Quantcast
Channel: Exchange Server 2013 - Mail Flow and Secure Messaging forum
Viewing all 4249 articles
Browse latest View live

Cant Send out

October 1, 2014, 2:15 am
$
0
0

Hi All,

I hasve a new install of Exchange 2013 in the test stages at the moment.

I have a domain which is not in use at present on exchange until we go live of abc.com, this is currenty used on web based email via a provider. This is intended to be our only email address in the future.

We have a second domain for testing of xyz.com we can receive emails to this address, but for some reason cannot send out at all.

When we login to the OWA, the only address we can send from is abc.com which has no mx records associated at present, but xyz.com does have mx records in place.

xyz.com passes the connectivity tests for outgoing smtp testing, as does the OWA.

I am usure of how to troubleshoout this, Get-TransportService | get-queue shows nothing in the queues, so I presume mail is leaving site and just getting lost, maybe it not looking at the right mx record for xyz.com.

I'm sure this is all as clear as mud, put hopefully someone can help me resolve this.

Many Thanks

Richard

Search

451 4.4.0 DNS query failed. The error was: DNS query failed with error ErrorRetry

September 30, 2014, 5:27 pm
$
0
0

Hi,

I have exchange 2013. The issue is whenever a user try to send an email to us.ibm.com we got the following error.

451 4.4.0 DNS query failed. The error was: DNS query failed with error ErrorRetry

our server is successfully resolving the MX of us.ibm.com but email got stuck in the queue

Any help please

Regards,

Anees

Mail Stuck in Queue, Event ID 1018. But the referenced Receive Connector does not exist.

October 1, 2014, 6:45 am
$
0
0

I'm receiving the current Event ID's 1018 on an Exchange Server 2013 CAS/Mailbox server causing all received/incoming mail, for all users to be stuck in the mail queue:

Log Name: Application
Source: MSExchangeTransportDelivery
Date: 01/10/2014 14:11:15
Event ID: 1018
Task Category: SmtpReceive
Level: Warning
Keywords: Classic
User: N/A
Computer: CASMX01.ad.mydomain.com
Description:
The account 'AD\casmx01$' provided valid credentials, but it does not have submit permissions on SMTP Receive connector 'Default Mailbox Delivery CASMX01'; failing authentication.

Log Name: Application
Source: MSExchangeTransportDelivery
Date: 01/10/2014 14:09:19
Event ID: 1018
Task Category: SmtpReceive
Level: Warning
Keywords: Classic
User: N/A
Computer: CASMX01.ad.mydomain.com
Description:
The account 'NT AUTHORITY\SYSTEM' provided valid credentials, but it does not have submit permissions on SMTP Receive connector 'Default Mailbox Delivery CASMX01'; failing authentication.

The problem I have is that the Receive Connector 'Default Mailbox Delivery CASMX01' doesn't exist on the box. So I don't know where or how to delete it.
I've tried removing (and recreating) the current 'Default Frontend CASMX01', and also renaming it to 'Default Mailbox Delivery CASMX01'. But this hasn't worked.

I can't find any reference to this receive connector anywhere. Running Get-ReceiveConnector gives:

[PS] C:\Windows\system32>Get-ReceiveConnector -Server

CASMX01Identity Bindings Enabled-------- -------- -------
CASMX01\Default CASMX01 {0.0.0.0:2525, [::]:2525} True
CASMX01\Client Proxy CASMX01 {[::]:465, 0.0.0.0:465} True
CASMX01\Outbound Proxy Frontend CASMX01 {[::]:717, 0.0.0.0:717} True
CASMX01\Client Frontend CASMX01 {192.168.0.2:587, [::]:587} True
CASMX01\Default Frontend CASMX01 {192.168.0.2:25, [::]:25} True


Any ideas on what is going on? Or how I can resolve this?



Exchange 2013 mailflow issues & transport latency

October 1, 2014, 6:13 am
$
0
0

Hi,

we have more then 50 Exchange Server 2013 deployed and every single Exchange has transport issues.

-the transport Service do not respond for 30 min or more.

-RAM consumption

-the e-mail are stock in outlook for long time

-we have Exchaneg 2013 with all CUs / SP1 version installed and i cannot see any improvement.

I m disappointed and i hope that someone can help me to understand the Exchange 2013 Mailflow

Best regard

External companies with Barracuda firewalls not able to deliver mail to our Exchange 2013 environment reliably.

July 30, 2014, 9:39 am
$
0
0

We upgraded to Exchange 2013 about a year ago. Since that time we've been having issues with certain companies having their mail delayed or rejected when sending to us. No problems us sending to them though.  Eventually through troubleshooting I have determined that all of these different companies have one thing in common: a barracuda firewall.

