Quantcast
Channel: Exchange Server 2013 - Mail Flow and Secure Messaging forum
Viewing all 3660 articles
Browse latest View live

Emails destined for Outlook.com rejected with 4.4.7 - theory?

March 18, 2014, 8:22 pm
$
0
0

I have a client that is a Law Firm. They are trying to send emails to a company that uses Outlook.com as the host for their emails. Whenever my client sends an email to the company, the messages sit in the outgoing queue of their server with the error 4.7.7.

When tested from my own exchange server emails are delivered to their server. (delivery receipt received)

When I check the hosted domain via MXToolbox, it reports all is ok

My question.

Does a customer who has email hosted on Outllook.com have any ability to block a sender (either in a spam filter or junk mail filter) that would cause this to happen and generate the 4.7.7 error.

I am wondering of the company is actually doing something to block my Clients email domain from being accepted in some way.

Search

Tracking Mail Flow " user cannot get mail from server"

March 18, 2014, 8:36 pm
$
0
0

Please help to tracking message from mail flow on ECP.   Why user cannot get mail  ?

Delivery Report for User1@test.in.th
Pending
3/19/2014 9:36 AM exchmb01.test.in.th
The message has been transferred from exchmb01.test.in.th toexchmb02.test.in.th

3/19/2014 10:33 AM exchmb01.test.in.th
No further information is available about this message because the logs are no longer available.

SMTP DNS errors in Mailbox Transport Service

March 17, 2014, 2:41 pm
$
0
0

Users have reported that intermittently, inbound email is being returned to sender with an invalid domain name: #554 5.4.4 SMTPSEND.DNS.NonExistentDomain; nonexistent domain ##

I'm seeing DNS lookup errors in both our TransportRoles > Logs > Mailbox > Connectivity > Delivery and Submission folders.

In Delivery:

2014-03-12T19:24:53.739Z,08D102BA4526E381,SMTP,mailboxtransportsubmissioninternalproxy,+,Undefined 00000000-0000-0000-0000-000000000000;QueueLength=0
2014-03-12T19:24:54.364Z,08D102BA4526E381,SMTP,mailboxtransportsubmissioninternalproxy,>,Non-existent domain reported by 192.168.1.1. [Domain:Result] = (our mail server name):InfoDomainNonexistent;
2014-03-12T19:24:54.364Z,08D102BA4526E381,SMTP,mailboxtransportsubmissioninternalproxy,-,Messages: 0 Bytes: 0 (The domain name does not exist. Please correct the address and try again.)
2014-03-12T19:24:54.364Z,08D102BA4526E380,MapiDelivery,Mailbox Database 0020632088,-,Messages: 1 Bytes: 21454 Recipients: 1

These messages are repeated every 65 seconds for a 15 minute period and then stop.

In Submission we see many more like this:

014-03-12T08:40:36.445Z,08D102BA3F4FE575,SMTP,mailboxtransportsubmissioninternalproxy,+,Undefined 00000000-0000-0000-0000-000000000000;QueueLength=0
2014-03-12T08:40:36.445Z,08D102BA3F4FE575,SMTP,mailboxtransportsubmissioninternalproxy,>,Non-existent domain reported by 192.168.1.1. [Domain:Result] = (our domain name):InfoDomainNonexistent;
2014-03-12T08:40:36.445Z,08D102BA3F4FE575,SMTP,mailboxtransportsubmissioninternalproxy,-,Messages: 0 Bytes: 0 (The domain name does not exist. Please correct the address and try again.)

These messages repeat every 120 seconds many times throughout the day.

My questions:

(1) If we see the messages in the Mailbox Connectivity Submission log, does that mean that emails we are sending may not be getting to their recipients? (We are not receiving any DNR reports ourselves, just some people sending messages to us, and it's not consistent, i.e., they can resend and we do receive their second message.)

(2) Do these messages appear once for each message that fails, or do they just report in these fixed number of seconds intervals, and that any emails that are attempted to be sent or received during that interval fail? (There seem to be more intended recipients who are getting DNR reports from us than there are log messages in the Mailbox Delivery logs, and the times don't seem to line up well.)

We have ECP configured for Internal and External DNS lookups to our local host first and then our external DNS servers provided by our ISP through our firewall.  I've read that for Internal DNS lookups, we shouldn't look to an external DNS server, might that explain this somewhat random occurrence?

