I am not sure if it is in MFE but it was configured to be a relay server for emails. Incoming/Outgoing mails were relayed to the firewall by my clients Antispam appliance. They are experiencing lots of bounce back emails after upgrading from version 7.0.1.02 to 8.2 and changing their external ip address when they switch to their new ISP. Below are the error messages.
Outgoing email: The errors below happened when one of their user is sending email outside their network.
(host serverfrom.thisdomain.com.ph[220.127.116.11] said: 550 5.7.1 <firstname.lastname@example.org>.. Relaying denied. IP name lookup failed [local_ipaddress of their antispam appliance]
Your message did not reach some or all of the intended recipients.
The following recipient(s) cannot be reached:
email@example.com on 10/17/2012 3:12 PM
You do not have permission to send to this recipient. For assistance, contact your system administrator.
< hostname.of.MFEappliance.com #5.7.1 SMTP; 554 5.7.1 <firstname.lastname@example.org>: Relay access denied>
did not reach the following recipient(s):
email@example.com on Sun, 7 Oct 2012 09:54:55 +0800
A configuration error in the e-mail system caused the message to
bounce between two servers or to be forwarded between two recipients.
Contact your administrator.
< hostname.of.MFEappliance.com #5.3.5 SMTP; 553 5.3.5 system config error>
Reporting-MTA: dns; hostnameof.antispam.com Final-Recipient: RFC822; firstname.lastname@example.org Action: failed Status: 5.3.5 X-Supplementary-Info: < hostname.of.MFEappliance.com #5.3.5 SMTP; 553 5.3.5 system config error> X-Display-Name: email@example.com
The firewall sendmail configuration is below.
I believe that mta.1 is the external burb while the mta.2 is internal burb right?
If you look in the maillogon the firewall, do you see any relevant entries?
With all the devices involved here, it is difficult to determine which device is denying the mail, though the following message leads me to believe that the firewall might be failing a reverse DNS lookup for the ip address.
Relaying denied. IP name lookup failed [local_ipaddress of their antispam appliance]