Exchange

bonjour
j'ai un serveur mail sous Exchange 2013  intranet et extranet
ca fait un 1ans que je travail avec
aujourd’hui j'ai un problème au niveau d'une adresse email  
message suivant
maico.esvacloud.com a rejeté votre message vers les adresses de messagerie suivantes :

andreoli.z@maico-italia.it (andreoli.z@maico-italia.it)


maico.esvacloud.com a généré cette erreur :
Client host rejected: cannot find your reverse hostname, [196.92.3.149]


Votre message n'a pas été remis en raison d'un problème d'autorisation ou de sécurité. Il a pu être rejeté par un modérateur, l'adresse n'accepte peut-être de message électronique que provenant de certains expéditeurs, ou une autre restriction peut empêcher sa remise.


par contre avant il a marcher très bien

merci pour votre aide d'avance
erreur-exchange.JPG
drissi othmanAsked:
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

KimputerIT ManagerCommented:
Ask your ISP, or owner of the IP number you mentioned, to add a reverse hostname. The hostname should be the FQDN of the mail server.
You may get charged a small amount for the administrative task they have to do.

Basically, most mail server accepting email, will do a lookup on your IP nr, which right now returns nothing. If a hostname is returned (sometimes not even a FQDN), it usually gets passed this spam rule. Obviously, more spam rules will be handled after it.
drissi othmanAuthor Commented:
merci pour votre réponse


normalement l'adresse il été bien avant ce problème çà existe juste depuis hier  normalement on a rien toucher ou changer

et voile tu va trouver l'image en pièce jointe de mon dns

est ce que je doit refaire un autre hote inversé ou koi faire merci de m'aider vraiment je suis bloqué
rpt.JPG
KimputerIT ManagerCommented:
I said you should ask the OWNER of the IP nr, probably Maroc Telecom?
You have no control over this, as you do NOT own a public IP nr. You control your own DNS for your LAN network, that's totally different.
Also note, if your ISP assigns you dynamic IP addresses, you're no step closer to a solution (other than using your ISP's smart host, if one exists, or using a third party smtp provider like sendgrid or dyn.com)
Maximize Customer Retention with Superior Service

The IT Service Excellence Tool Kit delivers expert advice for technology solution providers. Get your free copy for valuable how-to assets including sample agreements, checklists, flowcharts, and more to help build customer satisfaction and retention.

drissi othmanAuthor Commented:
ok çà marche merci beaucoup je vais essaye et je reviens vers vous
Iamthecreator OMIT Admin/EE Solution GuideCommented:
maico.esvacloud.com resolves to 185.186.95.77

The IP address 196.92.3.149 is on the UCEPROTECTL2 blacklist

You can verify it here
https://mxtoolbox.com
drissi othmanAuthor Commented:
re salut
j'ai pas encore résolu le problème j'ai rien comprit
j'ai  faite j'ai trouver que mon adresse ip publique et blacklisté
voire image en pièce jointe et dit moi est ce que possible de cause le problème et comment je doit de-blackliste

merci de me répondre le plutôt possible vraiment je suis bloque
Capture-scan-ip.JPG
drissi othmanAuthor Commented:
comment je peut deblacklisté  mon adresse ip
merci
drissi othmanAuthor Commented:
Iamthecreator OM

est ce que ce blocage au niveau de black liste peut causée le problème ?
Iamthecreator OMIT Admin/EE Solution GuideCommented:
The email servers refer to a lot of blacklists.
Depending on which blacklist you are listed, you have the option to send a request for de-blacklisting.
For some blacklists it is not possible because it depends on the reputation score which can only get better with time.
You need to identify the problem due to which you got blacklisted in the first place and fix the problem or you will get blacklisted again.

Les serveurs de messagerie font référence à une groupe de listes noire.
Selon la liste noire répertoriée, vous avez la possibilité d’envoyer une demande de suppression de la liste noire.
Pour certaines listes noires, ce n'est pas possible car cela dépend du score de réputation qui ne peut que s'améliorer avec le temps.
Vous devez identifier le problème pour lequel vous avez été inscrit sur la liste noire et le résoudre, sinon vous serez à nouveau placé sur la liste noire.
Iamthecreator OMIT Admin/EE Solution GuideCommented:
est ce que ce blocage au niveau de black liste peut causée le problème ?

Oui/Yes
KimputerIT ManagerCommented:
The error message you sent: Client host rejected: cannot find your reverse hostname, [196.92.3.149]

DOES NOT indicate it's a blacklist problem (of course, you should still de-list).

You'll see that after you're not blacklisted anymore, the email will still NOT reach the recipient. You really have to get the reverse hostname set up at your provider.