Address Rewriting - Sender and Recipient

March 18, 2014, 7:21 am
$
0
0
Is there any way to perform address re-writing for BOTH the sender address and the recipient address for all outbound mail? We need to use it in-between two separate mail systems. Or is it just limited to sender for outbound and recipient for inbound?

Few mails are not reaching to a recipient while other are receiving the same email

March 19, 2014, 1:08 am
$
0
0

Hi

I am facing very strange issue for few days. 

The email sent by a user to multiple internal recipient, is not reaching to one recipient, while others are receiving that email.

Few users are facing this issue. mail neither reaching in their inbox nor Junk folder.

I am using Exchange Server 2013 CU2 and TrendMicro MailScan anti-spam.

I have searched the logs in TrendMicro Mail Scan but nothing found.

Please help.

Thanks,

Manoj 

Thanks, Manoj

Single Server SPAM filtering

March 7, 2014, 9:54 am
$
0
0
We recently upgraded to Exchange 2013.  We have a single server setup with transport and mailbox roles on the same machine.  We have noticed a dramatic increase in SPAM and I have started to notice our IPBlockListProviders don't seem to be blocking. I've run Test-IPBlockListProviders and it responds as I would expect with a known blocked IP.  However email still continues coming into mailboxes from that IP.  I've noticed some people stating that Microsoft removed connection level filtering. Is this true? If so how do I use DNSBL to stem the flow of SPAM?

Todd Schoenfeld 1 Computer Consultant Little Elm, TX 75068

Delivery is delayed to these recipients or groups

March 19, 2014, 11:54 am
$
0
0

I'm receiving the below message when sending external emails to SOME people, but not others.

A few things we've noticed:

  1. Anyone from our company can send emails to this person and it gets delayed (not restricted to one person in our company)
  2. It is affecting multiple domains. The example below is for americaii, but so far we've had at least 15 other people get reported with the same issue this morning.
  3. We can still send to other domains (gmail, other company domains, etc.) without issue or delay
  4. We are on exchange 2010 and using outlook 2010.
  5. We haven't changed anything on our server (no updates, new upgrades or new software)
  6. The receipients (e.g., americaii) can still receive email from other senders without issue.

    -------------------
    Delivery is delayed to these recipients or groups:

    XXXX XXXX (XXXXX@americaii.com) (XXXXX@americaii.com)

    YYYY@americaii.com (YYYY@americaii.com)

    Subject: ###########

    This message hasn't been delivered yet. Delivery will continue to be attempted.

    The server will keep trying to deliver this message for the next 22 hours and 52 minutes. You'll be notified if the message can't be delivered by that time.

    -------------------------

    AFTER 24 hours, we get a rejection notice like this:

    -------------------------
    Delivery has failed to these recipients or groups:

    XXXXXX@Grainger.com (XXXXXX@Grainger.com)
    The server has tried to deliver this message, without success, and has stopped trying. Please try sending this message again. If the problem continues, contact your helpdesk.







    Diagnostic information for administrators:

    Generating server: OURSERVER.PTIAssembly.com

    XXXXXXX@Grainger.com
    #550 4.4.7 QUEUE.Expired; message expired ##

    Original message headers:

    Received: from OURSERVER.PTIAssembly.com ([fe80::ec0f:64af:3fcb:1d4b]) by
    OURSERVER.PTIAssembly.com ([fe80::ec0f:64af:3fcb:1d4b%10]) with mapi id
    14.03.0174.001; Tue, 18 Mar 2014 10:16:45 -0500
    From: OUR EMPLOYEE <XXXXX@ptiassembly.com>
    To: "XXXXXX@Grainger.com" <XXXXXX@Grainger.com>
    Subject: SUBJECT LINE
    Thread-Topic: SUBJECT LINE
    Thread-Index: Ac9CvP+ijrm+4l8XRV6cScz5lXX3hA==
    Date: Tue, 18 Mar 2014 15:16:45 +0000
    Message-ID: <1011DE9DA6CCB742A9FEF1F5B667636A524B7EE9@OURSERVER.PTIAssembly.com>
    Accept-Language: en-US
    Content-Language: en-US
    X-MS-Has-Attach:
    X-MS-TNEF-Correlator:
    x-originating-ip: [192.168.1.231]
    Content-Type: multipart/alternative;
                boundary="_000_1011DE9DA6CCB742A9FEF1F5B667636A524B7EE9PTIExchangePTIA_"
    MIME-Version: 1.0

PROBLEM OF MAIL FLOW

March 19, 2014, 5:35 am
$
0
0
When i send messages from one account using owa,it shows that the mail sent,but the recipient does not get any message.i can not find what is the actual problem.And another thing is at first when i started sending mail using owa,it always went to draft,suddenly after restarting the services,it solved.please help me. 

trainee

Search

554 Transaction Failed Spam Message not queued

March 12, 2014, 11:46 pm
$
0
0

HI All,


We are using exchange 2013. there is no problem in sending/receiving the mail.

