Quantcast
Channel: Exchange Server 2013 - Mail Flow and Secure Messaging forum
Viewing all 3660 articles
Browse latest View live

Email Jam in the Journaling Queue

January 10, 2017, 8:36 am
$
0
0

We have random emails mostly, it looks like just spam that keep getting jammed up in the "Journaling Queue" with the following error;

“Last Error: 400 4.4.7 The server responded with: 550 5.6.2 SMTPSEND.BareLinefeedsAreIllegal; message contains bare linefeeds, which cannot be sent via DATA. The failure was replaced by a retry response because the message was marked for retry if rejected.”

I have followed the "Bare linefeeds clogged" question earlier and I'm continuing to get these messages on a daily basis even after changing the BareLinefeedRejectionEnabled to $true.  These were the connectors that I updated (which are all of them)

  • FrontendTransport
    Set-ReceiveConnector "FSRM-SMTP" -BareLinefeedRejectionEnabled $true
    Set-ReceiveConnector "SERVERNAME\Client Frontend SERVERNAME" -BareLinefeedRejectionEnabled $true
    Set-ReceiveConnector -Identity "SERVERNAME\Default Frontend SERVERNAME" -BareLinefeedRejectionEnabled $true
  • HubTransport
    Set-ReceiveConnector "Client Proxy SERVERNAME" -BareLinefeedRejectionEnabled $true
    Set-ReceiveConnector "Internal-Relay" -BareLinefeedRejectionEnabled $true
    Set-ReceiveConnector "SERVERNAME\Default SERVERNAME" -BareLinefeedRejectionEnabled $true
    Set-ReceiveConnector "Outbound Proxy Frontend SERVERNAME" -BareLinefeedRejectionEnabled $true

I have to manually "Remove (without sending NDR)" and I would like to find a resolution so I don't need to monitor and worry that emails are jamming up in this queue anymore.  Any ideas?

EX2013 Std. Ver 15.0 (build 1210.3)

PennyM

Search

Send-Connector with several smarthost

October 31, 2018, 9:43 am
$
0
0

Greettins

IE:

3 MBX-CAS Exchange 2013

2 Edge servers Exchange 2013

No Edge Sync configured

Issue:

One of the MBX server had storage issue and the frontend transport service stoped. 

The send-connector, on the Edge servers (Edge --> MBX direction), has the 3 MBX servers on smarthost and smarthosstring setting

The queue on the Edge servers for the MBX servers start to increase, and the messages weren't sent to any MBX server.

The fact of this MBX server is the first one on the smarthost setting of the send-connector is the reason for the messages won't delivered for the other MBX servers?

I tried to find any explanation this situation, but I couldn't find it

Can you help me?

thank you in advance

Exchange 2013 CU 18 - Routing based on Sender domain

October 31, 2018, 1:40 pm
$
0
0

We have an urgent requirement to route one of the domains in our accepted domain in our Exchange 2013 through EOP.

That is sender domain, for example, is xyz.com which is our internal accepted domain. All our employees whose email domain is xyz.com, their email needs to be routed through <g class="gr_ gr_208 gr-alert gr_gramm gr_inline_cards gr_run_anim Style multiReplace" data-gr-id="208" id="208">EOP .</g>  Other domain users should follow the default path. 

In exchange 2013 CU 18 is it possible to have a connector based on Sender domain ???

ROBIN

Mail stuck in Edge Transport Server

November 1, 2018, 1:49 am
$
0
0

I have setup a lab for exc 2013 and having some issues receiving mail from internet.

I can send to internet OK. I can send internally OK.

My MX records are setup properly

I configured an edge subscription as per Configure Edge subscription

When I send a mail from my gmail account it gets to the edge transport server and then stays there.

I assume its a DNS issue but cant figure out wehre. All firewalls are off and each box can ping the other.

Any help appreciated.

Thanks - Joe.

Mail from the application is not send to external domain.

October 4, 2018, 1:32 am
$
0
0

Dear Team,

We have configured HP software to monitor the network and generate the mail. The software is monitoring the same and generating the mail, but that mail is received only internal mail id not to external.

Please suggest I m getting below error.

Received-SPF: None (abc1.xxx.xx.xx: helpdesk-noc@xxxxxx.xx.xx
 does not designate permitted sender hosts) 

4.4.0 SMTPSEND.DNS.NoOutboundFrontendServer

November 2, 2018, 5:38 pm
$
0
0

I've stood up two new mailbox servers to replace my current pair. After migrating everyone to these new servers, all seems fine. My send connector is still configured with the old mailbox servers to proxy through the CAS. When I swap out the old servers for the new servers in the send connector, mail stops leaving the organization and the queue lists the error "4.4.0 SMTPSEND.DNS.NoOutboundFrontendServers". Sadly, Google isn't helping.

