Exchange and External Domains
Dears
I have Exchange Server 2013 and 2010 both of them on different forests.
I need to set 2013 send to external domains through 2010, i received error NDR when sending to external.
Your message wasn't delivered due to a permission or security issue. It may have been rejected by a moderator, the address may only accept email from certain senders, or another restriction
may be preventing delivery.
RunspaceId : a8dfaa48-5b7d-4b8a-a325-3359271d93a0
AuthMechanism : Tls
Banner :
BinaryMimeEnabled : True
Bindings : {128.100.100.25:25}
ChunkingEnabled : True
DefaultDomain :
DeliveryStatusNotificationEnabled : True
EightBitMimeEnabled : True
BareLinefeedRejectionEnabled : False
DomainSecureEnabled : False
EnhancedStatusCodesEnabled : True
LongAddressesEnabled : False
OrarEnabled : False
SuppressXAnonymousTls : False
AdvertiseClientSettings : False
Fqdn : BHEXCH01.mycomapny.com.sa
Comment :
Enabled : True
ConnectionTimeout : 00:10:00
ConnectionInactivityTimeout : 00:05:00
MessageRateLimit : unlimited
MessageRateSource : IPAddress
MaxInboundConnection : 5000
MaxInboundConnectionPerSource : 20
MaxInboundConnectionPercentagePerSource : 2
MaxHeaderSize : 64 KB (65,536 bytes)
MaxHopCount : 60
MaxLocalHopCount : 12
MaxLogonFailures : 3
MaxMessageSize : 10 MB (10,485,760 bytes)
MaxProtocolErrors : 5
MaxRecipientsPerMessage : 200
PermissionGroups : AnonymousUsers
PipeliningEnabled : True
ProtocolLoggingLevel : None
RemoteIPRanges : {10.0.0.125}
RequireEHLODomain : False
RequireTLS : False
EnableAuthGSSAPI : False
ExtendedProtectionPolicy : None
LiveCredentialEnabled : False
TlsDomainCapabilities : {}
Server : BHEXCH01
SizeEnabled : Enabled
TarpitInterval : 00:00:05
MaxAcknowledgementDelay : 00:00:30
AdminDisplayName :
ExchangeVersion : 0.1 (8.0.535.0)
Name : Exchange2013 External relay
DistinguishedName : CN=Exchange2013 External relay,CN=SMTP Receive Connectors,CN=Protocols,CN=BHE
XCH01,CN=Servers,CN=Exchange Administrative Group (FYDIBOHF23SPDLT),CN=Admini
strative Groups,CN=mycompany,CN=Microsoft Exchange,CN=Services,CN=Configuration,
DC=mycompany,DC=com,DC=sa
Identity : BHEXCH01\Exchange2013 External relay
Guid : ef6037c3-c127-42ab-bb34-3db8e1dffc50
ObjectCategory : mycompany.com.sa/Configuration/Schema/ms-Exch-Smtp-Receive-Connector
ObjectClass : {top, msExchSmtpReceiveConnector}
WhenChanged : 8/28/2014 10:57:08 AM
WhenCreated : 8/28/2014 10:47:38 AM
WhenChangedUTC : 8/28/2014 7:57:08 AM
WhenCreatedUTC : 8/28/2014 7:47:38 AM
OrganizationId :
OriginatingServer : BHS001.mycompany.com.sa
IsValid : True
Similar Messages
-
CRM2015 IFD Internal and External Domains
I am trying to setup CRM2015 with IFD. My internal domain is xr.local and external domain name is somethingelse.com. When going through the directions and searching through the forums I see similar questions regarding with no real information on the possibility.
Am I able to set this up to support 2 different domains and where might I find some guidance to do so?
Thanks...
GYHi David,
Yes. the above setup should "do the trick" as the servers you put with blank DNS entry should be excluded in the NRPT table.
You can confirm this by running at the client: netsh name show polocy
at command line and see something like:
Settings for da.domain.com
Certification authority :
DNSSEC (Validation) : disabled
DNSSEC (IPsec) : disabled
DirectAccess (DNS Servers) :
DirectAccess (IPsec) : disabled
DirectAccess (Proxy Settings) : Use default browser settings
Settings for .domain.com
Certification authority :
DNSSEC (Validation) : disabled
DNSSEC (IPsec) : disabled
DirectAccess (DNS Servers) : 1234:1234:1234:3333::1
DirectAccess (IPsec) : disabled
DirectAccess (Proxy Settings) : Bypass proxy
So in this scenario the .domain.com is using the DA while the specific entry (da.domain.com) is set as exclude and have emptry DNS ...
