Exchange Server Forums
Forums |
Register |
Login |
My Profile |
Inbox |
RSS 
|
My Subscription |
My Forums |
Address Book |
Member List |
Search |
FAQ |
Ticket List |
Log Out
asking for Need help with external config and NDR's
|
Users viewing this topic:
none
|
Logged in as: Guest
|
Login  | |
|
 Limited time MSExchange.org offer! -- 1.Sep.2008 1:00:00 PM
|
|
TechGenix and SolarWinds have partnered to provide free copies of SolarWinds Exchange Monitor to all visitors who join the MSExchange.org Forums. SolarWinds Exchange Monitor is a handy desktop dashboard that continuously monitors Microsoft Exchange to deliver real-time insight into Exchange services, mail queue sizes, and host server health. Learn more about Exchange Monitor and the free offer!
|
asking for Need help with external config and NDR's - 14.Feb.2007 4:44:05 PM
|
|
|
tconners
Posts: 37
Joined: 22.Nov.2006
Status: offline
|
Well once again I am asking the experts here for some help.
Sorry for the newbie stuff but here it goes.
Just some background on my issue: I have been primarily working with internal exchange configs that do not go outside the private network. Well that has changed.
So on to my issue/issues's
So first I have an AD network domain named...well let's call it "Vadiu.net"
I have an externally hosted domain name..lets call it "Alphac.net"
Exchange servers name is "VadiuExchange" Not really but close enough.
I have an "A"record that states Mail.alphac.net points to "70.89.155.xx this is the IP of the firewall forwarding port 25.
I also have the MX record stating:
Host Name=mail.alphac.net
Priority=High
Mail server=VadiuExchange.Vadiu.net
Within exchange, Default Virtual SMTP server, delivery tab I have set the FQDN
to be mail.alphac.net and enabled reverse dns lookups. "The test DNS performed with no errors."
I also have added @alphac.net to the recipient policy email addresses tab.
Problem is some of my email being sent to me are bouncing. I need a little help with this. Thanks in advance. I will provide detailed info in a PM if needed.
Tconners.
< Message edited by tconners -- 14.Feb.2007 4:45:39 PM >
|
|
|
|
|
RE: asking for Need help with external config and NDR's - 14.Feb.2007 10:57:54 PM
|
|
|
uemurad
Posts: 5571
Joined: 7.Jan.2004
From: California, USA
Status: online
|
Let's start at the beginning.
Are you hosting your own DNS to resolve alphac.net and vadiu.net, or is some outside service hosting them?
Are these two domain names registered?
What happens if you go to an outside workstation (say your home PC) connected to the Internet. Can you resolve those A record addresses using NSLOOKUP? Can you resolve the MX records?
What happens if you use Telnet via port 25 on the address specified by the MX record? How far into the SMTP commands can you get? Can you complete a message?
What NDRs are you getting?
_____________________________
Regards,
Dean T. Uemura
Microsoft MVP - Exchange
exchangeguy.blogspot.com
uemurad@yahoo.com
|
|
|
|
|
RE: asking for Need help with external config and NDR's - 15.Feb.2007 12:53:45 PM
|
|
|
tconners
Posts: 37
Joined: 22.Nov.2006
Status: offline
|
Thanks for the detailed questions. Let me start now with what I know then I will research and provide the rest of the answers for you.
Q:Are you hosting your own DNS to resolve alphac.net and vadiu.net, or is some outside service hosting them?
A: alphac.net is our office AD/Domain/Network so I host DNS there locally.
Vadiu.net is our externally hosted domain name. "Though I have full control over the record manipulation."
Q: Are these two domain names registered?
A: I believe our external domain is. "Its hosted with register.com" Still a newbie to the world outside my windows networks :-( "
Q:What happens if you go to an outside workstation (say your home PC) connected to the Internet. Can you resolve those A record addresses using NSLOOKUP? Can you resolve the MX records?
A: Here in my office I load balance 2 incoming lines "DSL &Cable" So I can use one to hop out from in front of my firewall and test this.
When I Type "Nslookup mail.alphac.net or alphac.net I get back the proper address but at the end it says ****alphac.net cant find nslookup:Non existent domain. Ping comes back appropriately.
Q:What happens if you use Telnet via port 25 on the address specified by the MX record? How far into the SMTP commands can you get? Can you complete a message?
A: Im new to this troubleshooting method. Give me a bit today and I will reply again.
Basically people are getting mails sent to me bounced. IE: Comcast, dell support, ect. If I use my hotmail to test back and forth with it works just fine for me.
|
|
|
|
|
RE: asking for Need help with external config and NDR's - 15.Feb.2007 4:29:54 PM
|
|
|
tconners
Posts: 37
Joined: 22.Nov.2006
Status: offline
|
Ok so I am able to telnet to my mail server from my outside DSL connection.
I have also succsfully sent myself mail to my exchange mailbox by using the
telnet/ehlo MAIL FROM:tconnxxx@alphac.net command.
But now my own mails from my hotmail account are being bounced.
I can send to my hotmail from my exchange account but hot mail is bouncing my exchange mail now.
:-(
Any other commands I sould be using to test the connection?
|
|
|
|
|
RE: asking for Need help with external config and NDR's - 15.Feb.2007 4:39:51 PM
|
|
|
uemurad
Posts: 5571
Joined: 7.Jan.2004
From: California, USA
Status: online
|
What does the bounce going back to hotmail say?
Try telnetting with mail from: youraccount@yahoo.com and see how far you get.
_____________________________
Regards,
Dean T. Uemura
Microsoft MVP - Exchange
exchangeguy.blogspot.com
uemurad@yahoo.com
|
|
|
|
|
RE: asking for Need help with external config and NDR's - 15.Feb.2007 5:07:25 PM
|
|
|
tconners
Posts: 37
Joined: 22.Nov.2006
Status: offline
|
Hotmail is saying its to busy right now for me to retreive the NDR's "Will post ASAP"
Now I am learning this whole telnet thing and have knoticed a discrepincy.
If I Telnet to my exchange server from inside the network behind the FW
"Telnet mail.alphacipher.net 25
I get: 220 vadiumexchange.vadium.net Mail.alphacipher.net Thu, 15 Feb 2007 14:00:06 -08
00
ehlo
250-vadiumexchange.vadium.net Hello [70.89.155.25]
250-TURN
250-SIZE
250-ETRN
250-PIPELINING
250-DSN
250-ENHANCEDSTATUSCODES
250-8bitmime
250-BINARYMIME
250-CHUNKING
250-VRFY
250-X-EXPS GSSAPI NTLM LOGIN
250-X-EXPS=LOGIN
250-AUTH GSSAPI NTLM LOGIN
250-AUTH=LOGIN
250-X-LINK2STATE
250-XEXCH50
250 OK
Thats the correct IP.
But when I go to my system on the outside "DSL" and telnet to the same name I get:
220 vadiumexchange.vadium.net Mail.alphacipher.net Thu, 15 Feb 2007 13:44:08 -08
00
elho
500 5.3.3 Unrecognized command
ehlo
250-vadiumexchange.vadium.net Hello [63.228.112.228]
250-TURN
250-SIZE
250-ETRN
250-PIPELINING
250-DSN
250-ENHANCEDSTATUSCODES
250-8bitmime
250-BINARYMIME
250-CHUNKING
250-VRFY
250-X-EXPS GSSAPI NTLM LOGIN
250-X-EXPS=LOGIN
250-AUTH GSSAPI NTLM LOGIN
250-AUTH=LOGIN
250-X-LINK2STATE
250-XEXCH50
250 OK
Take note of the IP............Looks to be DNS I belive???? On my ISP config???
Thanks so far.
< Message edited by tconners -- 15.Feb.2007 5:09:47 PM >
|
|
|
|
|
RE: asking for Need help with external config and NDR's - 15.Feb.2007 5:37:23 PM
|
|
|
tconners
Posts: 37
Joined: 22.Nov.2006
Status: offline
|
If I did it right here is what I get from a mail test using my hotmail addy:
MAIL FROM:terryconners@hotmail.com
RCPT TO:tconners@alphacipher.net
DATA
This is my first email test to test my server
.
QUIT
250 2.1.0 terryconners@hotmail.com....Sender OK
250 2.1.5 tconners@alphacipher.net
354 Start mail input; end with <CRLF>.<CRLF>
I hate using real data but im up against a wall and need this resolved.
Thanks a bunch so far.
Terry.
Also FYI: I was told by someone that on the advanced delivery tab for the propertys of my VSMTP it should say "mail.alphacipher.net" my MX record name, then another person said: No the true FQDN of the server is fine "vadiumexchange.vadium.net" So I am a little confused here as well.
The only other change I made from default was to change the recipiant policy
by adding @alphacipher.net. "Was @Vadium.net"
< Message edited by tconners -- 15.Feb.2007 5:43:45 PM >
|
|
|
|
|
RE: asking for Need help with external config and NDR's - 15.Feb.2007 5:41:53 PM
|
|
|
uemurad
Posts: 5571
Joined: 7.Jan.2004
From: California, USA
Status: online
|
What is acting as SOA? Your server or an outside source? Whichever it is, are zone transfers happening? Is your inside DNS completely separate from the outside world?
You may need to have your MX record updated by whoever is hosting your DNS.
_____________________________
Regards,
Dean T. Uemura
Microsoft MVP - Exchange
exchangeguy.blogspot.com
uemurad@yahoo.com
|
|
|
|
|
RE: asking for Need help with external config and NDR's - 15.Feb.2007 5:52:51 PM
|
|
|
tconners
Posts: 37
Joined: 22.Nov.2006
Status: offline
|
Q:What is acting as SOA?
A: Im sorry I have to educate myself as to what that is. :-(
Q: Your server or an outside source?
A: I will get this info for you asap.
Q: Whichever it is, are zone transfers happening?
A: Not sure. :-(
Q: Is your inside DNS completely separate from the outside world?
A: Yes it is. My topo is this: Comcast cable modem, connected to hardware FW?Router, Router connected to my 10.x.x.x internal office network domain, exchange, AD and DNS server are all on the 10.x.x.x network. I port forward 25 through the router.
I have a the Domain name alphacipher.net being hosted with register.com
I can provide you the details in a PM.
|
|
|
|
|
RE: asking for Need help with external config and NDR's - 15.Feb.2007 6:27:29 PM
|
|
|
uemurad
Posts: 5571
Joined: 7.Jan.2004
From: California, USA
Status: online
|
SOA = Start of Authority
Sounds like this should be at register.com
Outside source = yes
Zone transfers (essentially replication) - you aren't since you've populated your DNS server manually.
So, you don't need to forward any information to me privately. Talk to register.com about updating your MX record to point to the appropriate address.
_____________________________
Regards,
Dean T. Uemura
Microsoft MVP - Exchange
exchangeguy.blogspot.com
uemurad@yahoo.com
|
|
|
|
|
RE: asking for Need help with external config and NDR's - 15.Feb.2007 6:32:09 PM
|
|
|
tconners
Posts: 37
Joined: 22.Nov.2006
Status: offline
|
Here is my hotmail NDR message:
Reporting-MTA: dns;vadiumexchange.vadium.net
Received-From-MTA: dns;bay0-omc3-s29.bay0.hotmail.com
Arrival-Date: Thu, 15 Feb 2007 13:16:37 -0800
Final-Recipient: rfc822;tconners@alphacipher.net
Action: failed
Status: 5.4.6
X-Display-Name: Terry Conners
Shouldent this line: " Reporting-MTA: dns;vadiumexchange.vadium.net"
Say: "Reporting-MTA: dns;mail.alphacipher.net" instead?????
< Message edited by tconners -- 15.Feb.2007 6:34:34 PM >
|
|
|
|
|
RE: asking for Need help with external config and NDR's - 15.Feb.2007 6:40:26 PM
|
|
|
uemurad
Posts: 5571
Joined: 7.Jan.2004
From: California, USA
Status: online
|
When I test DNS using NSLOOKUP, I am seeing what appears to be the correct address (according to your SMTP output below). That could mean that hotmail is seeing stale (cached) information.
Did you change that record recently? It could be that it just needs the TTL to expire so that it refreshes. Since I've never polled for your domain name, the information isn't cached on my DNS server and it had to request from the root servers.
_____________________________
Regards,
Dean T. Uemura
Microsoft MVP - Exchange
exchangeguy.blogspot.com
uemurad@yahoo.com
|
|
|
|
|
RE: asking for Need help with external config and NDR's - 15.Feb.2007 6:41:02 PM
|
|
|
tconners
Posts: 37
Joined: 22.Nov.2006
Status: offline
|
I have control over the editing of the MX record.
I will pm yah with what I have done there for clarifacation.
Last time I asked for there help they screwed up one of my websites.
:-(
I really appreciate your help and info. Have to run, I will pick this back up in the AM.
:-)
|
|
|
|
|
RE: asking for Need help with external config and NDR's - 16.Feb.2007 10:45:52 AM
|
|
|
uemurad
Posts: 5571
Joined: 7.Jan.2004
From: California, USA
Status: online
|
When I telnet from my office and give MAIL FROM: my yahoo.com address, it bounces citing RDNS fails. Okay - true enough.
