SurenR -> RE: Cannot send mail to certain domains (16.Aug.2004 11:17:00 AM)
I have exactly the same problem as described by you guys. The domain that my Exchange server is having problems with is Microsoft.com. When a mail addressed to Microsoft.com is submitted all other mails get held up in the queue. The mails are sent when the server is restarted.
If I leave the message in the queue long enough I get the ndr with the message saying
This message was rejected due to the current administrative policy by the destination server. Please retry at a later time. If that fails, contact your system administrator.
To resolve this situation -
Enable SMTP logging on your default virtual server.
To turn on Diagnostics Logging on the MSExchangeTransport service, follow these steps:
1. Start Exchange System Manager.
2. Expand Servers, right-click Your_ Server_Name, and then click Properties.
3. Click the Diagnostics Logging tab, and then click MSExchangeTransport under Services.
4. Under Categories, click the category that you want to log.
5. Under Logging Level, click the appropriate logging level for the issue that you are investigating:
Note: to see event messages turn up the logging level to medium or high.
Check to see if you receive the following event messages in Events viewer with event logging turned on.
Event ID 7004
This is an SMTP protocol error log for virtual server ID 1, connection #29. The
remote host "E2k3server1.foo.com", responded to the SMTP command "xexch50" with
"504 Need to authenticate first ". The full command sent was "XEXCH50 2336 3 ".
This will probably cause the connection to fail.
The message is generated when the responding server in the 7004 event does not understand the XEXCH 50 command from your exchange 2003 server, or a firewall blocks the exchange of blobs between the exchange servers.
Note: This is normal if they server indicated in the 7004 is an out_of_ org server
or internet servers (E2k or E2k3). Exchange 5.5 with 5.5.2657.72 or higher IMCs
will respond back to this with a 7004 event " 505 Authentication required" This is
normal when sending to Exchange 55. servers. You can configure this behavior with
the HKLM\ System\CurrentControlSet\Services\SMTPSVC\XEXCH50\SuppressExternal to
1.(DWORD) to control Exchange from attempting to send XEXCH50 outside of the org.
Articles worth checking out is http://support.microsoft.com/?id=843106 and
Also make sure your DNS settings have a reverse DNS setting for your domain, and that you are not on any black lists.
Hope this helps guys