Hope this helps,
Ophir. -
Exchange 2013 DNS for internal and external domain
Hi All,
I have been assigned a task to implement Microsoft Exchange Server 2013. I need some help in setting up DNS namespaces and design a strategy to have same internal and external names. Let me share some details here.
We have an Active Directory domain myinternaldomain.net, and we have a public domain
mypublicdomain.com and we have setup email policy to have
mypublicdomain.com as the SMTP domain for all the users. We have created another DNS zone in Active directory integrated DNS and created a records for
mail.mypublicdomain.com and autodiscover.mypublicdomain.com which will point to CAS NLB IP. We have 2 CAS servers and 2 MBX servers, we have configured DAG for MBX High availability and planning to implement WNLB for CAS as
hardware LB is out of scope due to budget constrains.
We want to have same URLs for OWA, Autodiscover, ECP and other services from internal network as well as from public network. Users should not be bothered to remember two URLs, using one from internal and other from public networks. I also want to confirm
that with this setup in place do i need to have myinternaldomain.net and server names in SAN certificate?
ThanksHi Sccmnb,
You can easily achieve this using split DNS.
Internal DNS hostname "mail.mypublicdomain.com" will be pointing to your internal CAS NLB IP and the external public DNS hostname"mail.mypublicdomain.com" will be pointing to the Network device or
Reverse proxy server IP.
Depending upon users access location(internal\external) the IPs would vary and they should be able to access the website with same name.
The names that you would require on the certificate(Use EAC or powershell to raise the request) for client connectivity would be
SN= mail.mypublicdomain.com
SAN= autodiscover.mypublicdomain.com
You don't need to have the active directory domain name present in the certificate.
Additional to this you need to update the AutodiscoverURI for all servers and OWA,ECP,Autodiscover Virtual Directories InternalURL and ExternalURL fields with appropiate public names.
Some additional Info:
*Internal vs. External Namespaces
Since the release of Exchange 2007, the recommendation is to deploy a split-brain DNS infrastructure for the Internet-based client namespaces. A split-brain DNS infrastructure enables different IP addresses to be returned for a given namespace
based on where the client resides – if the client is within the internal network, the IP address of the internal load balancer is returned; if the client is external, the IP address of the external gateway/firewall is returned.
This approach simplifies the end-user experience – users only have to know a single namespace (e.g., mail.contoso.com) to access their data, regardless of where they are connecting. A split-brain DNS infrastructure, also simplifies the configuration of Client
Access server virtual directories, as the InternalURL and ExternalURL values within the environment can be the same value.
*Managing Certificates in Exchange Server 2013 (Part 2)
*Nice step by step article
Designing a simple namespace for Exchange 2013
Regards,
Satyajit
Please“Vote As Helpful”
if you find my contribution useful or “MarkAs Answer” if it does answer your question. That will encourage me - and others - to take time out to help you. -
Same internal and external domain names - AGAIN!
Hi all-
Like many of you, I am confronting the problem of having the same FQDN for both my Active Directory domain and Internet domain. For the sake of discussion, let's call the domain rlh.com.
I need to access an externally-hosted website on the rlh.com domain. The site is coded exclusively to use rlh.com and NOT
www.rlh.com. Therefore, the old trick of adding a static www A record on my internal DNS server will not work.
It looks like another option is to install IIS on my DC and then configure some type of forwarding to the external site. While this might work, frankly, I don't want IIS on my DC. It's a DC, not a web server.
Yet a third option, correct me if I'm wrong, looks to be using some type of "split DNS." Though I have not read the particulars (yet) of this solution, I am suspicious of it causing DNS inefficiencies.
All of these solutions look to me to be workarounds. I am preparing to install a new DC (upgrading from 2003 to 2008 R2) and want to FIX the problem, not work around it. That said, it looks like I have two options:
1. Rename my existing 2003 AD domain using rendom
2. Install the new 2008 R2 DC with the new domain name, setup domain trust between the old and new domains, and then use ADMT.
