The following organization rejected your message: ESMTP.

Soldier101

Gawd
Joined
Jan 8, 2002
Messages
639
I have a user that is getting this message when she tries to email her family members. She was able to email them yesterday just fine and now today she gets this error message. All three are on different domains from each other so it isn't on their side.

----------------------------

An error occurred while trying to deliver this message to the recipient's e-mail address. Microsoft Exchange will not try to redeliver this message for you. Please try resending this message, or provide the following diagnostic text to your system administrator.

The following organization rejected your message: ESMTP.

----------------------------

I read this means the server external ip doesnt match what the smtp or whatever is expecting. I have no idea how to fix this.
 

Proactivens

Weaksauce
Joined
Sep 22, 2010
Messages
109
Well does the IP your exchange is communicating out of match the IP listed in the dns records?
 

Soldier101

Gawd
Joined
Jan 8, 2002
Messages
639
Well does the IP your exchange is communicating out of match the IP listed in the dns records?

I cant even remember how to check...I know we didn't change anything between yesterday and today though and this issue just all of a sudden began :-(

Am I supposed to logon to our domain name registar and check the domain names ip address.???
 

Proactivens

Weaksauce
Joined
Sep 22, 2010
Messages
109
your going to want to check the MX records for your domain name. That is likely controlled by your registar or web host.

Does your exchange communicate out the same IP as the rest of the machines on your network, or do you have a separate live IP setup in a 1:1 nat just for that exchange?
 

Soldier101

Gawd
Joined
Jan 8, 2002
Messages
639
your going to want to check the MX records for your domain name. That is likely controlled by your registar or web host.

Does your exchange communicate out the same IP as the rest of the machines on your network, or do you have a separate live IP setup in a 1:1 nat just for that exchange?

How do I see what IP the exchange server goes out of? I went to whatismyip.com on it and some local machines and they all show the same thing....
 

Soldier101

Gawd
Joined
Jan 8, 2002
Messages
639
Here is the full error email I receive.

Delivery has failed to these recipients or distribution lists:

whatlwl@auburn.edu
An error occurred while trying to deliver this message to the recipient's e-mail address. Microsoft Exchange will not try to redeliver this message for you. Please try resending this message, or provide the following diagnostic text to your system administrator.

The following organization rejected your message: ESMTP.

_____

Sent by Microsoft Exchange Server 2007







Diagnostic information for administrators:

Generating server: ChamberExchange.montgomerychamber.com

whatlwl@auburn.edu
ESMTP #550 Mailbox unavailable or access denied - <whatlwl@auburn.edu> ##

Original message headers:

Received: from ChamberExchange.montgomerychamber.com
([fe80::809e:65a5:7156:7114]) by ChamberExchange.montgomerychamber.com
([fe80::809e:65a5:7156:7114%11]) with mapi; Fri, 14 Jan 2011 12:45:31 -0600
From: Mike Pruett <mpruett@montgomerychamber.com>
To: "whatlwl@auburn.edu" <whatlwl@auburn.edu>
Date: Fri, 14 Jan 2011 12:45:30 -0600
Subject: Test email
Thread-Topic: Test email
Thread-Index: Acu0Gzf1cN061klST+OOmdKcbwfxNg==
Message-ID: <78C8E82DD71C1745A35D17DC9116EFAD5ADB9ED225@ChamberExchange.montgomerychamber.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
acceptlanguage: en-US
Content-Type: multipart/alternative;
boundary="_000_78C8E82DD71C1745A35D17DC9116EFAD5ADB9ED225ChamberExchan_"
MIME-Version: 1.0
 

Soldier101

Gawd
Joined
Jan 8, 2002
Messages
639
we use forefront for spam protection etc.....which is where all of our mail hits when it comes in or leaves our server......they said they had some issues earlier but that they should be resolved now. Since they aren't im wondering if the changes they made just hadn't replicated to the box we are on yet.
 

