Quantcast
Channel: Exchange Server 2013 - Mail Flow and Secure Messaging forum
Viewing all 3168 articles
Browse latest View live

Email mailbox not journaling to external address

$
0
0

Hello,

I setup a journaling mailbox and would like the contents (emails) of this mailbox to be sent to an external compliance email address.

The journal mailbox is accumulating email messages so that is working fine.

When I create a Journal Rule, under EMC, Organization, Hub Transport, I have the following:

Send journal reports to email address: compliance@company.com (Created an E2010 Mail contact)

Scope: Global

Journal Messages for recipient: JournalMailbox (This mailbox is accumulating all emails)

Clicked OK.

*** Problem: Emails do not get delivered to the external email address in the E2010 mail contact.

Can someone help me please?

Thank you in advance!!


Exchange 2007 accepted meeting invites sent until deleted from submission queue

$
0
0

I have an issue with my exchange 2007 server, where if a person gets a meeting invite and selects send response without editing, the exchange server will seemingly send the accepted message over and over again until I manually delete it from the submission queue on the server. If the person hits edit response before sending, even if they do not change anything, this will not happen. If they press don't send a response, this will not happen.

This happens on outlook 2003 client, outlook 2007 client and OWA

My exchange server is up to date with sp3 rollup 11

It is also a virtual server.

I've tried searching online and have not found an issue like this. I'm not sure where to go from here.

NDR when forwarding to a contact

$
0
0

Hello,

I am helping a customer migrate to a hosted email platform from Exchange 2007 SP3. There is a pilot going on where people's Exchange accounts are configured to forward messages to a contact object that has a temporary SMTP domain that the provider has configured. Messages are also being delivered to their Exchange mailbox as well. "Deliver message to both forwarding address and mailbox" is checked. For people in one AD domain this is working fine with no errors. For people in another, there are getting an NDR, but the mail is being delivered correctly to both locations. This only happens when they receive mail externally. Each domain has its own Exchange Transport and Mailbox servers. Below is the NDR.

 

Delivery has failed to these recipients or distribution lists:
 
ContactObject@someexternaldomain.com
Your message wasn't delivered because of security policies. Microsoft Exchange will not try to redeliver this message for you. Please provide the following diagnostic text to your system administrator.
 
The following organization rejected your message: HubTransport01.internalAD.local.


Diagnostic information for administrators:
 
Generating server: HubTransport02.internalAD.local
 
ContactObject@someexternaldomain.com
HubTransport01.internalAD.local #550 5.7.1 Client does not have permissions to send as this sender ##rfc822;employee@mydomain.com

 


Dan

Distribution group with Text contacts

$
0
0

Basically I want to be able to text all staff if we have an outage or some other disaster.  I have created contacts with every user and their SMTP address is basically their number@vtext.com.  Through outlook I am able to text these people but what I want to do is create a distribution group in the GAL that has all of these text contacts in them.  Then basically add this distribution group to my contacts, so it syncs with my mobile phone.  

All of this happens but the distribution group has a email address associated with it on our domain. Not sure how if there is anyway to add it like this because in order for it to be in the GAL it has to have an email address.  

The only other option I can think of is manually adding every single person to my mobile phone which would suck, and then adding them to a group on the phone.  There must be an easier way?

Exchange 2010: Any limit on the number of addresses in a Send Connector?

$
0
0

In our exchange environment (2010, SP2 RU6), we have a "Mutual TLS Required" connector that we utilize to force TLS communication to partner domains which are added to the Address Space tab.  My question is, we currently have about 90 domains included in this connector and I was wondering if there is an upper limit to how many can be in a single connector before having to create another one, if at all.

Thanks!

Exchange 2013 CU2 and Outlook 2007 SP3

$
0
0
hello I have an environment with exchange 2013 Cu2 where the main office emails are quick to exit Outlook, however the branch where it has sometimes spot exchange messages takes 15 seconds to leave the outbox, what problem?

Alexandre Evangelista - MCP - MCTS - MCITP - MCT - MTAC - VCP

Catch all mailbox

$
0
0

I'm trying to enable a catchall mailbox for all recipients that does not exist in my exchange 2013 organization but I cannot do it... it doesn't work.

I have already made a rule:

apply when sender is outside the organization

redirect to catchall@domain

except if sender is inside the organization

I tried disabling recipient filtering too

Get-RecipientFilterConfig | Format-List

RecipientValidationEnabled : False

any ideas? any help????