Can someone please comment on my logic here? Does anyone have experience with both of the two options? Is one less painful than the other?
As I preparatory step, I have migrated from my onsite Exchange 2003 server to Office 365. Exchange is no longer present in my organization, though some slight "remnants" may remain in Active Directory. Other than Exchange, I have a
Hyper-V host, 2 SQL Servers, and 3 RDS servers present in my environment.
Thanks.I realized this was answered, but I would like to add the following comprehensive blog on this subject.
Can't Access Website with Same Name (Split Zone or no Split Brain)
Published by Ace Fekay, MCT, MVP DS on Sep 4, 2009 at 12:11 AM 1278 0
Note - In an AD same name as the external name (split zone) scenario, if you don't want to use WWW in front of URL, such as to access it by
http://domain.com, then scroll down to "So you don't want to use WWW in front of the domain name"
http://blogs.msmvps.com/acefekay/2009/09/03/split-zone-or-no-split-zone-can-t-access-internal-website-with-external-name/
Ace Fekay
MVP, MCT, MCSE 2012, MCITP EA & MCTS Windows 2008/R2, Exchange 2013, 2010 EA & 2007, MCSE & MCSA 2003/2000, MCSA Messaging 2003
Microsoft Certified Trainer
Microsoft MVP - Directory Services
Complete List of Technical Blogs: http://www.delawarecountycomputerconsulting.com/technicalblogs.php
This posting is provided AS-IS with no warranties or guarantees and confers no rights. -
Lync Implementation with different internal and external domain sync
Hello Experts,
Having Windows 2012r2 with Lync 2013 frontend and Edge 2012 server on Win2012. Internal domain name is test.local and Internet domain name is : tgroup.com. Internally all the clients are able to sync with frontend
server using [email protected] or [email protected] Internal CA and External Digicert works fine. But only problem is with external clients who want to communicate through edge server.
Edge server has 3 LAN ip address (nat with public IP), 10.10.10.2, 10.10.10.3, 10.10.10.4 and another Internal network interface which has ip 10.10.20.3
which uses that to communicate with front-end.
How to achieve this ? We dont have reverse proxy configured and we have only two servers.
Regards, Ganesh, MCTS, MCP, ITILV2 This posting is provided with no warranties and confers no rights. Please remember to click Mark as Answer and Vote as Helpful on posts that help you. This can be beneficial to other community members reading the thread.The reverse proxy is used to publish URL's like the meet and dialin url, the address book url and the lync mobile client (smart phones and tablets) urls. This doesn't impact the external desktop user access as thats via the edge server. There is more to
it than that but for the sake of keeping this simple lets stick to that for now.
As far as SIP domains go. Think of your Lync users as having a SIP address similar to email addresses. You wouldn't have a user with an internal email address but with a different external email address. In fact best practice is to have the Lync SIP address
match the email address.
My reccomendation is to use the ttgoup.com as a sip domain and not the test.local
Please remember, if you see a post that helped you please click "Vote As Helpful" and if it answered your question, please click "Mark As Answer"
Lync Sorted blog -
How to Setup RDS custom property when internal and external domain name space is different
Hi All
I am setting up RDS for customer
My internal domain name is domain.local and my external domain is domain.com
I came across below PowerShell cmdlets on some blogs because my internal and external name space are different
Set-RDSessionCollectionConfiguration –CollectionName QuickSessionCollection -CustomRdpProperty “use redirection server name:i:1 `n alternate full address:s:remote.domain.com”
In above command, remote.domain.com points to which host?
Is it pointing to RD Session Broker
OR
Pointing to RD Session Host servers
I am not sure what above command will do exactly ?
Any help will be highly appreciated
Thanks Best Regards MaheshHi,
It all depends who is accessing the RDS Solution.
If you have a large BYOD or large number of external users, it would be better to use a public certificate.
Have a look at the following script which will simplyfy the configuration of the RDSH hosts with certificates.
http://ryanmangansitblog.com/2014/05/20/rds-2012-rdsh-certificate-deployment-script/
You can use a custom RDP property to hide the Session host names.