Does anyone have any pointers?

Your message wasn't delivered because of security policies -- Exchange 2013 server and its connect to O365

November 4, 2018, 8:23 pm
$
0
0

the group moderator doesn't received any emails for approval , if we doesn't use moderator everything is fine ,we get the replay is mention below . 

Delivery has failed to these recipients or distribution lists:

test@test.com Your message wasn't delivered because of security policies. Microsoft Exchange will not try to redeliver this message for you. Please provide the following diagnostic text to your system administrator.

Diagnostic information for administrators:

Generating server: ******.test.com

test@test.com #< #5.7.1 smtp;550 5.7.1 RESOLVER.RST.AuthRequired; authentication required> #SMTP#

Original message headers:

Received: from ******.test.com (10.**.**.***) by
******.test.com (10.**.**.***) with Microsoft SMTP Server (TLS)
 id 15.0.1367.3; Wed, 24 Oct 2018 14:38:24 +0800
Received: from TEST.LGH (10.**.**.***) by test-02.test.com
 (10.**.**.***) with Microsoft SMTP Server (TLS) id 15.0.1367.3 via TEST
 Transport; Wed, 24 Oct 2018 14:38:24 +0800
Received: from *****.LGH (unknown [127.0.0.1])


SMTP Emails are not delivered to Users

November 5, 2018, 9:13 am
$
0
0

Hello,

We are running a big problem. Some of the automatic emails from application are not reaching the user mailboxes. On the SMTP server  logs, we could see the logs but not passing through to the Hybrid server to reach Office365.

Can someone please help? Thank you

Best Regards,

Sharath Chandra Ayachitham 

Search

"The Microsoft Exchange Administrator has made a change that requires you quit and restart Outlook"

November 6, 2018, 8:51 pm
$
0
0
I changed the delivery options on the exchange server to automatically forward the user's email to an external email address.  Whenever I do this, the user gets the "The Microsoft Exchange Administrator has made a change that requires you quit and restart Outlook" message and they are not able to receive any messages. Once the user restarts outlook, they are fine.  This happens every time I configure forwarding for a user via the delivery options on Microsoft Exchange.  Does anyone know why the users are getting "The Microsoft Exchange Administrator has made a change that requires you quit and restart Outlook" message whenever forwarding is configured for the user via the delivery options on Microsoft Exchange?

SMTP relay to Exchange Online

October 9, 2018, 12:06 am
$
0
0

Hello TechNet,

We have 4 Exchange 2013 servers configured in hybrid mode with Exchange Online. All mailboxes have been migrated to the online service and the MX records points to Exchange Online.

The purpose of the on-prem servers is for management and SMTP relay for printers and applications.

When we send e-mails to distribution groups that are not synchronized from AD or public folders that wasn't migrated (they were created in Exchange Online) via the SMTP service on-prem, they get discarded with a 550 5.1.1 RESOLVER.ADR.RecipNotFound message.

I suspsect that this is related to how accepted domains and send connectors are configured in Exchange 2013, and I would be very grateful to get some input on how to configure this correctly for our scenario.

- Our default mail domain (xxx.com (no not actually)) is configured as "Authoritative" on-prem, and as "Internal Relay" in Exchange Online.
- The scope of our send connector "Outbound to Office 365" only contains "xxx.mail.onmicrosoft.com".

What I would like to do is to re-configure our default domain to "Internal Relay" and add xxx.com to the scope of the Office 365 send connector.

My concerns are that this will break mail flow in any way or that it may cause an e-mail loop when sending to non-existing addresses.

Any input on this matter is greatly appreciated.

Prohibit sending e-mail from Internet through smtp without password

November 8, 2018, 3:43 am
$
0
0

Dear all,

I have the following issue - anyone can send mail from any existing e-mail account in the organization over smtp without knowing the password of the account from anywhere in the world. For example this script works from anywhere:

Send-MailMessage –From administrator@myorganization.com –To administrator@myorganization.com –Subject “Test Email” –Body “Test E-mail (body)” -SmtpServer mysmtpserver.myorganization.com

How this can be prohibited? Our exchange server is 2013 with hybrid environment, migrated in O365 most of the accounts.

