| Author |
Message |
Sandystkevin
Guest
|
 Posted:
Tue Nov 29, 2005 1:58 am Post subject:
Intermitent connectivity problem between 2 exchange servers |
|
|
Hi,
we an exchange 2003 server running on a windows 2003 DC at 2 sites in the
same domain and exchange orginisation.
The sites are connected via a ipsec VPN across the internet.
The vpn is configured at both ends on 2 PIX 515 firewalls.
Both servers are allowed access to each other via all tcp and udp ports.
Both servers can send mails directly to internet hosts fine.
The problem (which is intermittent) is that mail from one server becomes
stuck in the queue for the other server. This can happen with mail going
either direction.
I've enabled smtp logging and diagnostic logging in exchange.
When the mail starts to queue on one server (A )for the other (B), I don't
see anything in the event viewer but I see the following in the smtp log
2005-11-21 14:45:53 172.17.2.3 OutboundConnectionResponse SMTPSVC1 ServerA -
25 - -
220+ServerB+Microsoft+ESMTP+MAIL+Service,+Version:+6.0.3790.1830+ready+at++Mon,+21+Nov+2005+14:45:53++0000+ 0 0 127 0 31 SMTP - - - -
2005-11-21 14:45:53 172.17.2.3 OutboundConnectionCommand SMTPSVC1 ServerA -
25 EHLO - ServerA 0 0 4 0 31 SMTP - - - -
2005-11-21 14:45:53 172.17.2.3 OutboundConnectionResponse SMTPSVC1 ServerA -
25 - - 250-ServerB+Hello+[172.18.2.4] 0 0 50 0 62 SMTP - - - -
2005-11-21 14:45:53 172.17.2.3 OutboundConnectionResponse SMTPSVC1 ServerA
- 25 - - 334+GSSAPI+supported 0 0 20 0 109 SMTP - - - -
Then a timeout. I think A is supposed to authenticate as when the problem
isn't happening and I review the logs the 2 servers do this and send mail
between each other.
To temporarly fix the problem requires that both servers get restarted.
Nothing appears to be being dropped by the Pix firewalls and I can't get
much out of the adsl routers at each site.
Any ideas?
|
|
| Back to top |
|
 |
Sandystkevin
Guest
|
| Posted:
Tue Nov 29, 2005 5:58 pm Post subject:
Re: Intermitent connectivity problem between 2 exchange serv |
|
|
I hadn't found it.
The situiation seems to meet the senario described. I'll patch it and see
how we get on
Thanks |
|
| Back to top |
|
|
Tom Felts
Guest
|
| Posted:
Tue Nov 29, 2005 5:58 pm Post subject:
Re: Intermitent connectivity problem between 2 exchange serv |
|
|
Have you seen this: http://support.microsoft.com/?kbid=898060 ?
"Sandystkevin" <Sandystkevin@discussions.microsoft.com> wrote in message
news:D97BAA94-26A3-4789-B9B4-BAF17E4CFFF3@microsoft.com...
| Quote: | Hi,
we an exchange 2003 server running on a windows 2003 DC at 2 sites in the
same domain and exchange orginisation.
The sites are connected via a ipsec VPN across the internet.
The vpn is configured at both ends on 2 PIX 515 firewalls.
Both servers are allowed access to each other via all tcp and udp ports.
Both servers can send mails directly to internet hosts fine.
The problem (which is intermittent) is that mail from one server becomes
stuck in the queue for the other server. This can happen with mail going
either direction.
I've enabled smtp logging and diagnostic logging in exchange.