Have a look at the following article on configuring certificates:
http://ryanmangansitblog.com/2013/03/10/configuring-rds-2012-certificates-and-sso/
Ryan Mangan | Ryanmangansitblog.wordpress.com | Help keep the forums tidy, if this has helped please mark it as an answer -
Using Mac Mini server, DNS, static IP, and external domain name
Greetings!
I need to know the direction to take in order to use my domain name for the great features offered in the mac mini server, while having local and public access to my server with security.
I am trying to do the following on my new mac mini server:
-Set up DNS (myserver.private)
I have a static IP I want to use for all this with my ISP
-ftp access
-ichat ([email protected])
-email ([email protected])
-ical etc. ([email protected])
-my work website(mydomain.com) with public access!
-host websites(other domains)
I need to know the direction to take in order to use my domain name for these features. I have a domain name with godaddy, and I am happy with keeping it with them, however, how to I make my external domain name work on my private server with public access is the question?
Thank you,
Daniel G[Read this|http://labs.hoffmanlabs.com/node/1436] as a start; you're basically going to decide if you want to use NAT or not; if you have enough public static IP addresses to avoid the disaster that's NAT. If you want to use NAT (and few reasonable folks want to, but sometimes we have to), then you get to run your own DNS services internally, and establish public DNS and power-forwarding at a (preferably server-grade) firewall. With NAT, you end up with split DNS, and that's covered in the cited document.
ps: it's easier to [use sftp|http://labs.hoffmanlabs.com/node/942]; while that shares three letters with ftp, it avoids most of the problems of ftp. -
Internal and external domain problem
Host: oserver. sbsrv. local (internal address)
Version: 10.1.2.0.2
Installation Type: Portal and Wireless
I have installed the oracle portal and works well in the internal network.
The problem:
When I try to access from public domain (www.mycompany.com) i get the welcome page from application server (fine) ,but if I press the link (log on to Oracle Application Server Portal) it redirects me to the internal address (http://oserver.sbsrv.local/portal/page?_pageid=0,1&_dad=portal&_schema=PORTAL)
I edit httpd.conf (Apache) and i change the line from ServerName oserver.sbsrv.local to ServerName www.mycompany.com and i get something like, that : ??????: ??? ???? ?????? ? ???? ????????????? ??????? ??? ?? ???? ??????
Question:
How can I map the internal domain: oserver. sbsrv. local (IP 192.168. xx. xx) with public domain www. mycompany. com (IP 62. x. x. x) ?
thanks.
Message was edited by:
user543368I did this 3 or 4 years ago and set up the Web-Cache to act as a reverse proxy. There is a paper on Metalink that explains how to set it up but I do not have the Doc ID.
Also check out the White Paper that illustrates a different method. "Expose your Intranet Portal to the
Outside World in a Secured Manner
(aka. A Secured Inside/Outside Portal)" see http://www.oracle.com/technology/products/ias/portal/pdf/admin_security_1014_secured_inside_outside.pdf
BG... -
Domain on on-premise Exchange and subdomain on Office 365 coexistance
We have a client with, what seems to me, an odd request regarding their exchange topology. They are a small college and have their mail split between on-premise and O365. Their on-premise Exchange 2013 has email setup for domain.com, used by the
faculty. Their O365 is setup for students.domain.com and is sync'd with AD using MSO Dirsync. Currently, the two do not interact at all and is causing issues with staff emailing students. Since they are educational, we have advised them
to move the faculty over to O365, however they throw that option out every time we bring it up. They want to keep their faculty email on premise and leave the students in the cloud. They want these separate, but still want the features
of a single exchange forest. They want the students to be in the address-book, and be able to use distribution lists between the two.
What I'm wondering is if hybrid deployment will allow this to happen. Based off my limited exchange experience, hybrid is used for the same domain across on-premise and O365, not for 2 separate domains. I feel like two separate domains doesn't
really matter, since they are all AD mailboxes anyway.
What I'm asking is if hybrid deployment would be the way to go for this, and if there would be any documentation as the how to this exactly. What I'm finding is documentation on the same domain split between the two, not 1 domain on exchange and 1
domain on O365.
Any help is appreciated, thank you!Thanks for the reply! Fortunately for our situation, all the accounts in O365 are deleted at the end of the semester, so to completely rebuild the O365 setup is not out of the question at all.