Exchange 2013 TransportRoles\Data\Temp filling up disk

August 8, 2013, 10:48 am
$
0
0

I have a single multi-role Exchange 2013 server and it would appear that it's not properly maintaining the temp files for the transport service.  I still have all those folder locations at their default and the problem folder is c:\Program Files\Microsoft\Exchange Server\V15\TransportRoles\data\Temp

I never had a problem with this in Exchange 2007 but I am used to running a PowerShell script nightly to clean up the IIS log files.  Do I need to do something similar for this temp folder?  Is there a setting I can adjust so that Exchange will limit the size of this folder itself?  If I stop the transport service and delete the files here will I lose anything?

Any suggestions or insight would be greatly appreciated.


Reconfiguring SPF record for more than 13 cloud email sending service provider?

October 9, 2018, 9:44 pm
$
0
0


I need some help in reconfiguring the SPF record issue in my currentdomain.com like below:

v=spf1 include:mailgun.org include:sendgrid.net include:amazonses.com include:surveymonkey.com include:spf.protection.outlook.com include:servers.mcsv.net include:mailcontrol.com include:modulargateway.com include:cloudservice.com ip4:202.89.252.19 -all

When using this service: https://dmarcian.com/spf-survey/

I can see the result is:Error: Too many DNS-querying mechanisms (count=13)
13 / 10 DNS-querying mechanisms/modifiers to resolve the record
72 netblocks are authorized
804,283 individual IPv4 addresses

So how to fix this issue to allow my email domain.com to send out the emails with no problem of being blocked by the other client/receiver antispam engine?

The Marketing team wants to use Reply-To Shared mailbox as MKT.Team@domain.com --> Using MCSV
The Product-A team wants to use Reply-To Shared mailbox as Product-A@domain.com --> Using MailChimp
The product-b team wants to use Reply-To Shared mailbox as Product-B@domain.com --> Using Amazon AWS (SES)
....
The product-z team wants to use Reply-To Shared mailbox as Product-Z@domain.com --> Using 3rd party senders....

Thanks in advance.

/* Server Support Specialist */

How can I phishing mail from external with internal email address?

November 11, 2018, 7:55 pm
$
0
0

User received phishing email from another internal user. but I checked email header, it is show sender mail server from outside.

How can I reject all email address with internal domain that send from outside?

Exchange 2013 Email Delivery Bounce

November 12, 2018, 1:03 am
$
0
0

Dear all,

Current setup:

Exchange 2013 CAS - 2 units

Exchange 2013 Mailbox - 2 units

Issue: 

User frequently receive notification on Outlook for undeliverable email as below. Previously no issue like this happened:

============================================================

Remote Server returned '554 5.6.0 An unexpected error was encountered during submission of this mail. Error reference number = 18577986.'
Original message headers:
Received: from VMEXMB01.xxx.xxx.my ([fe80::88da:acf7:c7c:b5b0]) by
 VMEXMB01.xxx.xxx.my ([fe80::88da:acf7:c7c:b5b0%16]) with mapi id
 15.00.1395.000; Thu, 8 Nov 2018 17:35:06 +0800
MIME-Version: 1.0
Content-Type: text/plain
Date: Thu, 8 Nov 2018 17:35:06 +0800
X-MS-Exchange-Transport-FromEntityHeader: Hosted
Message-ID: <207c29faeb614e50b19c3f01b6a2eec2@VMEXMB01.xxx.xxx.my>

==================================================

Any clue for the issue?

Regards,

Azanne

Search

Inter site mail routing of large attachment(s) to multiple recipients

November 12, 2018, 9:13 am
$
0
0

Hopefully this is a really easy one for someone but I am struggling to find any reference to the answer to this...

If a user sends an email with a 10MB attachment to 10 recipients who are all homed on Exchange in a different site(s), does this require 100MB of bandwidth or 10MB? I know there is no single instance storage but will exchange send the attachment once or 10 times?

Thanks

**Please don't forget to mark as helpful or answer**

Blank Delivery Report using exchange admin center

October 18, 2018, 7:27 am
$
0
0
when running a delivery report on a mailbox the result com back blank. The mailbox gets tons of mail each day from internal and external. if i run the report via powershell  i can see the logs

Stonecold31666

Tracking Spoofed Email

November 13, 2018, 3:10 am
$
0
0

Having an issue resolving spoofing of emails from our Org using Exchange 2013

We use Trend Micro Hosted Email Security, but this seems to bypass that and the SPF record.

Here are some example headers from a received email seemingly from an Internal address to that very same address, yet it seems that it has originated from an IP in Sudan? 

I have replaced our server name, server IP and email address with generic names. 