Exchange 2007 - bad domain after delivering message to my organization

$
0
0

Hello,

I have problem with Exchange Server 2007 SP3 last CU. When my customer send my and my workmate message by Reply All from his mail server i recive his address "from:" at bad format.

Example:

My (FABRIKAM)

I send message from: user1@fabrikam.com to:user@contoso.com and cc: user2@fabrikam.com.

Customer (CONTOSO)

Customer successfully recieve message and get reply all.

My(FABRIKAM)

I recieve message, but sender address is user@fabrikam.cz (correct isuser@contoso.com).

Probably it is some kind of bug, but i cant find hotfix. Can you help me? Thx.

Dan



Signing message, Set-Mailbox -UserSMimeCertificate

$
0
0

Hi

I have a question about how do I use the UserSMimeCertificate switch on a mailbox, example Set-Mailbox -Identity "Test 1" -UserSMimeCertificate

All our users have their certificate in AD so I can pick it up from the UserCertificateswitch.

Another question, if I set this switch on all our UserSMimeCertificate and they would like to sign a message (not encrypt) is it a requirement that the certificate is available on users workstation or can I get our exchange server to sign the message?

Br

Mikael

SMTP banner

$
0
0
Hello,

I have a2013exchange serverwith allroles.On this serverare accepted 4 email domains

domaineA.fr

domaineB.fr

domaineC.fr

domaineD.fr

Each domain ishosted by OVHwithaccountmanagement of variousrecordings.Thus each areaits ownMXtype

mail2.domainea.fr

mail2.domaineb.fr

mail2.domainec.fr

mail2.domained.fr

My question isfor reasons ofsafety toa unique name fortheSMTP banner ontheexchange serverbut with the currentconfigis notpossible.You canenlightenmeon how todo?


thank you

exchange 2013 anti-spam sender ID filter not working

$
0
0

Hello All,

Though I installed the anti-spam filters on the Exchange 2013 Mail servers, and made sure to aneble them, I see that most SPAM is just arriving at the users mailboxes. The logging of the spam filters is showing that the messages are qualified as non-spam (SCL 0) by the Content Filter. But the Sender ID filter should have blocked these mails already, because the IP address which is sent from is on several blacklists. I have setup the IPblocklistproviders as follows:

[PS] C:\Program Files\Microsoft\Exchange Server\V15\scripts>Get-IPBlockListProvider
Name                                           LookupDomain                                  Priority----                                          ------------                                   --------
SpamHaus                                       zen.spamhaus.org                              6SpamCop                                        bl.SpamCop.net                                7
surriel                                        psbl.surriel.com                              8
sorbs                                          dnsbl.sorbs.net                               9
ix.dnsbl.manitu.net                            ix.dnsbl.manitu.net                           10
combined.njabl.org                             combined.njabl.org                            11
cbl.abuseat.org                                cbl.abuseat.org                               12
spam.rbl.msrbl.net                             spam.rbl.msrbl.net                            13
bl.spamcannibal.org                            bl.spamcannibal.org                           14

Can you please help troubleshooting what is going wrong?

Regards,

Stephan van der Plas


You know you're an engineer when you have no life and can prove it mathematically

Can't retrieve Free/Busy information

$
0
0

I'm trying to finish my setup of my exchange server and I having problems trying to get free/busy information of other users. this happens only when I'm trying a connection through Internet with Outlook anywhere... It works fine from the local network....

I'm having a similar problem trying to set the Out-Of-Office messages...

If I'm not wrong, both services use EWS... how can I chech if I'm publishing ok???

Another clue.... my "autodiscovery.domain.com" record points to the ISA that is publishing everything but the "domain.com" record points to another IP.

regards

mariano

How to exclude specific IP addresses from one receive connector in Exchange 2010 SP3

$
0
0

Hello,

Is there a way to exclude specific IP addresses from one particular receive connector in Exchange 2010?  I am wanting to allow all but 4 IPs and it would be a pain to list out all of the allowed ranges on the connector.  Thanks for the help.

550 Your IP address failed validation

$
0
0

Hi guys,

Maybe anyone knows why I get this bounce back when I try to send e-mail to a client ? It's generating from one of e-mail linux servers, not even exchange. But my mailbox is created in exchange . Please see full error bellow :

Exchange 2013: Send/Receive connectors broken

$
0
0

I am experiencing difficulties with my send and receive connectors in Exchange 2013.