If you're talking to a server that's blacklisting you, it's will say so accordingly.
drissi othmanAuthor Commented:
Kimputer

je suis vraiment bloqué, quand vous me dit que je doit configurer hote inverse si jamais il est pas configurer comment  les anciens mail sont partie !!

je ne sais pas comment supprime mon ip adresse du black liste  tous les procédure  a suivre que j'ai trouver et payent

j'ai fait une inscription sur le site https://mxtoolbox.com/ hier

voila la résultat en image
mxtoolbox.JPG
Iamthecreator OMIT Admin/EE Solution GuideCommented:
Uceprotectl2 Automatically Delists Entries

This blacklist does not offer any form of manual request to delist. Your IP Address will either automatically expire from listing after a given timeframe, or after time expires from the last receipt of spam into their spamtraps from your IP Address.
drissi othmanAuthor Commented:
Iamthecreator OM

merci bbeaucoup

donc pour  bien comprendre la cause de ce message de retour .  c blackliste  c pas ( ptr)  (dns inversée)
juste pour je confirme et je prend une seul piste
Iamthecreator OMIT Admin/EE Solution GuideCommented:
A mon avis cest une probleme avec la IP dans la blackliste.
drissi othmanAuthor Commented:
Iamthecreator OM    -   Kimputer

merci pour votre temps  et vos réponse

d'accord je vais attendre
drissi othmanAuthor Commented:
Iamthecreator OM


une question comment je peut lire fichier log Exchange 2013 sous windows server 2012
KimputerIT ManagerCommented:
As I said, the problem is NOT the blacklisting, it's your reverse DNS problem. You don't believe me because you have other emails going out properly, but a reverse DNS check, depends on each mail server. Some do it, some don't.
That's why you should fix it first.
Obviously, try to delist if possible, and try not to get blacklisted in the first place (but that's a whole other chapter)
Iamthecreator OMIT Admin/EE Solution GuideCommented:
You are no longer showing up on the concerned blacklist. Can you try sending an email to the same recipient to see if it passes?

As advised by Kimputer, fix the issue with "Client host rejected: cannot find your reverse hostname, [196.92.3.149]", if the issue persists.
drissi othmanAuthor Commented:
Iamthecreator OM   Iamthecreator OM

bonjour
j'ai encore même problème et j'arrive pas a le résoudre  normalement  j'ai rien toucher de ma part a le hote client rejeté  pourquoi va faire ce problème  
est ce que c possible de m'aider  ou juste vérifier avec moi a distance  via anydesk ?
KimputerIT ManagerCommented:
I already gave you the definite answer in MY FIRST REPLY???

Ask your ISP, or owner of the IP number you mentioned, to add a reverse hostname. The hostname should be the FQDN of the mail server.
You may get charged a small amount for the administrative task they have to do.
drissi othmanAuthor Commented:
c déjà fait
voila regarde la les photo
dns.png
dns-2.png
KimputerIT ManagerCommented:
Again, you're not reading it correctly,

I clearly repeated MANY TIMES: Ask your ISP!!!! Or owner of the IP number you mentioned.
I mentioned clearly some administrative charges could apply from your ISP. Why would I mention that if you could solve it yourself?

So, is your ISP Maroc Telecom?
drissi othmanAuthor Commented:
j'ai héberger mon nom de domaine chez un hébergeur et j'ai déjà mon espace client que je peut contrôler les modifications normalement tout est mentionné

vraiment je suis bloqué j'ai pas compris ou se trouve le blocage exactement

en pièce jointe
Capture09.JPG
KimputerIT ManagerCommented:
You're showing NORMAL hostnames. I said REVERSE HOSTNAME, that only the ISP or owner of the IP address has access to.
Please follow my recommandations to the letter. I did not write anything that wasn't important.
My comments are always VERY EXACT.

Email to your ISP or if you know the  owner of the ISP:

Please set reverse hostname for IP 196.92.3.149, pointing to mail.icat.ma. I need it to prevent my outgoing mail from being bounced. I will pay a small administrative charge if applicable
Iamthecreator OMIT Admin/EE Solution GuideCommented:
BTW, you are again blacklisted on the same list.
Once you have fixed the issue with the reverse DNS as suggested by Kimputer, please find out why you are getting blacklisted and fix the issue as well.
drissi othmanAuthor Commented:
Kimputer

c déjà fait j ai appeler mon fournisseur normalement l'adresse ip se pointe sur  ce pointe sur le domaine  mail.icat.ma  même si quand tu tape l'adresse ip vous redirige vers mail.icat.ma
KimputerIT ManagerCommented:
It's quite bad to be blacklisted already again. Even if you fix the reverse hostname, your IP will only get a worse and worse reputation, that in the end, might even become unusable.
- Please check outgoing mail (port 25) is limited to only your mail server (and don't allow port 25 on Exchange to  be used, other than necessary like scanners)
- Please enable FULL outgoing logs
- Please check if you're an open relay (by communicating on port 25)
- Please check if you have other outgoing mail scripts running (for instance a web form, please add CAPTCHA)
- Please check if no offending emails are coming from legitimate internal users by use of Outlook (ask users to not do it anymore)
- Please check if no outgoing email are coming from your users by way of malware (usually not possible if port 25 is restricted and only Outlook mail is allowed)
KimputerIT ManagerCommented:
Sorry, your ISP is very dumb, or didn't understand you.

Here's the proof (besides YOUR EMAIL BOUNCING!):

NSLOOKUP:

> server 8.8.8.8
Default Server:  google-public-dns-a.google.com
Address:  8.8.8.8

> 196.92.3.149
Server:  google-public-dns-a.google.com
Address:  8.8.8.8

*** google-public-dns-a.google.com can't find 196.92.3.149: Non-existent domain THIS MEANS IT'S NOT SETUP YET, or only setup for your own ISP, not WORLDWIDE

Here's how a proper reverse DNS entry looks like:

> 213.136.12.232
Server:  google-public-dns-a.google.com
Address:  8.8.8.8

Name:    http-linux.lb.network.bit.nl
Address:  213.136.12.232
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Exchange

From novice to tech pro — start learning today.