I guess I'm curious about the specifics for this. I've setup hybrid deployment before for a single domain, so I take it this will be similar. I suppose the DNS wouldn't need to change, right? O365 would receive mail for students.domain.com and the exchange
would receive mail for domain.com. Then they'd each rely on the connectors to send mail back and forth. What about DirSync, would I then need to sync the staff as well as students to O365?
And how about OWA, would the students then access webmail through OWA, or still use O365?
Sorry if any of this is basic, exchange is my weakest skillset.
Thank you! -
I have monitor up and running but for the life of me I can't seem to get the performance testing and acct collecting working. I am trying to follow the directions and I am getting stumped on creating the external domain. Do I have to setup a second GroupWise system to run a single domain, post office and user just so that I can connect to it using and external domain from my main groupwise system? Hopefully I have read that wrong and that is not what I need to do. Any help would be greatly appreciated.
gibsont <[email protected]> wrote:
> I have monitor up and running but for the life of me I can't seem to get
> the performance testing and acct collecting working. I am trying to
> follow the directions and I am getting stumped on creating the external
> domain. Do I have to setup a second GroupWise system to run a single
> domain, post office and user just so that I can connect to it using and
> external domain from my main groupwise system? Hopefully I have read
> that wrong and that is not what I need to do. Any help would be greatly
> appreciated.
>
No, this becomes a "dummy" domain. You create an external GroupWise
domain, make up a name (maybe Monitor), leave the domain database location
blank and just create it. Go to your monitor console. Click on
preferences. Scroll down to mtp settings and in the domain to monitor
choose your new external domain. Put in the port that the monitor will
listen on. In other words, Monitor will pretend to be an MTA listening on
this port. So, if monitor is running on the same server as an MTA this has
to be some open port. Like maybe 7110. Next in the performance testing
choose what domain monitor should talk to. And check the performance
testing box if you are configuring performance testing. Save that.
Now, in ConsoleOne go to link configuration. For the domain listed in the
performance testing above. Set the link to direct, tcp/IP and put in the
IP address on monitor, and the port you confirmed above (in my example
7110).
Now go back to your external monitor domain and create a PO under it (like
MonitorPO). Then create a user (MonitorUser). Whoever is the accountant
for the GWIA should now set a forwarding rule to send the accounting
reports to this user.
Let me know if that gets you going, or if you run into other issues.
Danita - http://www.caledonia.net/blog -
I have the following on my local network.
Server DomainA -> Small Business server 2003/Exchange 2003
Server DomainB -> Windows 2008 R2/Exchange 2013
Clients Domain A -> Windows XP/Outlook 2003
Clients Domain B -> Windows 7/Outlook 2007/2010
Problem: I want clients from DomainA to log into Exchange on DomainB on the same local network.
I need to know how to setup the DNS on both domains and the certificates on the DomainB Exchange server
to accept the connection from the PC on domainA. All connections from clients on domainB to server on domainB
work correctly but when adding accounts to Outlook 2003/2007 on domainA clients I am getting certificate errors.
I have purchased certificates for mail.domainb.com and autodiscover.domainb.com but I dont know how to get
the clients on domainA to recognize those external URL's of the exchange server (with the certificates bound to them) from the internal network. Hence I get domain errors.
I am getting issues when a client on DomainA tries to add an Outlook mail profile to connect to the Exchange on DomainB
Any suggestions on how to set this up?
thanksDomain A & Domain B are two separate AD Forests?
Users in Domain A either need mailbox-enabled user accounts that are in DomainB or a linked mailbox in Domain B to utilise the Exchange Server in DomainB. In either case with the help of the autodiscover service user can use the services in ExchangeB.
If the client machines are member of domainA and you are trying to access ExchangeB you will then need to leverage a custom XML file for autodiscover and force the Outlook client to use this file.
<?xml version="1.0" encoding="utf-8"?>
<Autodiscover xmlns="http://schemas.microsoft.com/exchange/autodiscover/responseschema/2006">
<Response xmlns="http://schemas.microsoft.com/exchange/autodiscover/outlook/responseschema/2006a">
<Account>
<AccountType>email</AccountType>
<Action>redirectUrl</Action>
<RedirectUrl>https://autodiscover.domain.com/autodiscover/autodiscover.xml</RedirectUrl>
</Account>
</Response>
</Autodiscover>
Then you need to configure the client machine to query that XML file by adding the following registry key:
Refer to XML file
for Outlook 2007:
HKCU\Software\Microsoft\Office\12.0\Outlook\Autodiscover
for Outlook 2010:
HKCU\Software\Microsoft\Office\14.0\Outlook\Autodiscover
STRING_value <your_namespace> = path to XML file
you can find more information in the following link.