We have had big issues with our Exchange, but I managed to reinstall Exchange 2013 (CU1) and recover the database.

Now, I have the problem that:

- Outlook (client) can not connect to the server.

- I can not send messages OUT (using OWA)

- I can not receive messages. Telnet to external interface port 25 returns "421 4.3.2 Service not available". (Yes, anonymous authenticaction is ON and binding on IP 0.0.0.0/255.255.255.0)

Also, NO Anti-Virus is running, Mailware checking has been disabled and when I telnet to the WAN interface ON THE SAME MACHINE, I *DO* get a telnet port 25 reply...

I have tried everything. Link DNS servers to outgoing interface, reset Certificates, recreate connectors. No Luck.

I am thinking my send and receive connectors are somehow damages. Is there a way I can delete them and let exchange recreate the default ones using some sort of powershell script?

What can we do here?

Can anyone help?


Exchange 2013 External mail using ARR on Essentials server

$
0
0

Platform: Exchange 2013 on a separate 2012 server within in a Server 2012 Essentials as the DC

Hi there
I am having a real problem trying to configure Exchange 2013 for external access using ARR. I have installed the Exchange server and have Outlook connecting internally. I have successfully installed Trusted third party CA remote.mydomain.com for remote access to Essentials server and this works fine

As I understand it, if I am using ARR I do not need to purchase another trusted certificate for Exchange itself. ARR will route SSL queries from remote.mydomain.com to a local self-issued certificate between the Essentials DC and the Exchange server. Is this correct?  

Am I  understanding this correctly?


MIS5000

Real Time Mailbox Monitoring?

$
0
0

Hi Guys,

we have hardly 2000 mailboxes and we are using Exchange 2010, we are looking these all mailbox should be monitored by us. like people having others user full or send as maibox access they could send email from others maibox. our requirement is we need to know who is accessing other's mailbox like that users may sent a mail without knowing other users.

Can i get these infromation on particular date and time?


Thanks, Venkatesh. "Hardwork Never Fails"

Unusual Outlook issue - not conencting on VPN

$
0
0

We use a proxy for our mail at mail.ourcompany.com  to connect to our exchange servers at outlook.034d.mgd.msft.net

We use HTTP to connect, connect using SSL only and NTLM authentication

If I am connected to outlook it works, connect to vpn it works, but if I close Outlook and reopen while on VPN it says disconnected?

What is it trying to do at first connect that it fails?


David Sheetz MCP

Remote Mail Users and Dynamic Distribution Groups in Hybrid

$
0
0

Hey All,

So I'm having a problem that's been perplexing me for days.

I have a dynamic DL (everyone DL) that is configured to filter both local mailboxes in my on-prem and remote mailboxes in 365. The filter is below.

> (Get-DynamicDistributionGroup everyone).RecipientFilter

((((((((((((((((((RecipientType -eq 'UserMailbox' -or recipienttypedetails -eq 'RemoteUserMailbox') -and (-not(CustomAt
tribute2 -like 'service')))) -and (-not(MemberOfGroup -eq 'DC=excludefromeveryonedl')))) -and (-not(CustomAttribute2 -l
ike 'resource')))) -and (-not(Name -like 'SystemMailbox{*')))) -and (-not(Name -like 'CAS_{*')))) -and (-not(RecipientT
ypeDetailsValue -eq 'MailboxPlan')))) -and (-not(RecipientTypeDetailsValue -eq 'DiscoveryMailbox')))) -and (-not(Recipi
entTypeDetailsValue -eq 'ArbitrationMailbox')))) -and (-not(Name -like 'SystemMailbox{*')) -and (-not(Name -like 'CAS_{
*')) -and (-not(RecipientTypeDetailsValue -eq 'MailboxPlan')) -and (-not(RecipientTypeDetailsValue -eq 'DiscoveryMailbo
x')) -and (-not(RecipientTypeDetailsValue -eq 'ArbitrationMailbox')))

When I run get-recipient -recipientpreviewfilter I see RemoteUserMailboxes as members so I know that membership isn't the problem but if I message track I do not see any RemoteUserMailboxes in the expand.

Has anyone come across this in a hybrid config? Am I missing something here or going about the filter the wrong way?

Thanks!

Outbound mail from Exchange 2010 not sending/sent straight to recipient's Spam Folder with Gmail etc. SPF/PTR config inside!