Received: from SERVER.DOMAIN.local (SERVER IP) by SERVER.DOMAIN.local
 (SERVER IP) with Microsoft SMTP Server (TLS) id 15.0.847.32 via Mailbox
 Transport; Sun, 11 Nov 2018 14:26:01 +0000
Received: from SERVER.DOMAIN.local (SERVER IP) by SERVER.DOMAIN.local
 (SERVER IP) with Microsoft SMTP Server (TLS) id 15.0.847.32; Sun, 11 Nov
 2018 14:26:01 +0000
Received: from [102.181.140.237] (102.181.140.237) by SERVER.DOMAIN.local
 (SERVER IP) with Microsoft SMTP Server id 15.0.847.32 via Frontend
 Transport; Sun, 11 Nov 2018 14:26:00 +0000
From: LOCAL USER <LOCAL.USER@DOMAIN.co.uk>
To: LOCAL USER <LOCAL.USER@DOMAIN.co.uk>
Subject: Account Issue. Changed password.
Thread-Topic: Account Issue. Changed password.
Thread-Index: AQHUecp4+RHqe1LAsk6VrVM5UkpeuQ==
Date: Sun, 11 Nov 2018 15:51:26 +0000
Message-ID: <751565660.201811111739@DOMAIN.co.uk>
Content-Language: en-GB
X-MS-Exchange-Organization-AuthSource: SERVER.DOMAIN.local
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-tm-as-user-blocked-sender: No
x-tm-as-user-approved-sender: No
x-tm-as-result: No--17.840300-5.000000-31
x-tm-as-product-ver: SMEX-11.6.0.1051-8.200.1013-24216.004
Content-Type: text/plain; charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0

The message seemingly bypasses the hosted Trend filter as the message cannot be traced in the logs, i assume as it is treated as internal. yet i don't see the email when running a mailbox search in EAC>Mail Flow>delivery reports.

If i run  "Get-MessageTrackingLog -MessageID....." using the Management Shell i see the email and using the "Select-Recipients,Sender,ConnectorID" i can see the To and  From addresses are the local email address and connector used was the default connector for the HubTransport role.

I am looking into implementing DKIM and Dmarc records but i fear it would not stop something like this. 

Could anyone offer any insight or assist me in working out how they have done this?

Many thanks


Maintaining mail flow without Contacts or Mail-enabled Users

November 15, 2018, 3:31 pm
$
0
0

The Setup

Our company was acquired by a larger organization and we have migrated all of our user mailboxes to their Office365 tenant and in the process changed primary SMTP to their domain. We have an on-premises Exchange system, which is currently used to handle some shared mailbox and SMTP relay for applications in our data center under the former accepted domains. User mail sent to the former accepted domains are routed to the O365 destination mailbox via contacts or Mail-enabled Users. The on-premises Exchange server is version 2010, which is out of support and my organization would like to turn it off.

Going Forward

I am tasked with turning off the on-premises Exchange system. I originally planned to do this after the former domains are configured to point to Office365 and mail flow for the former domains no longer goes through my data center or the on-premises Exchange server. However, there is some need to keep the former domains on-premises, to be used for outgoing SMTP only. The organization is averse to purchasing an updated Exchange License to handle such a task.

The Ask

Is there a way to direct mail sent to one of the former domains to the new destination mailboxes WITHOUT Exchange to host the contacts and MEUs that translate the final recipient address? I have considered a Linux mail server or something to that effect, but I was hoping someone out there had a better idea.

Configuring Cross forest Free Busy (Availability)

November 16, 2018, 4:37 pm
$
0
0

Hi, 

I am configuring cross forest co-existence between two Exchange Orgs and I would like to clarify the purpose of a particular setting in Exchange. 

The environment I would like to allow OrgWide Free Busy with my Exchange org is un-trusted from a domain perspective. What I would like to understand is the setting Set-AvailabilityConfig -OrgWideAccount <AccountName>

When I add this account to my Exchange Org, will this allow the other exchange or to see my users availability data (after they have configured a new Availability Address Space (using the -Credential parameter)? 

Could populating this value on my Exchange Org have any impact on other organizations that already have availability sharing setup with my Exchange Org (note the property is currently $Null on our Exchange, therefore I am assuming other organizations are referencing availability using the trusted forest method whereby Exchange servers are given a permission within the environment (cmdlet below))?

Get-MailboxServer | Add-ADPermission -Accessrights Extendedright -Extendedrights "ms-Exch-EPI-Token-Serialization" -User "<Remote Forest Domain>\Exchange servers"

Thanks, 

Mike.

Viewing all 3660 articles
Browse latest View live
Search
<script src="https://jsc.adskeeper.com/r/s/rssing.com.1596347.js" async> </script>