Hello,
I have a problem with blocked SMTP communications from Exchange Server to domain controllers.Do not you know why Exchange Server wants to communicate using SMTP with a controller?
Thanks for help
↧
Exchange - blocked SMTP communication to Domain Controller
↧
Mail being Queued because server busy for hosted Microsoft Domains
Today I noticed that mail for dozens of domains that are hosted on microsoft were sitting in the que with 451 4.7.500 Server busy. In checking the mx records they all were company name then mail.protection.outlook.com. Then they would just go
out after awhile. Sending emails to any other companies not hosted with microsoft, zero issues. This is 8/3/18, was there corporate issues this day or is it on my end. Never seen this before till today.
↧
↧
Set auto reply for messages, sent to specific accepted domain
Hi,
we have an exchange server 2013, which handles the messages for two accepted domains, let's call them domain1.com and domain2.com. This occurred after the acquisition of another company, which domain is domain2.com. I want to set an auto reply message for all recipients, so that when an external sender sends messages to @domain1.com an auto reply message to inform the sender, that after three months the domain @domain1.com will be no longer available and all the messages, sent after this period must be send only to @domain2.com. I have tried to do this via transport rule, but I did not find where to put the text on "Actions" step. Does anybody know to complete this scenario? Just to mention that setting up an Outlook rule is not an option, because it is mandatory auto reply messages to be sent even if Outlook is not started.
Thanks in advance.
↧
554 5.7.1 This message has been blocked because the HELO/EHLO domain is invalid from specific domain
Hi Guys,
We have Exchange 2013 standard with latest CU installed on our premises, but we are facing an error with one specific domain.
When a mailbox in an specific domain send a mail to one of our mailboxes, it get the error 554 5.7.1 This message has been blocked because the HELO/EHLO domain is invalid.
Also, when we do a diagnostic test from mxtoolbox, we get the same error.
I have setup the fqdn in the send conector and also in the receive conector.
Is there anything i can check to fix that issue.
i'll appreciate any help you can give me.
Regards,
↧
Hybrid Configuration Wizard - Public IP Addresses & Org FQDN
Hi Everyone,
I wonder if someone might be able to clarify a few points for me. I am currently working on setting up a hybrid configuration and was looking at my options for hybrid mail flow. I have setup a lab environment in Azure and upon running the HCW I noticed the option to specify multiple public IP's and then later the Org FQDN. Upon completion I noticed the Connector setup in O365 will direct all SMTP traffic to the DNS name specified on the Org FQDN page. My two questions that I am looking for clarification on are:
1. Can we simply have the DNS name in the org FQDN resolve to multiple NAT'd IP's on our internet facing FW in order to provide HA for SMTP traffic in a hybrid configuration? I'm assuming HWLB is another option but I'm trying to avoid that to keep things simple.
2. If the org FQDN is used by EOP for mail flow, what is the significance of specifying the Public IP Addresses? Possibly added to a whitelist on the EOP side?
Many thanks in advance for your help.
Kind Regards
Chris
↧
↧
Event id for a Message tracking shows Deliver. But user cannot see the email in the mailbox
This the scenario
User A sent an email to User B. User B replied to the email and User A did not receive it and User A raised a Ticket that even though User B replied User A did not receive the email. So I did a mail trace and the event id Deliver showed under the recipients User A. I checked the user outlook client and performed advanced search using search tools and it did not show up.
I also ran the command search-mailbox on the User A mailbox with the subject and also did not find it. User B outlook client is running in online mode.
Not sure even though the event id Deliver trigger I am not able to see the User B reply to User A,
Exchange server : CU 13
outlook client 2016
↧
migration Lotus Notes to Exchange, how to migrate confidential emails (in LN encrypted)
Hi,
we're investigating a migration of Lotus Notes to Exchange. One issue is the migration of encrypted mail. How to keep them confidential in Exchange?
We have users like a secretary that has read/write access to a mailbox of a manager. If another user mails the manager with confidential information, he encrypts it in LN before sending it, so only the mailbox owner can open the message. Is this possible in Exchange 2013 and in Exchange online? Heard that you can set things via IRM, but that with Outlook web access the secretary can set the manager's mailbox as primary and than will be able to open the confidential email....
best regards,
Hans
↧
Redirect Messages from one Hub Server to another Hub Server (Exchange 2007)
Hi,
I need a small help!!
I wanted to know how to Redirect Messages from one Hub Server to another Hub Server (Exchange 2007). If one server Hub Server got failed due some issue then how do we redirect messages to another HUB server which is located in another site site..