Controlling Outlook Autodiscover behavior
http://blogs.technet.com/b/kristinw/archive/2013/04/19/controlling-outlook-autodiscover-behavior.aspx
CK -
How to configure AD on windows 2012 server for Exchange 2013 internal and external email flow
Dear Experts,
I have to configure exchange 2013 on Windows server 2012 STD. Company has registered Static IP addresses and can get the MX record pointing to any of this Static IP.
The registered domain name is e.g. contoso.com.
a. What should I use as domain name on AD? contoso.com or contoso.local
b. Is it recommended to have two different servers for AD and Exchange?
c. What should be my connector settings for mail flow?
d. how can I set 2 email servers in company for load balancing?Hi,
a, I suggest use contoso.com as domain name. It is convenient to add urls into our certificate for internal and external mail flow.
b, Recommended that installing AD
and Exchange Server on two separate
Servers. If Exchange Server downed unfortunately, it can prevent AD server from crushing at the same time.
c, Found some articles for your reference:
Configure Mail Flow and Client Access
http://technet.microsoft.com/en-us/library/jj218640(v=exchg.150).aspx
Configuring Outbound Mail Flow in Exchange Server 2013
http://exchangeserverpro.com/configuring-outbound-mail-flow-in-exchange-server-2013/
d, Load Balancing
http://technet.microsoft.com/en-us/library/jj898588(v=exchg.150).aspx
Hope it is helpful
Thanks
Mavis
Mavis Huang
TechNet Community Support -
530 5.7.1 Client was not authenticated - Exchange 2013 to external domains
Hi all,
I have an Exchange server 2013 on windows 2012 R2 and do all the configuration for sending and receiving the mail according to the document provided by Microsoft.
But whenever I am trying to send mails from external domains to my exchange server domain I got the following error:
530 5.7.1 Client was not authenticated
Same thing I am getting If I am sending mail through outlook from my Exchange domains to external domain.
But if I am selecting the
<label for="ResultPanePlaceHolder_ReceiveConnector_Security_contentContainer_chkPermissionGroupAnonymousUsers" id="ResultPanePlaceHolder_ReceiveConnector_Security_contentContainer_chkPermissionGroupAnonymousUsers_label">Anonymous
users in the security option of Default Frontend XXXX, I am able to send the mails through outlook.</label>
<label for="ResultPanePlaceHolder_ReceiveConnector_Security_contentContainer_chkPermissionGroupAnonymousUsers" id="ResultPanePlaceHolder_ReceiveConnector_Security_contentContainer_chkPermissionGroupAnonymousUsers_label">But I don't
want to use this option as it will enable to send the mails without validating the Exchange server user name and password.</label>
SO can anyone please suggest some solutions to resolve this as using Anonymous users fro sending and receiving mails is not secure.
Regards
Pankaj Raman.
<label for="ResultPanePlaceHolder_ReceiveConnector_Security_contentContainer_chkPermissionGroupAnonymousUsers" id="ResultPanePlaceHolder_ReceiveConnector_Security_contentContainer_chkPermissionGroupAnonymousUsers_label">
</label>I have a java code for sending mails using the SMTP address of the servers. For sending a mail it required a valid user name and password. For all other SMTP servers if I have used invalid user name and password then I am getting the 530
5.7.1 Client was not authenticated error, but
if I am using my SMTP address and invalid user name and password then also I am able to send the mails.
So I just want to know what I have to configure in the exchange 2013 server so that it will validate the user name and password.
Regards
Pankaj Raman.
Hi Pankaj,
Thank you for your question.
Was invalid user name and password included in Java code?
Did outlook send emails?
If this issue happen on Java code instead of outlook?
In fact, Exchange server didn’t validate user account and password, user account and password will be validated on domain controller,
I suggest we create a new dedicated receive connector and enable “anonymous” permission for java code
If there are any questions regarding this issue, please be free to let me know.