In the year since the installation I have updated Exchange all the way to SP1 but we still have this issue. The messages usually arrive to us, but quite often a day later, etc.  Here is the message from one from the 26th that was rejected:

#< #4.0.0 X-Spam-&-Virus-Firewall; conversation withmail.domain.ca[64.46.58.226] timed out while sending MAIL FROM> #SMTP#

Original message headers:

 

X-ASG-Debug-ID: 1406427098-0499ef4412c2d00001-3TTufb
Received: from DEVPMTLEXC2.devp.org ([192.168.1.202]) bybarracuda.devp.org
 with ESMTP id EiJxT4ex1jxAnxdL; Sat, 26 Jul 2014 22:11:38 -0400 (EDT)
X-Barracuda-Envelope-From: sfarid@domain.org
X-ASG-Whitelist: Client
Received: from DEVPMTLEXC2.devp.org ([192.168.1.202]) byDEVPMTLEXC2.devp.org
 ([192.168.1.202]) with mapi id 14.03.0195.001; Sat, 26 Jul 2014 22:11:37
 -0400
From: "Farid, Sara" <sfarid@domain.org>
To: >
Subject:
X-ASG-Orig-Subj:
Thread-Index: AQHPqUAYJnlCbEpneUasDGYYczT9uw==
Date: Sun, 27 Jul 2014 02:11:37 +0000
Message-ID: <7FA4F015-3A8D-4D73-9357-AED074A05ECF@devp.org>
References: <846f2dbfee6d4080bcb76e692630c28b@S8EX1.network.caedm.ca>,<D9CD7F544E613C4A98E045EA5E3667C327657C39@DEVPMTLEXC2.devp.org>,<285A3ABB-E739-4849-828E-41E366F0AA7F@devp.org>
In-Reply-To: <285A3ABB-E739-4849-828E-41E366F0AA7F@devp.org>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach: yes
X-MS-TNEF-Correlator:
Content-Type: multipart/mixed;
            boundary="_015_7FA4F0153A8D4D739357AED074A05ECFdevporg_"
MIME-Version: 1.0
X-Barracuda-Connect: UNKNOWN[192.168.1.202]
X-Barracuda-Start-Time: 1406427098
X-Barracuda-URL: http://172.16.1.200:8000/cgi-mod/mark.cgi
X-Virus-Scanned: by bsmtpd at devp.org
X-Barracuda-BRTS-Status: 1

Our Environment:

2x Exchange 2013 Std. SP1 Servers, All roles, DAG. We only use the built-in Exchange tools for anti-spam, traffic flows to and from exchange directly through NAT.

Share Email in exchange 2013

October 2, 2014, 4:08 am
$
0
0

Dear All,

i need your idea about how to implement a email share between 3 users

i have a email info@domain.com, i have 3 users A, B , C

i want the email info@doamin.com to be used throught the 3 users.

the machine is a memeber of a domain controller

the users A and B and C doesn't have own email adres. they will have to use only info@domain.com

Exchange is 2013

thank you 

Multiple Authoritative domains, trying to get a mail flow rule to trigger when email is sent to only one of the authoritative domains (not the default reply to)

October 2, 2014, 6:56 am
$
0
0

We used recently added an authoritative domain to our exchange 2013 server. After about a month we made the changeover in our default mail policy to make newdomain.com the default reply to. Mail flow is working ok, people can email user@olddomain.com and user@newdomain.com.

What's not working is a mail flow rule I setup to try and intercept all mail being sent to anybody @olddomain.com and BCC it to a specific mailbox. I know that the BCC portion is working because if I have it trigger on a specific recipient (whole mailbox) it works fine, but I can't seem to get it to trigger based on the recipient email address. I've put rules several ways including:

The recipient address includes:

olddomain.com

olddomain

@olddomain.com

*@olddomain.com

As well as:

The recipient domain is:

olddomain.com

olddomain

@olddomain.com

*@olddomain.com

I even tried matching the To: field in the header and having it match the text:

olddomain.com

Nothing appears to be working. Any suggestions?

SenderID SPF Include keyword bad evaluation

May 23, 2014, 3:32 am
$
0
0

Hello there in Exchange forums.

I have Exchange 2010 server with all current patches and SenderID action set to reject if SPF fails. If the domain is using keyword include in their SPF TXT record (such as account.microsoft.com where for example onedrive mails come from), the sender ID fails with 550 5.7.1 Sender ID (PRA) Not Permitted, instead of accept message.

Do anyone resolve that?

Search

Many delayed messages since switching to Exchange 2013

October 3, 2014, 7:18 am
$
0
0

We have been experiencing a lot of delays when switching to Exchange 2013. We currently use SpamHero as our spam filter. The flow is like this:

  • Messages sent to Spam Hero
  • Spam Hero sends to us which goes through our Cisco ASA 5540 firewalls
  • Hits our CAS01 server which is just CAS and HUB roles
  • Then goes to the mailbox server

We experience sometimes days worth of delayed messages and the delivery logs on our spam filter show this:

  • status=deferred (conversation with outlook.domain.com[**********] timed out while sending message body)
  • said: 451 4.7.0 Timeout waiting for client input (in reply to end of DATA command))

I seem to see it more with larger messages.