↧
Exchange Server Rebooted Automatically. Event logged Event id 153 Task Category Database Recovery
Hello All,
Over the weekend my exchange server rebooted automatically and during that period I was seeing this error in the event logs not sure what exactly happened
At '8/12/2018 4:02:03 AM' the Exchange store database 'DB11' copy on this server detected a Hung IO and logged an event. For more details about the failure, consult the Event log on the server for other storage and "ExchangeStoreDb" events
↧
↧
Incoming Mail intended for one recipient recieved by another recipient?
Dear colleges,
I need your help on this one because my troubleshooting got me nowhere.
The situation:
Sender outside of our organization sent us one E-Mail which was supposed to be received by Recipient A, but instead gets received by Recipient B. So A never got the E-Mail, but B which does not have any connection with A gets the E-mail. We are currently in the process of migration from EX 2010 to 2016 and so far the mailboxes are 95% finished but still on 2010, SCP is on 2016. Incoming mail goes first through 2010 and 2010 Server forwards the mail to 2016 Server DAG. We use Trendmicro IMSVA for scanning our E-Mails and XiTrust for encryption of our E-Mails.
A and B do not have any mailbox delegation set between them.
E-Mail Properties:
Received: from mx01.OURCOMPANY.com (IP) by OURSERVER.domain
(10.6.100.88) with Microsoft SMTP Server id 14.3.361.1; Thu, 8 Mar 2018
08:55:23 +0100
Received: from mx01.OURCOMPANY.com (unknown [127.0.0.1]) by IMSVA
(Postfix) with ESMTP id C18054E070 for <RECIPIENTA@OURCOMPANY.com>;
Thu, 8 Mar 2018 08:55:22 +0100 (CET)
Received: from mx01.OURCOMPANY.com (unknown [127.0.0.1]) by IMSVA
(Postfix) with ESMTP id 9AF334E06F for <RECIPIENTA@OURCOMPANY.com;
Thu, 8 Mar 2018 08:55:22 +0100 (CET)
Received: from SENDER@Email.com (unknown [IP OMMITED]) by
mx01.OURCOMPANY.com (Postfix) with ESMTPS for
<RECIPIENTA@OURCOMPANY.com; Thu, 8 Mar 2018 08:55:22 +0100 (CET)
Received: from GT-EXCHANGE2010.SENDER.LOCAL
([fe80::4155:dc72:973d:c0c4]) by GT-EXCHANGE2010.SENDER.LOCAL
([fe80::4155:dc72:973d:c0c4%16]) with mapi id 14.02.0387.000; Thu, 8 Mar 2018
08:54:48 +0100
From: SENDER <SENDER@Email.com>
To: "'RECIPIENTA@OURCOMPANY.com'"
<RECIPIENTA@OURCOMPANY.com>
Subject: Question
Thread-Topic: Question
Thread-Index: AdO2Hxh+GAU/A=
Date: Thu, 8 Mar 2018 07:54:48 +0000
Message-ID: <SENDER@Email.com>
References: <1598.124201.152043JavaMail.MAIL ENCRYPTING SERVER$@MAIL ENCRYPTING SERVER>
<SENDER@Email.com>
In-Reply-To: <SENDER@Email.com>
Accept-Language:en-US
Content-Language: en-US
X-MS-Has-Attach: yes
X-MS-TNEF-Correlator:
x-originating-ip: [10.0.1.37]
Content-Type: multipart/related;
boundary="_007_0C34459E615A904196413F18F391D80GTEXCHANGE2010g_";
type="multipart/alternative"
MIME-Version: 1.0
X-TM-AS-GCONF: 00
X-TM-AS-Product-Ver: IMSVA-9.1.0.1631-8.2.0.1013-23706.005
X-TM-AS-Result: No--19.100-4.5-31-10
X-imss-scan-details: No--19.100-4.5-31-10
X-TM-AS-User-Approved-Sender: No
X-TM-AS-User-Blocked-Sender: No
X-TMASE-Version: IMSVA-9.1.0.1631-8.2.1013-23706.005
X-TMASE-Result: 10--19.100400-10.000000
X-TMASE-MatchedRID: OoEa6u7Uk...
X-IMSS-DKIM-White-List: No
X-TMASE-SNAP-Result: 1.821001.0001-0-1-12:0,22:0,33:0,34:0-0
Return-Path: SENDER@Email.com
X-MS-Exchange-Organization-AuthSource: OURSERVER.domain
X-MS-Exchange-Organization-AuthAs: Anonymous
X-EXCLAIMER-MD-CONFIG: ba9bbaa9-6f85-4be2-a9d9-b5432a15d57f
X-MS-Exchange-Organization-AVStamp-Mailbox: SMEXtG}w;1380100;0;This mail has
been scanned by Trend Micro ScanMail for Microsoft Exchange;
X-MS-Exchange-Organization-SCL: 0
In Exchange 2010 Tracking logs explorer I could not find anything that could point me to the cause of the issue. There is this one thing where I get a defer message:
But here the "EventData" field is empty, I tried the command on 2016 but did not get the result. I
Is there another way to take a look why did this situation happen?