Our MX pointed to google through we are sending/receiving the mail for in house exchange


But some exchange users like 2 to 3 users are complaining while sending the mails to different domain they are reeving bounce back error immediately or 20 mins after.


Error message

Technical details of permanent failure:

Google tried to deliver your message, but it was rejected by the server for the recipient domain external.com by portal1.external.com. [198.x.x.x]

The error that the other server returned was:

554 Transaction Failed Spam Message not queued.


Steps taken so far.

Cleared outlook cache and tried it works but after some time giving same error.

Reconfigured the profile - no go

Please help us to resolve permanently.


X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;

        d=1e100.net; s=20130820;

        h=x-gm-message-state:from:to:subject:thread-topic:thread-index:date

         :message-id:accept-language:content-language:content-type

         :mime-version;

        bh=C6PS+ebW0pD6mQWpje7TS/bj2uXlNVC1G7Q6l8MXFbM=;

        b=WbevaNOVmGAPWa7AyYyFAhwXCh1A5BxMh2K9imEnpzC2c2K9hdL3FcPP60LsSZ5X/V

         Tk1nDk2eX3srSQv4VgPAMvJyXuEzdBiPH86TlcBJOhFj61eF6EPoh3J/NIo9bq5bT0yq

         Qz10DvRTfccj0sxdbOf9eltJK2KxvxESxPJ58tu7gic2dmh0eUKiDUE6Em7i4bHEyClt

         ToCXuc/73kkrhUWY2B15g7bJxh91yB6TzDeLoelipbFdV3XlSHO5OYTX5T25F3VarB0o

         t6v1bOF+DA7yFnFEWvKirflTF9c5J24beZjaxHOr/Jv2GwwNcF2wGbOiBQ0NBKWN3zgJ

         cDaA==

X-Gm-Message-State: ALoCoQkTnVatOef3ZU4F8FJeGc+D3iPk4/vhhoPrnlp4KJ7HUYEIUhABanV8c7UkMJrdxBnBipui

X-Received: by 10.42.131.197 with SMTP id a5mr15269568ict.8.1394647396799;

        Wed, 12 Mar 2014 11:03:16 -0700 (PDT)

Return-Path: <xx@internal user>

Received: from internal domain.com ([internal IP])

        by mx.google.com with ESMTPS id qk2sm877501igc.0.2014.03.12.11.03.14

        for <external user>

        (version=TLSv1 cipher=ECDHE-RSA-AES128-SHA bits=128/128);

        Wed, 12 Mar 2014 11:03:16 -0700 (PDT)

Received: from internaldomain.com (internal IP) by internaldomain.com

 (192.168.68.45) with Microsoft SMTP Server (TLS) id 15.0.712.24; Wed, 12 Mar

 2014 23:10:12 +0530

Received: from internaldomain.com ([fe80::d1ee:ada:7737:5f82]) by  internaldomain.com ([fe80::d1ee:ada:7737:5f82%14]) with mapi id  15.00.0712.012; Wed, 12 Mar 2014 23:10:12 +0530

From:  internal user

To: " external user'"

Subject: xxxx

Thread-Topic: xxxx

Thread-Index: Ac8+GlIli6S2fwtWSNm5mpYCPuPyIQ==

Date: Wed, 12 Mar 2014 17:40:12 +0000

Message-ID: <525c7fd420ec4df3b19301c847085a4b@internaldomain.com>

Accept-Language: en-US

Content-Language: en-US

X-MS-Has-Attach: yes

X-MS-TNEF-Correlator:

x-originating-ip: [117.247.112.92]

Content-Type: multipart/mixed;

               boundary="_004_525c7fd420ec4df3b19301c847085a4bMinternal domain_"

MIME-Version: 1.0

Regards

Urrahamath








Powershell Advise required for MessageTracking

March 20, 2014, 10:31 am
$
0
0

Hello,

Im wondering if anyone can help me.  Im getting to grips with the basics of Powershell now but Im attempting to setup a little script that will assist me and the rest of our exchange administrators to pull back quick results from MessageTrackingLog instead of using the EMC Tracking tool of editing a command every time we want to do tracking.  The problem I have is that I wish to use most of the parameters available to the powershell cmdlet 'get-messagetrackinglog' via read-host -prompts.  But if you dont enter data in every one the script doesnt actually work. You just get an 'OK' response. You will see the couple of lines below that im trying to excempt from the requirement of data in the script.