Best Regard,
Jim
Please remember to mark the replies as answers if they help, and unmark the answers if they provide no help. If you have feedback for TechNet Support, contact [email protected]
Jim Xu
TechNet Community Support -
Exchange 2013 SMTP Mail Flow from external domains
I have query related to mail flow for incoming mails from external domains from Internet facing site. There are two sites - Site A & Site B. Both have Exchange 2013 CAS servers in NLB and Exchange 2013 Mailbox in individual DAG - say DAG1 in Site
A and DAG2 in Site B. Site A is Internet facing site and site B is not Internet facing.
An incoming Internet mail meant for recipient in Site B will land in Exchange 2013 CAS server in Site A. This CAS Server in Site A will look for the recipient in local Domain Controller and get to know the mailbox database of this recipient is in DAG2 (
in site B ) Will the FET service in EX2013 CAS in Site A make a SMTP connection with FET service of EX2013 CAS in site B which will then make SMTP connection to EX2013 Mailbox server in Site B which is holding the recipient mailbox Active copy for delivery.
OR
EX2013 CAS will send this mail to Ex2013 Mailbox server in site A and the Hub Transport service running in in site A will then make SMTP connection with EX2013 Mailbox server in Site B which is holding the recipient mailbox Active copy
Need clarification on above
Thanks
ParveenHello,
Come back and mark the replies as answers if they help and unmark them if they provide no help.
I'm marking the reply as answer as there has been no update for a couple of days.
If you come back to find it doesn't work for you, please reply to us and unmark the answer.
Cara Chen
TechNet Community Support -
Unable to send and receive email for external domain
Hi,
I just installed Exchange Server on my 2K8 domain controller. I have set up the send connector and made necessary changes to the receive connector as well. I have updated the DNS records as well on my domain registrar. I can access OWA from outside my companies
network and is able to send and receive emails for my domain but unable to send or receive emails to any other domain. I have checked the delivery report and it says that the message has been queued on the server.
I also did nslookup. Results mentioned below:
C:\Users\Administrator>nslookup www.google.com
Server: localhost
Address: ::1
Non-authoritative answer:
Name: www.google.com
Addresses: 2404:6800:4009:802::1014
74.125.236.145
74.125.236.148
74.125.236.146
74.125.236.144
74.125.236.147
C:\Users\Administrator>nslookup www.microsoft.com
Server: localhost
Address: ::1
DNS request timed out.
timeout was 2 seconds.
DNS request timed out.
timeout was 2 seconds.
*** Request to localhost timed-out
Any help would be much appreciated!Hi hg01,
According to your description, I notice that you installed Exchange server on a DC.
It is not recommended to install Exchange server on a DC. I suggest install Exchange server on a member server. More details to see:
Installing Exchange on a domain controller is not recommended
http://technet.microsoft.com/en-us/library/ms.exch.setupreadiness.warninginstallexchangerolesondomaincontroller(v=exchg.150).aspx
About your issue, cannot send and receive externally, I suggest make sure the DNS can be resolved first.
Then, check whether Outlook Anywhere has been enabled. If not, please enable it on both Exchange server and Outlook client side.
Last, try to configure both Send Connector and Receive Connector.
More detailed error message will be helpful for the further troubleshooting.
Thanks
Maybe you are looking for
-
Can someone please give me advice in the most simplist terms because anything to do with computers or I Pads are totally confusing to me. I am one person who should never had entered into using this field of communication because I'm plain DUMB. Than
-
GOP/UEFI BIOS for R9 270 Gaming
My serial number is: 602-v305-03SB1401017590-249 Thank you very much.
-
First and last frame disappearing off every clip
Hi, Every clip I import in Final cut pro 6.0 loses its first and last frame. The clips I import are in photoJpeg / 24p (verified with the -get info- of Quicktime Pro), but once in FCP they are marked as 23.98 ?!?! In the browser the info of the clip
-
HT1689 I so not want outlook in my itunes... can it be done
I seem to have problems syncing my calenders.. it seems that there are multiple ones... I do not want to sync with outlook... can pls advise
-
Weird marking tape tied to phone line
Hey does anyone know what the marking tape in the photo means? Basically this morning i looked out the upstairs bedroom and found the marking tape attached to the phone line, i wasnt the only one in the street to have it as 3 others have aswell, i ca