Proactivens

Weaksauce
Joined
Sep 22, 2010
Messages
109
what IP is whatismyip.org reporting? does it match this: 213.199.180.150

mx:montgomerychamber.com mx

Pref Hostname IP Address TTL
10 mail.global.frontbridge.com 213.199.180.150 2 hrs
 

Proactivens

Weaksauce
Joined
Sep 22, 2010
Messages
109
and you are on a blacklist:

Blacklist Status Reason TTL ResponseTime
Tiopan LISTED Return codes were: 127.0.0.2 2100 250
 

Proactivens

Weaksauce
Joined
Sep 22, 2010
Messages
109
and now we get to the bottom of it: Your failing reverse lookups
smtp:216.32.180.22 smtp
220 VA3EHSMHS030.bigfish.com Microsoft ESMTP MAIL Service ready at Fri, 14 Jan 2011 19:54:38 +0000


OK - 216.32.180.22 resolves to mail.global.frontbridge.com
Warning - Reverse DNS does not match SMTP Banner
0 seconds - Good on Connection time
Not an open relay.
0.234 seconds - Good on Transaction time

Session Transcript:
HELO please-read-policy.mxtoolbox.com
250 VA3EHSMHS030.bigfish.com Hello [64.20.227.133] [47 ms]
MAIL FROM: <supertool@mxtoolbox.com>
250 2.1.0 Sender OK [31 ms]
RCPT TO: <test@example.com>
550 5.4.1 Relay Access Denied [47 ms]
QUIT
221 2.0.0 Service closing transmission channel [31 ms]
 

Soldier101

Gawd
Joined
Jan 8, 2002
Messages
639
and now we get to the bottom of it: Your failing reverse lookups
smtp:216.32.180.22 smtp
220 VA3EHSMHS030.bigfish.com Microsoft ESMTP MAIL Service ready at Fri, 14 Jan 2011 19:54:38 +0000


OK - 216.32.180.22 resolves to mail.global.frontbridge.com
Warning - Reverse DNS does not match SMTP Banner
0 seconds - Good on Connection time
Not an open relay.
0.234 seconds - Good on Transaction time

Session Transcript:
HELO please-read-policy.mxtoolbox.com
250 VA3EHSMHS030.bigfish.com Hello [64.20.227.133] [47 ms]
MAIL FROM: <supertool@mxtoolbox.com>
250 2.1.0 Sender OK [31 ms]
RCPT TO: <test@example.com>
550 5.4.1 Relay Access Denied [47 ms]
QUIT
221 2.0.0 Service closing transmission channel [31 ms]

How would I fix this issue? I put in a request with forefront due to them having a network related issue. The IP Address that whatismyip.com shows is 72.234.70.162 which is our internet pipe, we supposedly have .166 reserved for exchange but it looks like everything exchange does goes through an off site forefront server.
 

Proactivens

Weaksauce
Joined
Sep 22, 2010
Messages
109
Your mx records are resolving to 216.32.180.22. Your exchange appears to other exchanges as though its sending mail from 64.20.227.133. When the receiving exchange does a reverse lookup of the domain listed in the mail header, it finds 216.32.180.22 when it expects 64.20.227.133, and there fore you get rejected and black listed. The black list problem will continue until you resolve your reverse lookup problem.

I would be talking to whom ever is in control of your outgoing mail.
 

Soldier101

Gawd
Joined
Jan 8, 2002
Messages
639
Your mx records are resolving to 216.32.180.22. Your exchange appears to other exchanges as though its sending mail from 64.20.227.133. When the receiving exchange does a reverse lookup of the domain listed in the mail header, it finds 216.32.180.22 when it expects 64.20.227.133, and there fore you get rejected and black listed. The black list problem will continue until you resolve your reverse lookup problem.

I would be talking to whom ever is in control of your outgoing mail.

Thanks for your help bud! You rock!
 

Soldier101

Gawd
Joined
Jan 8, 2002
Messages
639
How do I check to see if out outgoing goes through them or if it is just our incoming that goes through them? (So if it is in fact outgoing and our box does that instead of theirs...I wont have to wait for tech support lol) Or would both go through since one of them does?
 

Soldier101

Gawd
Joined
Jan 8, 2002
Messages
639
64.20.227.133 is the ip address of the network tools site......I have no idea how to fix this lol...apparently we dont use forefront for outgoing email
 
Top