I will paste exactly where I am upto below to try and resolve the issue.  Any assistance is greatly appreciated.....

[System.Windows.Forms.MessageBox]::Show("WELCOME TO MESSAGE TRACKING" , "EMAIL TRACKING")
$server = Read-Host –Prompt ‘Enter Server Name to view Tracking Upon’
$EventID = Read-Host –Prompt ‘Enter The EVENT ID'
$Sender = Read-Host –Prompt ‘Enter The SMTP Address of the Sender Account’
if ($sender -eq 'SEND')
{ Out-Host ""}
else
{}
$Recipients = Read-Host –Prompt ‘Enter The SMTP Address of the Recipient Account’
$MessageSubject = Read-Host –Prompt ‘Enter THE SUBJECT of the email you want to filter’
if ($messagesubject -eq $null)
{ Out-Host ""}

else
{}    

$StartDate = Read-Host –Prompt ‘Enter The Start Date for Message Tracking - FORMAT dd/mm/yyyy hh:mm:ss’
$EndDate = Read-Host –Prompt ‘Enter The End Date for Message Tracking - FORMAT dd/mm/yyyy hh:mm:ss’

Get-MessageTrackingLog -Server $server -EventID $EventID -Sender $sender -Recipients $recipients -MessageSubject $MessageSubject -Start $StartDate -End $EndDate | Select Timestamp, EventID, Sender, {$_.Recipients}, MessageSubject

Forwarding to Outbound Connectors

March 20, 2014, 6:29 pm
$
0
0

Hi Everyone,

Quick question, hopefully an easy solution...

I currently have a rule in place which forwards all mail to user@domain.com to an outbound connector.

This works great, and the end-user receives the email at the connectors end point.

However I would like it so that it keeps a copy of the email in the users local mailbox as well as forward to the outbound connector. I am using Exchange Online (Office365), and can't seem to find any option for this.

Any assistance would be greatly appreciated.

Cheers,
Anthony


Legal Hold - Users with Identitical names

March 20, 2014, 8:41 pm
$
0
0
If user1 called John Smith worked for an organisation and then left. Then
User4000 also called John Smith joins the same organisation and received the
same UPN or SMTP mail address (as the previous John Smith) but would have had different AD username. How
does eDiscovery differentiate between their email data that may be kept in archive or legal hold? Which attributes sets them apart? Thanks in advance for your assistance.

Transport Rule with condition "bcc = abc@contoso.com"

March 21, 2014, 7:18 am
$
0
0

Hello,

I have Exchange 2013 SP1 and want to configure a Transport Rule with the condition "If bcc contains abc@contoso.com" do "XYZ".

Is there any way to use the BCC in a Transport Rule conditon?

Regards

Thomas

Exchange 2013 + Outlook 2013 no domain security symbol green arrow

January 27, 2014, 2:54 am
$
0
0

hello,

we have implemented domain security with a few partner domains. With Exchange Server 2010 and Outlook 2013 or 2010 we see as expected the green arrow symbol for domain security in outlook when receiving mails from the partner domains.

In our test environment we have an Exchange 2013 server.  Here we see the symbol only when using Outlook 2010, with Outlook 2013 we don't see the symbol.

It seems that only when Exchange 2013 and Outlook 2013 in combination is used the symbol is missing, is this a normal behaviour or what can we do to see the symbol? The mails still coming ciphered and you can see the X-MS-Exchange-Organization-AuthAs: Partner in the header of the mails but no symbol is showing.

