Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
10406
Views
0
Helpful
3
Replies

new domain added send 550 #5.1.0 Address rejected error

Go to solution
tobonve74
Level 1
Level 1

‎03-29-2017 10:10 PM

I have an Ironport C380 with AsyncOS version 9.7.0-125, i added a new domain to the RAT and SMTP routes, when sending email from external email accounts we are receiving this error "Remote server returned an error -> 550 #5.1.0 Address rejected.".

I have checked the mail_logs and see this error:

rejected by SMTP Call-Ahead using IP. (550 5.7.1 Unable to relay)
Wed Mar 29 15:22:48 2017 Info: Message aborted MID 5988436 Receiving aborted by sender

 I have configured 65 domains in the Ironport the same way and this time is not allowing the incoming emails for the new domain recently added. The exchange configuration is the same for all the domains configured in the Iron Port.

Is something new i have to do for the new domain?

Thanks in advance

1 person had this problem
Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Libin Varghese
Cisco Employee
Cisco Employee

‎03-30-2017 04:57 AM

Hi,

When you configure your Email Security appliance for SMTP call-ahead recipient validation, the Email Security appliance suspends the SMTP conversation with the sending MTA while it “calls ahead” to the SMTP server to verify the recipient. When the appliance queries the SMTP server, it returns the SMTP server’s response to the Email Security appliance. The Email Security appliance resumes the SMTP conversation and sends a response to the sending MTA, allowing the conversation to continue or dropping the connection based on the SMTP server response (and settings you configure in the SMTP Call-Ahead profile).

SMTP call ahead is configured under Network -> SMTP Call-Ahead and enabled on the incoming Listener.

To configure bypassing SMTP call-ahead validation via the GUI, select Bypass SMTP Call-Ahead when you add or edit the RAT entry.

Thank You!
Libin Varghese

View solution in original post

0 Helpful
3 Replies 3

Go to solution
Libin Varghese
Cisco Employee
Cisco Employee

‎03-30-2017 04:57 AM

Hi,

When you configure your Email Security appliance for SMTP call-ahead recipient validation, the Email Security appliance suspends the SMTP conversation with the sending MTA while it “calls ahead” to the SMTP server to verify the recipient. When the appliance queries the SMTP server, it returns the SMTP server’s response to the Email Security appliance. The Email Security appliance resumes the SMTP conversation and sends a response to the sending MTA, allowing the conversation to continue or dropping the connection based on the SMTP server response (and settings you configure in the SMTP Call-Ahead profile).

SMTP call ahead is configured under Network -> SMTP Call-Ahead and enabled on the incoming Listener.

To configure bypassing SMTP call-ahead validation via the GUI, select Bypass SMTP Call-Ahead when you add or edit the RAT entry.

Thank You!
Libin Varghese

0 Helpful

Go to solution
tobonve74
Level 1
Level 1
In response to Libin Varghese

‎03-30-2017 06:45 AM

Thanks is working now, i also rebooted the equipment and the exchange server.

0 Helpful

Go to solution
Libin Varghese
Cisco Employee
Cisco Employee
In response to tobonve74

‎03-30-2017 06:47 AM

Glad to help.

- Libin V

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents