Exchange Server Forums
Forums |
Register |
Login |
My Profile |
Inbox |
RSS 
|
My Subscription |
My Forums |
Address Book |
Member List |
Search |
FAQ |
Ticket List |
Log Out
Cannot send mail to certain domains
|
Users viewing this topic:
none
|
Logged in as: Guest
|
Login  | |
|
Cannot send mail to certain domains - 23.Jul.2004 4:09:00 AM
|
|
|
snap355
Posts: 11
Joined: 15.Jul.2004
From: USA
Status: offline
|
Hi all,
I cannot send emails to yahoo.com or aol.com. Our domain has a PTR record, meaning it has a reverse DNS record for the domain. When performing nslookup, it resolves to the proper IP addy. There's only one MX record for this domain.
The system is SBS MS Exchange Svr 2003. It's behind a Pix firewall. I can send mails to other domains, just not these two.
I do not receive any NDRs messages. However, when I go to look at the queue and I cancel one my emails to yahoo, this is what I get This message was rejected due to the current administrative policy by the destination server. Please retry at a later time. If that fails, contact your system administrator.
<paradigmventure.com #4.3.2>
I check out at least 3 different sites to verify that I'm not blacklisted.
I can telnet to yahoo.com to get a response. I can also telnet to the mail server from another public source and that works as well.
Any ideas?
|
|
|
|
|
RE: Cannot send mail to certain domains - 23.Jul.2004 10:25:00 PM
|
|
|
snap355
Posts: 11
Joined: 15.Jul.2004
From: USA
Status: offline
|
The solution? One stinking abbreviation. D N S and how it's used with MS
[ July 23, 2004, 10:26 PM: Message edited by: snap355 ]
|
|
|
|
|
RE: Cannot send mail to certain domains - 27.Jul.2004 9:45:00 AM
|
|
|
abarrote
Posts: 20
Joined: 27.Jul.2004
From: Portugal
Status: offline
|
hi... have you solved the problem?
I'm having a similar problem with my Exchange Server...
I cannot send email to some domains (hotmail.com, msn.com and others included) and they stay in the queue until a timeout NDR is issued. I get these error messages while they're in the queue:
- The semaphore timeout period has expired
- The connection was dropped by the remote host
- Unable to bind to the destination server in DNS
- The connection was dropped due to an SMTP protocol event sink
however, I can nslookup all the domains...
also, sometimes I get this error at system's event viewer:
Event ID: 2013
SMTP could not connect to any DNS server. Either none are configured, or all are down.
Event ID: 2012
SMTP could not connect to the DNS server '192.168.10.10'. The protocol used was 'UDP'. It may be down or inaccessible
192.168.10.10 is my DC with DNS Server
any ideas on how to solve this?
thanks...
antonio
[ July 27, 2004, 09:45 AM: Message edited by: abarrote ]
|
|
|
|
|
RE: Cannot send mail to certain domains - 27.Jul.2004 6:54:00 PM
|
|
|
Guest
|
I had similar problems and ended up renaming my mail server (it had been named with an _ instead of a hyphen).
Once I did this and cleared up the resulting mess everything started working fine.
|
|
|
|
|
RE: Cannot send mail to certain domains - 27.Jul.2004 6:57:00 PM
|
|
|
Guest
|
... and I changed my DNS to point to an external server.
|
|
|
|
|
RE: Cannot send mail to certain domains - 28.Jul.2004 2:31:00 AM
|
|
|
snap355
Posts: 11
Joined: 15.Jul.2004
From: USA
Status: offline
|
Are you behind any type of firewall? If so, check how the firewall is forwarding MS DNS external requests to it.
|
|
|
|
|
RE: Cannot send mail to certain domains - 28.Jul.2004 8:49:00 AM
|
|
|
abarrote
Posts: 20
Joined: 27.Jul.2004
From: Portugal
Status: offline
|
the server name is certainly not the problem... it is a simple word...
also, I'm behind a firewall but it worked fine so far. The problem started to happen almost a week ago and I have this server up and running since January without a single problem...
I think the problem might be at the DNS server or at my ISP firewall... They're now checking it...
|
|
|
|
|
RE: Cannot send mail to certain domains - 30.Jul.2004 12:07:00 PM
|
|
|
abarrote
Posts: 20
Joined: 27.Jul.2004
From: Portugal
Status: offline
|
hi... it's been almost two days since the reverse DNS was properly configured and some emails still remain forever in the queue...
I really need some help here...
can anybody help me out?
|
|
|
|
|
RE: Cannot send mail to certain domains - 30.Jul.2004 6:51:00 PM
|
|
|
jdawg53
Posts: 5
Joined: 29.Jul.2004
From: Southern California
Status: offline
|
I'm having the exact same proble so I don't know if I would be of much help. Now that you have added the reverse entry, can you telnet to yahoo (command: telnet mail.yahoo.com 25).
For me, when I reboot the Exchange Server then all of the messages in queue get released and go to the problematic domains (which are different than your - msn.com, hotmail.com and others). Are you experiencing this also?
|
|
|
|
|
RE: Cannot send mail to certain domains - 10.Aug.2004 6:13:00 PM
|
|
|
abarrote
Posts: 20
Joined: 27.Jul.2004
From: Portugal
Status: offline
|
wait a minute.. we all have the same problem?
maybe it's a bug or something... damn!
I thought it was DNS but I can telnet all those domains...
I don't know what to do to solve this...
anybody has any ideas?
thanks...
antonio
|
|
|
|
|
RE: Cannot send mail to certain domains - 11.Aug.2004 4:47:00 PM
|
|
|
snap355
Posts: 11
Joined: 15.Jul.2004
From: USA
Status: offline
|
Check the microsoft DNS resolution issues.
To work around this issue, turn off the EDNS0 feature in Windows Server 2003. To do this, follow these steps:
Install the Dnscmd.exe program from the Windows Server 2003 Support Tools. To install the Windows Support Tools, right-click Suptools.msi in the Support\Tools folder on the Windows Server 2003 CD-ROM, and then click Install. Follow the steps in the Windows Support Tools Setup Wizard to complete the installation of the Windows Support Tools.
At a command prompt, type the following command, and then press ENTER:
dnscmd /config /enableednsprobes 0
Note Type a 0 (zero) and not the letter "O" after "enableednsprobes" in this command.
The following information appears:Registry property enableednsprobes successfully reset.
Command completed successfully.
After you run this command, Windows Server 2003 DNS no longer advertises its EDNS0 capabilities. As a result, the Windows Server 2003 DNS server will not be sent UDP packets that are larger than 512 bytes.
|
|
|
|
|
RE: Cannot send mail to certain domains - 11.Aug.2004 4:51:00 PM
|
|
|
snap355
Posts: 11
Joined: 15.Jul.2004
From: USA
Status: offline
|
Also, make sure you are not blacklisted or on the open relay list. Make sure reverse DNS has a record for your domain name. Check to make sure that you can telnet to the mail server for yahoo.com or hotmail.com. Turn off any filters that you may have on the Exchange settings or any SPAM service you may have.
Good luck!
|
|
|
|
|
RE: Cannot send mail to certain domains - 16.Aug.2004 11:17:00 AM
|
|
|
SurenR
Posts: 1
Joined: 16.Aug.2004
From: Durban, South Africa
Status: offline
|
I have exactly the same problem as described by you guys. The domain that my Exchange server is having problems with is Microsoft.com. When a mail addressed to Microsoft.com is submitted all other mails get held up in the queue. The mails are sent when the server is restarted.
If I leave the message in the queue long enough I get the ndr with the message saying
This message was rejected due to the current administrative policy by the destination server. Please retry at a later time. If that fails, contact your system administrator.
To resolve this situation -
Enable SMTP logging on your default virtual server.
To turn on Diagnostics Logging on the MSExchangeTransport service, follow these steps:
1. Start Exchange System Manager.
2. Expand Servers, right-click Your_ Server_Name, and then click Properties.
3. Click the Diagnostics Logging tab, and then click MSExchangeTransport under Services.
4. Under Categories, click the category that you want to log.
5. Under Logging Level, click the appropriate logging level for the issue that you are investigating:
o None
o Minimum
o Medium
o Maximum
Note: to see event messages turn up the logging level to medium or high.
Check to see if you receive the following event messages in Events viewer with event logging turned on.
Event ID 7004
============
This is an SMTP protocol error log for virtual server ID 1, connection #29. The
remote host "E2k3server1.foo.com", responded to the SMTP command "xexch50" with
"504 Need to authenticate first ". The full command sent was "XEXCH50 2336 3 ".
This will probably cause the connection to fail.
The message is generated when the responding server in the 7004 event does not understand the XEXCH 50 command from your exchange 2003 server, or a firewall blocks the exchange of blobs between the exchange servers.
Note: This is normal if they server indicated in the 7004 is an out_of_ org server
or internet servers (E2k or E2k3). Exchange 5.5 with 5.5.2657.72 or higher IMCs
will respond back to this with a 7004 event " 505 Authentication required" This is
normal when sending to Exchange 55. servers. You can configure this behavior with
the HKLM\ System\CurrentControlSet\Services\SMTPSVC\XEXCH50\SuppressExternal to
1.(DWORD) to control Exchange from attempting to send XEXCH50 outside of the org.
Articles worth checking out is http://support.microsoft.com/?id=843106 and
http://support.microsoft.com/default.aspx?scid=kb;en-us;818222
Also make sure your DNS settings have a reverse DNS setting for your domain, and that you are not on any black lists.
Hope this helps guys
|
|
|
|
 New Messages |
 No New Messages |
 Hot Topic w/ New Messages |
 Hot Topic w/o New Messages |
 Locked w/ New Messages |
 Locked w/o New Messages |
|
 Post New Thread
Reply to Message
Post New Poll
Submit Vote
Delete My Own Post
Delete My Own Thread
Rate Posts |
|
Printable Version
![[Frown]](/image/smiles/frown.gif)
RE: Cannot send mail to certain domains - ![[Confused]](/image/smiles/confused.gif)
I've searched lots of documents by using google.com . Found one guy said that he resolve this problem by call the msn.com tech support. It is a msn.com problem, not our Exchange server?
![[Smile]](/image/smiles/smile.gif)
. My problem is: cannot send email to msn.com or hotmail.com. The email (which is being sent to msn.com or hotmail.com) is also stuck in the ôQueuesö. My problem is caused by the external DNS server, I always use an old Internet DNS server but it works fine for all the sites except connecting to Hotmail by SMTP. When I change it to a new Internet DNS server, problem resolved. Here is the location of changing the external DNS server: Open your ôExchange system managerö-> ôAdministrative groupsö->öFirst Administrative groupö->öServersö-ôYour Serverö->öProtocolsö->öSMTPö->Right Click ôDefault Virtual Serverö->öPropertiesö->öDeliveryö->Press öAdvancedö Button->Press ôConfigureö Button near the ôConfigure external DNS serversö-> Then remove your old DNS server and add a new one.![[Cool]](/image/smiles/cool.gif)
