4E3A93-ON80258058.004DF9A5-80258058.004E031B@*********.co.uk>
Accept-Language: en-GB, en-US
Content-Language: en-US
X-MS-Has-Attach: yes
X-MS-TNEF-Correlator:
x-originating-ip: [192.***.**.8]
Content-Type: multipart/mixed;
        boundary="_005_355fa14881234da186171a611ae60fd5**********couk_"
MIME-Version: 1.0


Can anyone give me any suggestions as to where this is becoming a problem, as my first instinct was that their SPAM server was rejecting it??

They assure me that it is not, but dont understand the NDR,

Can anyone help?

Many thanks
0
Comment
Question by:nigelbeatson
10 Comments
 
LVL 22

Expert Comment

by:Nick Rhode
ID: 41872560
Perhaps the domain is not whitelisted on the spam filter? or the user needs to be added to the filter in order to send mail etc
0
 

Author Comment

by:nigelbeatson
ID: 41872575
They tell me that the mail is not reaching them?

Is there any way to tell from the NDR?

I am unaware we have to whitelist domains at our end to send them out? We are using Vamsoft ORF here, and have not whitelisted outgoing mail before?
0
 
LVL 100

Expert Comment

by:John Hurst
ID: 41872593
I have seen this a while back and spam was not the issue. In this case it was an old DNS record. Updating the DNS server addresses to a newer DNS server fixed the issue.
0
Making Bulk Changes to Active Directory

Watch this video to see how easy it is to make mass changes to Active Directory from an external text file without using complicated scripts.

 
LVL 16

Accepted Solution

by:
Jason Crawford earned 2000 total points
ID: 41872617
I think the recipient MTA is definitely the culprit in this instance because of this line in the NDR:

mx1416.ess.rzc.cudaops.com rejected your message to the following email addresses:
Jon Pinder (JPin***@*********.co.uk)

I'm assuming mx1416.ess.rzc.cudaops.com is the recipient, correct?  It also looks like email to the specific email address was blocked:

Remote Server returned '550 permanent failure for one or more recipients (jpin***@*********.co.uk:blocked)'

Can you re-engage the recipient's IT dept?
0
 

Author Comment

by:nigelbeatson
ID: 41872632
Thanks everyone.

I have no idea who mx1416.ess.rzc.cudaops.com is. It is not anything like the domain name of the destination host?

Not sure what you mean John about updating the DNS server addresses? It only affects one recipient, which is why I thought it must be their server. Having said that the server aparently rejecting it is unknown to me, Im just bemused!

We have spoken with their IT, and they just say its our server, Not very helpful Im afraid.
0
 
LVL 16

Expert Comment

by:Jason Crawford
ID: 41872641
Their IT is incorrect.  If you have protocol logging enabled on your Send Connector we could use transport logs to further prove our point, but really all the evidence they need is right there in the NDR.  Here is another forum post for that same server:

https://community.spiceworks.com/topic/750013-email-rejected-quarantined-when-sending-to-particular-domain
0
 

Author Comment

by:nigelbeatson
ID: 41873559
ok thanks.

i could understand it if i could see their mail server was the one named in the ndr. but who is mx1416.ess.rzc.cudaops.com??

this appears to be the server rejecting it, but how do we identify where / what this is?

i think they are just looking at it and saying "it's not us"?

thanks
0
 
LVL 16

Expert Comment

by:Jason Crawford
ID: 41874638
What is the MX record for the recipient domain?
0
 

Author Comment

by:nigelbeatson
ID: 41874675
the mx record is indicated as :-

d79972a.ess.barracudanetworks.com
0
 

Author Closing Comment

by:nigelbeatson
ID: 41883453
I realised that the "cuda" part of the server which refused it, indicated it was their 3rd party mail services server which was rejecting the message.

Many thanks to all.
0

Featured Post

Simplify Active Directory Administration

Administration of Active Directory does not have to be hard.  Too often what should be a simple task is made more difficult than it needs to be.The solution?  Hyena from SystemTools Software.  With ease-of-use as well as powerful importing and bulk updating capabilities.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Exchange administrators are always vigilant about Exchange crashes and disasters that are possible any time. It is quite essential to identify the symptoms of a possible Exchange issue and be prepared with a proper recovery plan. There are multiple…
In this post, we will learn to set up the Group Naming policy and will see how it is going to impact the Display Name and the Email addresses of the Group.
This video shows how to quickly and easily add an email signature for all users on Exchange 2016. The resulting signature is applied on a server level by Exchange Online. The email signature template has been downloaded from: www.mail-signatures…
Exchange organizations may use the Journaling Agent of the Transport Service to archive messages going through Exchange. However, if the Transport Service is integrated with some email content management application (such as an antispam), the admini…
Suggested Courses
Course of the Month13 days, 15 hours left to enroll

580 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question