Thank you,
↧
Issue with Mass Mailing with Barracuda SaaS Gateway
My client is on Exchange 2010 and using Barracuda SaaS as their mail gateway hub to forward mails to the internet. What is happening is a particular user is sending out mails to a DL and there are many users from different domains that are part of that DL.
So what happens is Barracuda wasn't able to deliver messages to some of the email addresses in a recipient DL , it reports Delivery Failure for all the addresses in that list to the sender.
An investigation was done and the issue identified is shown in the below URL :
https://campus.barracuda.com/product/essentials/doc/70587651/outbound-rate-control/
So the solution given was to create a separate send connector in Exchange and and a transport rule for certain messages and bypass the spam filter for these large email blasts.
But how would Exchange know to direct specific emails to the "New" Transport rule and having Exchange send email directly to the internet , bypassing the gateway , won't it be a security risk?
Can anyone provide any solution to the issue.
Barracuda informed that the limit of sending messages to 150 recipients in a 30 mins timeframe cannot be changed it seems.
Pallab Chakraborty
↧
How to send an email from shared mailbox?
I know this is a very vague question.
I want to deep dive into this question
Scenario 1: User A has send as access to the shared mailbox. But when User A tries to send email to from the Shared mailbox
This is what User A does click- New email - options -from - select the shared mailbox name and tries to send an email and he gets an undeliverable message.
This message could not be sent. Try sending the message again later, or contact your network administrator. You do not have the permission to send the message on behalf of the specified user. Error is [0x80070005-0x0004dc-0x000524].
When I gave him the send as access why is it throwing the error that the user doesnot have send on behalf of permission.
Scenario 2: User B migrated to exchange online tries to send email from the shared mailbox he has (send as) access and get an message failure that (shared mailbox is on premise)
You don't have permissions to send on behalf of the specified user.
please can some one elaborate on what is going on?
↧
BCCd emails being duplicated
I'm BCCing emails sent by some of our staff to an internal account to be monitored. Some of those emails are being duplicated in that account's inbox. What could be causing this? At first, I thought it was another rule copying it to a different account,
but I switched that off and it's still happening.
↧
↧
ARC (Authenticated Received Chain) on Exchange 2013?
After a successfully implementation of OpenARC on a Linux environment I have now started to look at the possibility to implement it on a Exchange environment.
I am fully aware that the draft is subject to change, but providers like Google has already implemented it. Therefore, I would like to deploy it on a Exchange 2013 server.
So my question is, what is the best approach to deploy ARC (Authenticated Received Chain) on a Exchange 2013 environment? Is it even possible yet? Or should I relay the mails throu another server which signs the messages with the ARC header?
I am fully aware that the draft is subject to change, but providers like Google has already implemented it. Therefore, I would like to deploy it on a Exchange 2013 server.
So my question is, what is the best approach to deploy ARC (Authenticated Received Chain) on a Exchange 2013 environment? Is it even possible yet? Or should I relay the mails throu another server which signs the messages with the ARC header?
↧
Outbound mails pile up in queue
Dear Sirs,
My Exchange server went down, because the drive c where the mailbox store database went full.
I tried transferring the mailbox store to drive d: where it went well... but i cannot mount it.
i tried many times to mount a transferred mailbox store but still it wont mount...
and so i transferred back the mailbox store to the original drive c:... but this time the drive has only 480 mb left.
It mounted it is ok... my users can now receive emails...
but my outgoing is still a problem.... all outgoing mails are piling up....in the queue and wont send...
my question is:
is it because my drive c is almost full that is why it wont send?
smtp out error... it says... a remote server wont respond to a connection attempt.
my successful incoming mails mean my public ip its config is ok... please help me...
thanks a lot.
sincerely,
Ramon
↧
Renaming the public folder mailbox
How to rename a public folder mailbox?
I created a test public folder mailboxe with the name
Pftestmailbox and it created the emails SMTP: pftestmailbox@xyz.com
all my production public folder are PFMB01 and SMTP: PFMB01@xyz.com
Now I want to change my pftestmailbox to PFMB 13. If I change the name will this change the email address also frompftestmailbox@xyz.com to Pfmb13@xyz.com.
↧
Exchange 2013 is blocking all external emails
Hello everyone!
First of all, I would like to tell that I'm new to Exchange server.
We have a problem that our server is blocking all external emails and all senders get bounced back message similar to this one:
550 5.7.1 Message rejected as spam by Content Filtering.