Next, I repeated the test and used my actual work address. This time it bounced indicating "A configuration error in the e-mail system caused the message to bounce between two servers or to be forwarded between two recipients." The alerting system is listed as <vadiumexchange.vadium.net>. Are you forwarding or routing messages in some manner?
_____________________________
Regards,
Dean T. Uemura
Microsoft MVP - Exchange
exchangeguy.blogspot.com
uemurad@yahoo.com
|
|
|
|
|
RE: asking for Need help with external config and NDR's - 16.Feb.2007 11:54:27 AM
|
|
|
tconners
Posts: 37
Joined: 22.Nov.2006
Status: offline
|
"Are you forwarding or routing messages in some manner?"
Not that I am aware of. Where would be the first place to check?
|
|
|
|
|
RE: asking for Need help with external config and NDR's - 16.Feb.2007 1:02:58 PM
|
|
|
tconners
Posts: 37
Joined: 22.Nov.2006
Status: offline
|
Here is the event my exchange server is throwing:
Event Type: Error
Event Source: MSExchangeTransport
Event Category: NDR
Event ID: 3020
Date: 2/16/2007
Time: 9:56:40 AM
User: N/A
Computer: XXXXXXXXXX
Description:
A non-delivery report with a status code of 5.4.6 was generated for recipient rfc822;tconners@alphacipher.net (Message-ID <[email=BAY126-W15F6779B5F89B840D9AA9BCF950@phx.gbl]BAY126-W15F6779B5F89B840D9AA9BCF950@phx.gbl[/email]>).
Cause: A forward loop was detected by the categorizer. This is a common hosting configuration problem caused when someone uses the provisioning tool to create a contact in one organization unit and creates a user in a different organization user that share the same e-mail address.
Solution: Verify that you do not have a user in organizational unit and a contact in a different organizational unit that have the same e-mail address.
For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp.
Data:
0000: 46 05 04 80 F..€
|
|
|
|
|
RE: asking for Need help with external config and NDR's - 16.Feb.2007 1:18:48 PM
|
|
|
uemurad
Posts: 5571
Joined: 7.Jan.2004
From: California, USA
Status: online
|
Open a command prompt and enter:
csvde -f "c:\adexport.csv" -d "dc=yourdomain,dc=com" -l "mail,proxyAddresses"
This is going to dump all SMTP addresses for your entire domain into a comma-delimited text file (c:\adexport.csv). Search the file created for your SMTP address and see if it appears more than once.
_____________________________
Regards,
Dean T. Uemura
Microsoft MVP - Exchange
exchangeguy.blogspot.com
uemurad@yahoo.com
|
|
|
|
|
RE: asking for Need help with external config and NDR's - 16.Feb.2007 2:06:25 PM
|
|
|
tconners
Posts: 37
Joined: 22.Nov.2006
Status: offline
|
Im not sure if I did it right? Did I need to change any variables?
The file is never created.
C:\Documents and Settings\tconners>csvde -f "c:\adexport.csv" -d "dc=yourdomain,
dc=com" -l "mail,proxyAddresses"
Connecting to "VadiuXXX.XXX.net"
Logging in as current user using SSPI
Exporting directory to file c:\adexport.csv
Searching for entries...
Writing out entries
No Entries found
The command has completed successfully
|
|
|
|
|
RE: asking for Need help with external config and NDR's - 16.Feb.2007 2:24:13 PM
|
|
|
tconners
Posts: 37
Joined: 22.Nov.2006
Status: offline
|
"CN=Tconxxx,CN=Users,DC=Vadixxx,DC=net"
x400:c=US\;a= \;p=Vadixxx\;o=Exchange\;s=Tconxxx\;;X400:c=US
\;p=Vadixxx\;o=Exchange\;s=Conxxx\;g=Terxxx\;;SMTP:Tconxxx
My account seems to be the only one with the extra line shown in quotes.
Everyone else just has the next 2 lines.
|
|
|
|
 New Messages |
 No New Messages |
 Hot Topic w/ New Messages |
 Hot Topic w/o New Messages |
 Locked w/ New Messages |
 Locked w/o New Messages |
|
 Post New Thread
Reply to Message
Post New Poll
Submit Vote
Delete My Own Post
Delete My Own Thread
Rate Posts |
|
Printable Version