When the mail starts to queue on one server (A )for the other (B), I
don't
see anything in the event viewer but I see the following in the smtp log
2005-11-21 14:45:53 172.17.2.3 OutboundConnectionResponse SMTPSVC1
ServerA -
25 - -
220+ServerB+Microsoft+ESMTP+MAIL+Service,+Version:+6.0.3790.1830+ready+at++Mon,+21+Nov+2005+14:45:53++0000+
0 0 127 0 31 SMTP - - - -
2005-11-21 14:45:53 172.17.2.3 OutboundConnectionCommand SMTPSVC1
ServerA -
25 EHLO - ServerA 0 0 4 0 31 SMTP - - - -
2005-11-21 14:45:53 172.17.2.3 OutboundConnectionResponse SMTPSVC1
ServerA -
25 - - 250-ServerB+Hello+[172.18.2.4] 0 0 50 0 62 SMTP - - - -
2005-11-21 14:45:53 172.17.2.3 OutboundConnectionResponse SMTPSVC1 ServerA
- 25 - - 334+GSSAPI+supported 0 0 20 0 109 SMTP - - - -
Then a timeout. I think A is supposed to authenticate as when the problem
isn't happening and I review the logs the 2 servers do this and send mail
between each other.
To temporarly fix the problem requires that both servers get restarted.
Nothing appears to be being dropped by the Pix firewalls and I can't get
much out of the adsl routers at each site.
Any ideas?
|
|
|
| Back to top |
|
|
Borror
Guest
|
| Posted:
Wed Nov 30, 2005 1:58 am Post subject:
RE: Intermitent connectivity problem between 2 exchange serv |
|
|
Sandy - I would guess that your issue is caused by the mailguard feature on
the PIX firewalls. I have ran into this a few times and it easy to resolve.
From the enable mode on both PIX firewalls, type the following command:
no fixup protocol smtp 25
"Sandystkevin" wrote:
| Quote: | Hi,
we an exchange 2003 server running on a windows 2003 DC at 2 sites in the
same domain and exchange orginisation.
The sites are connected via a ipsec VPN across the internet.
The vpn is configured at both ends on 2 PIX 515 firewalls.
Both servers are allowed access to each other via all tcp and udp ports.
Both servers can send mails directly to internet hosts fine.
The problem (which is intermittent) is that mail from one server becomes
stuck in the queue for the other server. This can happen with mail going
either direction.
I've enabled smtp logging and diagnostic logging in exchange.
When the mail starts to queue on one server (A )for the other (B), I don't
see anything in the event viewer but I see the following in the smtp log
2005-11-21 14:45:53 172.17.2.3 OutboundConnectionResponse SMTPSVC1 ServerA -
25 - -
220+ServerB+Microsoft+ESMTP+MAIL+Service,+Version:+6.0.3790.1830+ready+at++Mon,+21+Nov+2005+14:45:53++0000+ 0 0 127 0 31 SMTP - - - -
2005-11-21 14:45:53 172.17.2.3 OutboundConnectionCommand SMTPSVC1 ServerA -
25 EHLO - ServerA 0 0 4 0 31 SMTP - - - -
2005-11-21 14:45:53 172.17.2.3 OutboundConnectionResponse SMTPSVC1 ServerA -
25 - - 250-ServerB+Hello+[172.18.2.4] 0 0 50 0 62 SMTP - - - -
2005-11-21 14:45:53 172.17.2.3 OutboundConnectionResponse SMTPSVC1 ServerA
- 25 - - 334+GSSAPI+supported 0 0 20 0 109 SMTP - - - -
Then a timeout. I think A is supposed to authenticate as when the problem
isn't happening and I review the logs the 2 servers do this and send mail
between each other.
To temporarly fix the problem requires that both servers get restarted.
Nothing appears to be being dropped by the Pix firewalls and I can't get
much out of the adsl routers at each site.
Any ideas?
|
|
|
| Back to top |
|
|
Sandystkevin
Guest
|
| Posted:
Wed Nov 30, 2005 4:57 pm Post subject:
RE: Intermitent connectivity problem between 2 exchange serv |
|
|
this was already done.
There was a bit of confusion as to whether fixup effected the site to site
VPN traffic or not so we switched it off in case it did.
| Quote: | Sandy - I would guess that your issue is caused by the mailguard feature on
the PIX firewalls. I have ran into this a few times and it easy to resolve.
From the enable mode on both PIX firewalls, type the following command:
no fixup protocol smtp 25 |
|
|
| Back to top |
|
|
|
|
|
|
FAQ
Memberlist
Register
Profile
Log in to check your private messages
Log in