$
0
0

                                                                                                     

Hi guys,
I'm hoping someone can help me pinpoint this ongoing problem we are having with our outbound mail sitting on our server and giving "Delivery is delayed to these recipients or groups" errors.


Some will eventually get through and are filtered straight to the recipients spam folder others never get there.
Messages sent from the same address without attachments seem to get through more reliably, however sometimes still get stuck in the recipients Spam folder.


I believe it is something to do with our domain name configuration but I don't know where to look next.
Our setup is as follows: On our internal LAN we have one domain joined Exchange Server configured as CAS, Hub, Mailbox. All our mailboxes are hosted on this server, and all Client Workstations and User accounts are in this same domain. We only use one domain in AD.


This exchange server is configured to receive mail from two Authoritative Domains which are our external domain names santaclara.com.gt and bellavista.com.gt. Some users mailboxes are configured to use santaclara.com.gt SMTP email addresses and others are configured to use bellavista.com.gt SMT addresses. Both our external domains are hosted by JustHost, and have MX records pointing to mail.santaclara.com.gt and mail.bellavista.com.gt respectively.


The santaclara.com.gt domain has an A-record pointing mail.santaclara.com.gt to the static IP address of our Cisco router. It also has SPF records as follows:
Host RecordTXT ValueTTL
@v=spf1 a mx mx:mail.santaclara.com.gt ip4:190.149.222.173 a:bellavista.com.gt include:mail.santaclara.com.gt mx:bellavsita.com.gt -all14400
www-bellavista-com-gtv=spf1 a mx mx:mail.santaclara.com.gt ip4:190.149.222.173 a:bellavista.com.gt include:mail.santaclara.com.gt mx:bellavsita.com.gt -all14400
The bellavista.com.gt domain has an A-record pointing mail.bellavista.com.gt to the static IP address of the same Cisco router. It also has an SPF record as follows:
Host RecordTXT ValueTTL
@v=spf1 a mx ptr:santaclara.com.gt ip4:190.149.222.173 a:santaclara.com.gt include:mail.santaclara.com.gt mx:santaclara.com.gt -all14400

The Cisco box has a firewall rule to route all mail traffic to the TMG 2010 server it is directly connected to in the perimeter network. This TMG 2010 box is also connected to the internal network and is configured as an Exchange Edge Server. 
We have two send connectors configured on the Hub Server, both are EdgeSync subscriptions to the TMG box: The first is inbound to domain; the second is domain to internet. Both are configured with the FQDN set to "mail.santaclara.com.gt" There is one receive connector configured, the default connector, and this has its FQDN configured as "srv-mail1.hq.santaclara.com.gt" which is the true FQDN of the exchange server and can’t be changed to match the send connectors.
I have checked our domains are not blacklisted, and performed outbound SMTP tests for both using the Microsoft Remote Connectivity Analyzer and everything seems to check out OK:

santaclara.com.gt test results
Performing Outbound SMTP Test
The outbound SMTP test was successful.
Test Steps
Attempting reverse DNS lookup for IP address 190.149.222.173.
The Microsoft Connectivity Analyzer successfully resolved IP address 190.149.222.173 via reverse DNS lookup.
Additional Details
The Microsoft Connectivity Analyzer resolved IP address 190.149.222.173 to host mail.santaclara.com.gt.


Performing Real-Time Black Hole List (RBL) Test
Your IP address wasn't found on any of the block lists selected.
Test Steps
Checking Block List "SpamHaus Block List (SBL)"
The address isn't on the block list.
Additional Details
IP address 190.149.222.173 wasn't found on RBL.


Checking Block List "SpamHaus Exploits Block List (XBL)"
The address isn't on the block list.
Additional Details
IP address 190.149.222.173 wasn't found on RBL.


Checking Block List "SpamHaus Policy Block List (PBL)"
The address isn't on the block list.
Additional Details
IP address 190.149.222.173 wasn't found on RBL.


Checking Block List "SpamCop Block List"
The address isn't on the block list.
Additional Details
IP address 190.149.222.173 wasn't found on RBL.


Checking Block List "NJABL.ORG Block List"
The address isn't on the block list.
Additional Details
IP address 190.149.222.173 wasn't found on RBL.


Checking Block List "SORBS Block List"
The address isn't on the block list.
Additional Details
IP address 190.149.222.173 wasn't found on RBL.