Since we don't have any spam filter I would like to know where should I look to start fixing this issue.
Thank you very much!
↧
↧
Blank Email Address Format - Cannot add to policy
Hi All,
I have a strange problem with my Exchange setup (new install) in which I cannot edit or add to email address policies. The address format column is blank (see imageI cannot add Images yet will update when I can). When I try to save the policy anyway hoping it was just a display issue I get the following error: "MultiValuedProperty collections cannot contain null values. Parameter name: item"
Any help would be appreciated.
Thanks!
↧
Exchange 2013 On Prem - OOTO / NDR Replies Fail DMARC Authenication Outbound
Overview - 3 On Prem Installations of Exchange 2013 on Server 2012 R2 in a DAG configuration. All exchange boxes are running build 1367.3.
Issue - Automatic Replies (Out of the Office) and NDR responses from users are failing DMARC checks on the receiving end / being bounced. This is because the Return-Path header value and Mailfrom header values of both NDR and Automatic replies are set to null or <>. This results in the DMARC not having a domain to query against, so the DMARC fails all checks and the recipient domain bounces the email.
The reason why the headers are set to null is because of RFC 2298 - this makes sure that the automatic replies / NDRs do not keep going back and forth, creating an email loop that could potentially bring the servers down. However, RFC 2298 forces RFC 5321 MailFrom header as <> or null, which doesn't give a DMARC policy anything to pull its query from, thus the DMARC fails and the email is bounced. To visualize this -
NDR/OOTO Response:
MailFrom: <>
From:Email@domain.com
HELO/EHLO: mail.outboundsmtp.com
DMARC Fails
Normal Email:
MailFrom: Email@domain.com
From: Email@domain.com
HELO/EHLO: mail.outboundsmtp.com
DMARC - Passes - the policy has a RFC 5321 header to pull its information to query DNS and passes.
The reason the DMARC policy is pulling from the 5321 header is to help prevent spoofed emails, where the envelope header may possibly be spoofed, which would then pass the DMARC check, allowing a spoofed email into the domain.
My question is for anyone that has a strict reject 100% or quarantine 100% DMARC policy, how did you overcome this? Are you just allowing your NDR/OOTO replies to be bounced / rejected?
I've tried 2 solutions. Main idea behind my solution was to remove the null value or <> and replace it with a donotreply@domain.com address so that the DMARC has a RFC 5321 header to run against, thus both RFC 5321 and 5322 domains would technically align and pass the DMARC query.
1. We use mimecast as our email gateway / filter. I've tried to create an address alteration policy going outbound looking for <> as the header value to then input donotreply@domain.com into the header, but mimecast cannot detect the <> value in the header because it is technically null or blank. Using a "null" value doesn't work either. You cannot leave the value blank because some type of syntax is needed for the policy. Opening a ticket with mimecast, L2 engineers confirm that it is working as expected and this is a Microsoft / on prem deployment issue.
2. Attempting to use a transport level policy to insert a donotreply@domain.com address into the header doesn't work either. I believe something in exchange is preventing the transport policy from executing. The policy I configured was anything with subject"Automatic Reply" or "Undeliverable" change header property of "Return-Path" to "Donotreply@domain.com" and "MailFrom" to "donotreply@domain.com. Doesn't work and tests to google / gmail do not pass dmarc still and show null values.
For reference, I found 2 other issues on technet with the same issue. One solution proposed was to use an outside tool to manipulate the emails going outbound to rewrite the headers so that the DMARC has something to run against. Link here: https://social.technet.microsoft.com/Forums/en-US/9d17cd55-36b0-4d00-8114-d7f1e54fc725/dmarc-test-fails-on-out-of-office-replies-but-not-on-regular-emails?forum=Exch2016MFSM. Another extremely well explained post is here: https://social.technet.microsoft.com/Forums/en-US/51519377-48f5-4833-ac0d-4128eaf9c25e/how-do-you-setup-dmarc-to-allow-null-returnpath-rfc5321mailfrom-messages-out-of-officendr?forum=onlineservicesexchange
I cannot imagine this being intended nor do I think that a transport policy or using a third party tool to correct this is a real fix, but a work around for the issue.
Any help is appreciated.
Cheers,
Jason
↧
Moderate messages sent to multiple recipients
Hi,
Wondering if anyone knows of a way to moderate outgoing emails that have 10 or more recipients? We have a business case where we want to ensure any bulk communications are approved by the corporate team before being sent out.
There are moderation rules I can apply in the ECP, but I can't find any options for number of recipients. (this isn't groups - it's individual email addresses too - it's due to the way our CRM works).
Thanks
Luke
↧