Sign in
 
Exchange Server TechCenter > Exchange Server Forums > Transport > Exchange 2007 Internal Mail delivery fails
Ask a questionAsk a question
Search Forums:
 

AnswerExchange 2007 Internal Mail delivery fails

  • Friday, October 30, 2009 5:49 PMMCLNeilP Users MedalsUsers MedalsUsers MedalsUsers MedalsUsers Medals
     
    Sign In to Vote
    0
    Sign In to Vote
    Hello,

    Wondering if someone can help. 

    Here is our setup:

    We currently have 2 excahnge servers in one AD forest.  First Exchange server is in UK and second is in HK.  I can send an internal email from a user in UK to a User in HK with no problems, however I cannot sucessfully send the other way.  If i look at the queues on the exchange server in HK i see the following:

     "Primary target IP Address responded with: "451 5.7.3 Cannot  acheive exchange server authentication." attempted failover to alternate host, but that did not succeed.

    The default receive connectors on both servers are configured identically, so not sure why the internal email is workign one way but not the other. 

    Can anyone please help.

    Hear from you shortly

    Regards

    Neil

     
     

Answers

  • Monday, November 02, 2009 4:06 PMMCLNeilP Users MedalsUsers MedalsUsers MedalsUsers MedalsUsers Medals
     Answer
    Sign In to Vote
    0
    Sign In to Vote
    HI All,

    thanks for all your help.  We have managed to resolve the issue.  On the HK firewall is a cisco ASA and ESMTP inspection was enabled.  This was blocking emails from being delivered to the HT server in UK.

    Regards

    Neil
    • Marked As Answer byMCLNeilP Monday, November 02, 2009 4:06 PM
    •  
     

All Replies

  • Sunday, November 01, 2009 7:07 AMRajnish R Sharma Users MedalsUsers MedalsUsers MedalsUsers MedalsUsers Medals
     
    Sign In to Vote
    0
    Sign In to Vote
    Check the configuration of  your Active Directory sites, because Exchange 2007 uses that topology for mail routing.  See this article for some beginning information on that
    topic:  http://technet.microsoft.com/en-us/library/aa996299.aspx  . Also check DNS to ensure that every server is looking to a DNS server that  has the correct entries for your Exchange organization.
    Raj
     
  • Monday, November 02, 2009 9:47 AMElvis Wei -MSFTMSFT, ModeratorUsers MedalsUsers MedalsUsers MedalsUsers MedalsUsers Medals
     
    Sign In to Vote
    0
    Sign In to Vote

    Hi Neil,

     

    The error is usually resolved by enabling Exchange Server authentication on the target SMTP server's receive connector via the authentication tab. As you say they're identical on both side, it cannot be the culprit. I suggest you run Exbpa on the Exchange of UK to see if there is some permission related issue. At the same time, I suggest you enable the protocol logging on the receive connector, then check the log and see if there're some clues.

     

    If the issue persists, I suggest you recreate the receive connector and test the issue again.

     

    A related article:

     

    Understanding Active Directory Site-Based Routing

    http://technet.microsoft.com/en-us/library/aa998825.aspx

     

    Thanks,

     

    Elvis

     
  • Monday, November 02, 2009 4:06 PMMCLNeilP Users MedalsUsers MedalsUsers MedalsUsers MedalsUsers Medals
     Answer
    Sign In to Vote
    0
    Sign In to Vote
    HI All,

    thanks for all your help.  We have managed to resolve the issue.  On the HK firewall is a cisco ASA and ESMTP inspection was enabled.  This was blocking emails from being delivered to the HT server in UK.

    Regards

    Neil
    • Marked As Answer byMCLNeilP Monday, November 02, 2009 4:06 PM
    •  
     
  • Tuesday, November 03, 2009 1:44 AMElvis Wei -MSFTMSFT, ModeratorUsers MedalsUsers MedalsUsers MedalsUsers MedalsUsers Medals
     
    Sign In to Vote
    0
    Sign In to Vote

    If some smtp command are filtered, the server can't get authenticate properly.  Cool, thank you for sharing with us.  J