Checking Block List "MSRBL Combined Block List"
The address isn't on the block list.
Additional Details
IP address 190.149.222.173 wasn't found on RBL.


Checking Block List "UCEPROTECT Level 1 Block List"
The address isn't on the block list.
Additional Details
IP address 190.149.222.173 wasn't found on RBL.


Checking Block List "AHBL Block List"
The address isn't on the block list.
Additional Details
IP address 190.149.222.173 wasn't found on RBL.




Performing Sender ID validation.
Sender ID validation was performed successfully.
Test Steps
Attempting to find the SPF record using a DNS TEXT record query.
The SPF record was found.
Additional Details
SPF record found: "v=spf1 a mx mx:mail.santaclara.com.gt ip4:190.149.222.173 a:bellavista.com.gt include:mail.santaclara.com.gt mx:bellavsita.com.gt -all"


Parsing the SPF record and evaluating mechanisms and modifiers.
The SPF record was parsed and evaluated successfully.
Test Steps
Evaluating A Record lookup mechanism: "+a"
Additional Details
The DNS A Record lookup for IP address 190.149.222.173 found no match for domain 'santaclara.com.gt'.


Evaluating MX mechanism: "+mx"
The MX mechanism indicated a positive status.
Additional Details
The Microsoft Connectivity Analyzer matched MX lookup for santaclara.com.gt to IP address 190.149.222.173.





bellavista.com.gt test results
Performing Outbound SMTP Test
The outbound SMTP test was successful.
Test Steps
Attempting reverse DNS lookup for IP address 190.149.222.173.
The Microsoft Connectivity Analyzer successfully resolved IP address 190.149.222.173 via reverse DNS lookup.
Additional Details
The Microsoft Connectivity Analyzer resolved IP address 190.149.222.173 to host mail.santaclara.com.gt.


Performing Real-Time Black Hole List (RBL) Test
Your IP address wasn't found on any of the block lists selected.
Test Steps
Checking Block List "SpamHaus Block List (SBL)"
The address isn't on the block list.
Additional Details
IP address 190.149.222.173 wasn't found on RBL.


Checking Block List "SpamHaus Exploits Block List (XBL)"
The address isn't on the block list.
Additional Details
IP address 190.149.222.173 wasn't found on RBL.


Checking Block List "SpamHaus Policy Block List (PBL)"
The address isn't on the block list.
Additional Details
IP address 190.149.222.173 wasn't found on RBL.


Checking Block List "SpamCop Block List"
The address isn't on the block list.
Additional Details
IP address 190.149.222.173 wasn't found on RBL.


Checking Block List "NJABL.ORG Block List"
The address isn't on the block list.
Additional Details
IP address 190.149.222.173 wasn't found on RBL.


Checking Block List "SORBS Block List"
The address isn't on the block list.
Additional Details
IP address 190.149.222.173 wasn't found on RBL.


Checking Block List "MSRBL Combined Block List"
The address isn't on the block list.
Additional Details
IP address 190.149.222.173 wasn't found on RBL.


Checking Block List "UCEPROTECT Level 1 Block List"
The address isn't on the block list.
Additional Details
IP address 190.149.222.173 wasn't found on RBL.


Checking Block List "AHBL Block List"
The address isn't on the block list.
Additional Details
IP address 190.149.222.173 wasn't found on RBL.




Performing Sender ID validation.
Sender ID validation was performed successfully.
Test Steps
Attempting to find the SPF record using a DNS TEXT record query.
The SPF record was found.
Additional Details
SPF record found: "v=spf1 a mx ptr:santaclara.com.gt ip4:190.149.222.173 a:santaclara.com.gt include:mail.santaclara.com.gt mx:santaclara.com.gt -all"


Parsing the SPF record and evaluating mechanisms and modifiers.
The SPF record was parsed and evaluated successfully.
Test Steps
Evaluating A Record lookup mechanism: "+a"
Additional Details
The DNS A Record lookup for IP address 190.149.222.173 found no match for domain 'bellavista.com.gt'.


Evaluating MX mechanism: "+mx"
The MX mechanism indicated a positive status.
Additional Details
The Microsoft Connectivity Analyzer matched MX lookup for bellavista.com.gt to IP address 190.149.222.173.


Any light, pointers links that anyone can throw my way I will be very grateful for!! 


TIA, Jon

Viewing all 3168 articles
Browse latest View live