Unable to forward email internally
I am running an Exchange Server 2003 SP2 server. My users are able to send and recieve mail from the Internet without a porblem. However if a user, myself included, wants to forward a message recieved from the Internet to a user that is internal to our domain, we get the "You do not have permission to send to this recipient" message.
I have addred a domain.local email address to everyones account, but it hasnt solved the problem.
In Relay restrictions I have added the internal subnets to the "only listed below" box,.
The allow computers that succesfully authenticate box is not checked.
I have added the Domain usres group to the list of users allowed to relay
I should also mention that the Exchange Server is Internet facing, there is no front end server
Any help would be greatly appreciated
November 2nd, 2007 4:37pm
What client are you using?
Outlook or Outlook Express or any other POP3 client?
Deli
Free Windows Admin Tool Kit Click here and download it now
November 2nd, 2007 6:10pm
Outlook 2003. I have POP3 disabled because of open relay problems
November 2nd, 2007 6:54pm
Outlook 2003. I have POP3 disabled because of open relay concerns
Free Windows Admin Tool Kit Click here and download it now
November 2nd, 2007 6:55pm
Hi,
Check off 'Allow computers that succesfully authenticate to relay' and that shoud allow internal forwards, reply, etc.
Good luck,
Mike Clarkehttp://mystyleit.comCLS, WSCP, MCP, MCTS, MCSA+M, MCSE+M
November 2nd, 2007 7:40pm
Disabling POP3 does not help in relay problems as POP3 is a protocol that only downloads email
POP3 and SMTP are used inconjunction: SMTP is used to send messages for Outlook Express clients
What are you actually trying to acheive?
You can send messages with Outlook 2003?
Deli
Free Windows Admin Tool Kit Click here and download it now
November 2nd, 2007 7:49pm
about 6 weeks or so after our exchange server went online we got blacklisted as an open relay. The research that I did said that if you have an internet facing exchange server (no front end server) then you cannot have the allow computers that authenticate checked, and, if I was to allow pop3, i would have to configure the server in a way that would allow open relaying.
We send and recieve email outside our domain fine. The problem is when I recieve a message in the general mailbox and want to forward it to the proper internal recipient, i am told i do not have permission to send to this user.
November 5th, 2007 6:02pm
There should not be a problem enabling relay when authenticated but then you must be sure that you have no weak passwords as some spammers guess passwords
How are you forwarding the message?
With outlook 2003 with Exchange server profile?
Deli
Free Windows Admin Tool Kit Click here and download it now
November 5th, 2007 7:48pm
Kevin Bly wrote:
We send and recieve email outside our domain fine. The problem is when I recieve a message in the general mailbox and want to forward it to the proper internal recipient, i am told i do not have permission to send to this user.
Can you please post the error?
Something to check: attempt to forward an email but before you hit the 'send' button right-click and pull up properties on the user's name. Does it show the users' information as pulled from AD or does it show the ExchangeDN?
November 7th, 2007 1:50am
When I am forwarding, I click to to: button and select the user from the address list. Right clicking on the user's name in the two field prings up the properties for that user, including their email addresses.
I checked the allow computers that sucessfully authenticate check box and the problem seems to have subsided. This worries me a great deal because the microsoft document I found said not to check that box if I didnt have a front end server.
see microsoft document 821746
it states that if I am not using imap4 or pop 3 clients, clear the computers that successfully authenticate checkbox.
Free Windows Admin Tool Kit Click here and download it now
November 7th, 2007 11:40pm
here is a technet article that explicitly says that if you have an internet facing server, clear the authenticated computers checkbox
http://technet.microsoft.com/en-us/library/aa996901.aspx
November 7th, 2007 11:52pm
You are clearly using POP3 or IMAP4 because that setting has nothing to do with Outlook in Exchange profile mode!
You can however create a new virtual SMTP server on different IP not accessible from the internet that has the correct settings for your clients
Deli
Free Windows Admin Tool Kit Click here and download it now
November 8th, 2007 1:53am
as I said in my previous posts i have pop3 and imap4 disabled. so, I'm clearly NOT using them. sorry
I have the default smtp server setup. My POP3 connector is disabled. My smtp connector is working.
There are no others setup in my system manager
November 8th, 2007 5:00pm
it is still happening with the authenticated computers box checked. I just tried to forward an email to a user in my local domain and I recieved this message:
Your message did not reach some or all of the intended recipients.
Subject: FW:
Sent: 11/8/2007 8:59 AM
The following recipient(s) could not be reached:
Karen Bly on 11/8/2007 8:59 AM
You do not have permission to send to this recipient. For assistance, contact your system administrator.
MSEXCH:MSExchangeIS:/DC=local/DC=KeystoneBlind:KBA-DC
Free Windows Admin Tool Kit Click here and download it now
November 8th, 2007 5:05pm
Then your SMTP settings are irrelevant to this problem!
You need to check the recipient delivery restrictions in Active Directory as there may be restriction on this account so only specific users can send to that recipient
Deli
November 8th, 2007 5:34pm
I checked the delivery restrictions under the Exchange General tab of the user I was trying to forward to. It is set to accept messages from everyone.
This is a VERY frustrationg problem. This is why I ended up on this forum
Free Windows Admin Tool Kit Click here and download it now
November 9th, 2007 12:12am
Are you sure that you send messages from your own account
Just checking because if you don't have send as permissions for another user then you cannot set that user in the from address
Deli
November 9th, 2007 2:02am
i'm not sure. I have 3 mailboxes that open in my outlook. one is the General mailbox for the organization, one is my work mailbox and the other is my business mailbox
How can I check this?
Free Windows Admin Tool Kit Click here and download it now
November 13th, 2007 4:53pm
If you send a new message and show the FROM field (somewhere in the menu you will find that)
Deli
November 13th, 2007 6:47pm