Thanks and best regards
Marcus

DNS Configuration for Exchange 2013

March 23, 2014, 3:08 pm
$
0
0

I have a stand alone server 2012 with AD, DHCP, DNS and Exchange on it and started getting DDoS attacks

I installed a firewall had to change the subnet of the server from 10.0.0.0/24 to 192.168.1.0/24 and after re-configuring the Servers IP, DHCP and DNS found that I had no incoming email. (invalid Security Certificate)

I found that mail  traffic was directed to the Router instead of Exchange and being rejected with the routers security certificate. I have since fiddled with the DNS so many times I don't know what is right and wrong

Anyone have any ideas where I have gone wrong  what is in the tables that shouldn't be there and what is missing.

email address is user.mail.domain.com

Geotrust SSL Security Certificate is mail.domain.com autodiscover.domain.com server01.domain.com

**Forward lookup for domain.com
Same as parent SOA [28]server01.domain.com, hostmaster.domain.com
Same as parent NS server01.domain.com
Same as parent NS ns1.domain.com
Same as parent NS ns2.domain.com
Same as parent MX [10]mail.domain.com
Same as parent MX [20]mail.domain.com
server01 MX [10]mail.domain.com
Same as parent HostA 192.168.1.10
Same as parent HostA 139.130.XXX.YYY
server01 HostA 192.168.1.10
mail HostA 192.168.1.10
mail HostA 139.130.XXX.YYY
localhost HostA 127.0.0.0


Properties SOA ns1.domain.com 139.130.XXX.YYY
ns2.domain.com 139.130.XXX.YYY
server01.domain.com 192.168.1.10

**Forward lookup for mail.domain.com
Same as parentSOA[1]server01.domain.com, hostmaster.domain.com
Same as parentNSserver01.domain.com
Same as parent HostA192.168.1.10
Same as parentHostA139.130.XXX.YYY

Properties of SOAserver01.domain.com192.168.1.10

**Reverse Lookup
1.168.192.in-addr.arpa
Same as parentSOA[1]server01.domain.com, hostmaster.domain.com
Same as parentNSserver01.domain.com
Same as parentNSns1.domain.com
192.168.1.10PTRdomain.com
192.168.1.10PTRmail.domain.com

OWA and Outlook 2013 work incoming and outgoing from within the subnet,  both internal emails and  external emails

But users off site can't log in to outlook 2013 and get blocked with OWA  by invalid security certificate.


**Testconnectivity.microsoft.com results

autodiscover failed

resolved host domain.com successful with both correct IP addresses returned

Port 443 open

SSL Certificate incorrect it is the routers Certificate  not the Geotrust certificate.

**This is the real issue, and I can't figure out why 

Thanks Alan





Search

Applying retention Policy tags to inbox in Exchange Server 2010

March 23, 2014, 7:10 pm
$
0
0
I configured a Journal inbox in Exchange server 2010. I would like to configure a retention policy of 30 days so after a month all emails will be deleted from the Inbox of the Journal account. I configured the retention policy but messages would never get deleted.

Claendar Permissions not working properly for one user in exhange 2010 sp2

March 23, 2014, 11:45 pm
$
0
0

Hi .

All users in our environment having deflault calednar permissions as availaibility only.

One user reports that his calendar is seen to all users. From outlook ,his permissions sseems ok. From server side, it was not reflecting properly, I changed it to Availaibilty only using powershell.

After that ,his calendar details was not visible for me,  But issue is it is behaving strange, I asked many co- workers to check the status, for some only free/busy is visble(Expected) ,but for some complete details is visible(this should not be case).

Help requires to solve this issue.

Exchange 2013 issues - (new send email Stuck in Drafts not send)

March 4, 2013, 2:02 am
$
0
0
Exchange 2013 issues - (new send email Stuck in Drafts folder not send)

451 4.4.0 dns query failed. The error was: DNS Query failed with error ErrorRetry Exchange 2013

September 16, 2013, 11:47 pm
$
0
0

Hi,

We are using MS Exchange Server 2013 CU1 on MS Windows Server 2008 Standard R2. 

In queue viewer, I am getting this error for few domains only "451 4.4.0 dns query failed. The error was: DNS Query failed with error ErrorRetry"

Any because of this, We are unable to send any email to these domains, 

Can someone please help to fix this..?

Thanks in Advance..

Thanks, Manoj

Block Top Level Domain (.eu)

March 24, 2014, 12:28 pm
$
0
0

I'm trying to configure a transport rule in Exchange 2013 to block all emails from the TLD .eu   We get nothing but a TON of spam that is not caught by the Exchange 2013 spam filter, and it's always from a different domain. I have seen guides for 2007 and 2010, but nothing for 2013.

Do I just use the rule "The sender domain is" and use the value ".eu"? I just want to verify this is the correct way to block a TLD.

Viewing all 3660 articles
Browse latest View live
Search
<script src="https://jsc.adskeeper.com/r/s/rssing.com.1596347.js" async> </script>