Ramifications of assigning a wildcard certificate to the SMTP service (needed for Exchange 2010 Hybrid Configuration - Office 365)

October 3, 2014, 10:05 am
$
0
0

Hello All:

My question is "what are the ramifications of assigning a wildcard certificate to the SMTP service on a customer's Exchange 2010 CAS"? I would like to know of the impact that existing OWA, Outlook 2010, and ActiveSync clients will see, if anything. I am having issues getting the Manage Hybrid Configuration to work & upon re-reading the Exchange Server Deployment Assistant, I see the following: "

You should see the certificate you installed listed in the list of Exchange certificates returned by theGet-ExchangeCertificate cmdlet, including the parameter attributes assigned to each certificate. Verify that the certificate from the third-party trusted certificate authority (CA) that you will use for the hybrid deployment has:

  • The Service attribute has the IIS and SMTP services assigned.

  • The Status attribute is listed as “Valid”.

  • The RootCAType attribute is listed as “ThirdParty”.

If any of the three conditions listed above are not met, you can't use the certificate with the Manage Hybrid Configuration wizard or with the hybrid deployment."

I have a case/Service Request open w/Microsoft re:this (614100390603301). If anyone is able to provide clarification, it would be most helpful.

Thank you.

Why is this particular 2013 DAG member showing up in message tracking

October 3, 2014, 11:25 am
$
0
0

I have a 4 member 2013 DAG with 2 of those members holding only offline DB copies.  One of those 2 "backup" DAGs is continually referenced in delivery reports for messages. If that server is not hosting any active DBs or mailboxes, why are messages transiting that server?

A few more details that make it unclear as to why that server is being referenced, both backup servers are in a remote site, the internet send connector excludes the to backup servers as "sources".  The message tracking references in question are always inbound to users mailboxes, not outbound.

There are no message flow problems that I am aware of, just this unexplained path.

Please let me know if there is any other information I can provide and thank you in advance for your assistance.


searching not working on phones... sorta

October 3, 2014, 7:45 pm
$
0
0
On phones connected to an exchange 2013 account they sync 7 days. but when I search everything on the server it shows results from 5/30 back. Nothing newer. 

Message tracking

October 3, 2014, 2:03 pm
$
0
0

I have had several instances since I installed exchange 2013 about messages not being received. In 2007 they had the message tracking GUI that I could follow a message flow from my Barracuda to the inbox of my user. Now I think I need to use

get-messagetrackinglog -Sender <addess> -MessageSubject “whateveritis” -Start “6/07/2014” -End “10/03/2014”

This command brings me back: "Event ID - Source - Sender - Recipient - MessageSubject"

I'm looking for the time sent and received  or just received - I can't seem to put together a cmdlet that will accomplish this with the time. TimeStamp or -timestamp errors in the shell - how are other people with very little shell experience tracking messages.

Any help would be appreciated

RJM

Exchange 2013 issues - (new send email Stuck in Drafts not send)

March 4, 2013, 2:02 am
$
0
0
Exchange 2013 issues - (new send email Stuck in Drafts folder not send)

Mail.protection.outlook.com #550 5.7.1 Service unavailable; Client host blocked using Spamhaus;

September 26, 2014, 6:20 am
$
0
0

When user in our domain send mails to domains on O365, they get a DSN.

BY2FFO11FD035.mail.protection.outlook.com
rejected your message to the following e-mail addresses:<o:p></o:p>

mail.protection.outlook.com #550 5.7.1 Service unavailable; Client host [xxx.xxx.xxx.xxx] blocked using Spamhaus; To request removal from this list seehttp://www.spamhaus.org/lookup.lasso

We check Spamhaus.org and our IP and domain are clear.

Any ideas?

Thanks in advance

http://nextadmin.blogspot.com

Search

configuring exchange

October 6, 2014, 4:19 am
$
0
0

hi all,

i have installed exchange and all is working ie i can connect to OWA externally and EAS on my mobile but i cant send/recieve email

i have made a MX record that points to my domain name and the domain points to my public IP (no-ip)

on my firewall (pfsense) i have NATed port SMTP/587 and HTTPS/443 to my exchange IP

i have created a send connector for the internet and entered * to accept all domains and added my exchange server as the mailbox server and my receive connector that was already configured

to change my send connectors port i did this -

http://www.authsmtp.co.uk/exchange-2013/exchange2013_alternative_port.html

i changed it to port 587 and i ran the get command and it is now using that new port

can anyone think why its not working?

many thanks

rob

Delivery report shows status of Pending for external address. Email sent to both internal and external addresses.

October 6, 2014, 4:22 am
$
0
0

We have an Exchange 2013 on-premise server and seem to have an issue with emails sent to internal and external users at the same time.

The issue came to light because someone sent an email to 44 recipients, of which one was internal. None of the external recipients received the email. I checked the delivery report in the EAC and found the internal email marked as 'Delivered' and all of the external ones marked as 'Pending'. I checked the queues and there were none. I did some testing and sent an email to just one of the external addresses on the list, it arrived. I tried sending the email again to all of the recipients, the external ones all showed 'Pending'. I tried it again, but this time excluded the internal email address and all of the 43 external emails were immediately delivered.

So it seems that the issue only arises when we are sending to both internal and external addresses.

I then tried a test email to one internal address and one external address. The Delivery report says that the internal address was delivered immediately, while the external address is 'Pending' and gives more information saying: 'Message delivery is taking longer than expected. There may be system delays. For more information, contact your helpdesk.'. To add further mystery to this, the email was actually delivered.

So, I have two concerns:

First is seems that some emails sent both internally and externally are only arriving internally. This is a huge problem because I don't know how many have been affected. There may be many lost emails we don't know about.

Second, it looks like I can't trust the delivery report. It says pending for some emails which didn't arrive, but it also says pending for some which did arrive. That is no good at all.

For info the server is running Windows Server 2012. I have run a Microsoft Update to check if there are any to apply and the only Exchange one is a spam filter update, which I doubt has any bearing but I will apply when I get chance.

Exchange 2013 - Import-TransportRuleCollection from Exchange 2007 failing

October 6, 2014, 6:13 am
$
0
0

I am in the middle of a Exchange 2007 SP3 to Exchange 2013 Sp1/CU4 migration and am importing transport rules and it's failing.

[PS] C:\Windows\system32>Import-TransportRuleCollection -FileData C:\2007TransportRules.xml -Verbose
Cannot process argument transformation on parameter 'FileData'. Cannot convert value "C:\2007TransportRules.xml" to type "System.Byte[]". Error: "Cannot convert value "C:\2007TransportRules.xml" to type "System.Byte". Error: "Input string was not in a correct format.""
    + CategoryInfo          : InvalidData: (:) [Import-TransportRuleCollection], ParameterBindin...mationException
    + FullyQualifiedErrorId : ParameterArgumentTransformationError,Import-TransportRuleCollection
    + PSComputerName        : ex2013-mb1.MYDOMAIN.local

Before you ask, I am still on SP1/CU4 because CU5 and CU6 are so buggy I refuse to install them. And that's probably not the fix anyway... WHEN IS CU7 coming out?

Exchange 2013 Address Book Policy Routing Agent Issue with Mailboxes Hidden From the Address Lists

April 19, 2013, 11:04 am
$
0
0

When the AddressBookPolicyRoutingEnabled attribute is enabled by running Set-TransportConfig -AddressBookPolicyRoutingEnabled $True, I am having an issue with delivery failures for mailboxes that are hidden from the address book. I receive the following undeliverable message:

'532 5.3.2 STOREDRV.Deliver; Missing or bad StoreDriver MDB properties'

If I disable the AddressBookPolicyRoutingEnabled attribute by running Set-TransportConfig -AddressBookPolicyRoutingEnabled $False then emails are successfully delivered to the mailbox that is hidden from the address list.

I followed the installation instructions here: http://technet.microsoft.com/en-us/library/jj907308(v=exchg.150).aspx

Below is the status of the ABP Routing Agent on my Hub Transport/Mailbox server:

Enabled: True
Priority: 5
TransportAgentFactory: Microsoft.Exchange.Transport.Agent.AddressBookPolicyRoutingAgent.AddressBookPolicyRoutingAgentFactory
AssemblyPath: C:\Program Files\Microsoft\Exchange Server\V15\TransportRoles\agents\AddressBookPolicyRoutingAgent\Microsoft.Exchange.Transport.Agent.AddressBookPolicyRoutingAgent.dll
Identity: ABP Routing Agent
IsValid: True
ObjectState: New

Has anyone else run into this issue yet?

Exchange 2013 DLP Testing - Allowing Social Security numbers

October 6, 2014, 5:46 pm
$
0
0
I've created a DLP policy to block SSN's.  The problem is it only looks for the word "SSN".  The rule in the DLP is looking for SSN's.  It blocks the email if I have the letters "SSN" in it with a fake social, but if I remove the letters "SSN" it allows it to send.  Is there a way to tune how it reads sensitive info?

ST

Viewing all 4249 articles
Browse latest View live
Search
<script src="https://jsc.adskeeper.com/r/s/rssing.com.1596347.js" async> </script>