Exchange 2007 500 Firewall Error
Posted December 31st, 2008 by Matt ShadboltIf your having intermittent DSN errors returning to your users with the message “mail.someremoteserver.com #500 Firewall Error##” I’ve found the the error is actually due to your local Cisco router/firewall.
It seems that some Cisco routers and IOS versions that use the ip inspect command on the outgoing interface have problems with the newer Exchange 07 message headers. Simply remove the ip inspect from the interface (no ip inspect) and the problem seems to disappear.
EDIT: I’ve since found that you don’t need to totally disable the ip inspect – you just need to remove the esmtp filtering from the list of ip inspect protocols. Matt.
Tags: 500 Firewall Error, cisco, Exchange 2007, ip inspect
5 ResponsesFiled under:Uncategorized
5 Responses to “Exchange 2007 500 Firewall Error”
October 23rd, 2009 at 7:50 pm
Cheers for that
March 2nd, 2011 at 12:57 am
Thanks a lot for the tip. Looks like it fixed the problem for us.
June 20th, 2011 at 5:42 pm
Absolute legend. This saved me some serious heartburn!
October 28th, 2011 at 3:27 am
[...] http://nzschooltech.blogspot.com/2009/09/exchange-management-console-issue-on.html http://mattlog.net/2008/12/31/exchange-2007-500-firewall-error/ http://clintboessen.blogspot.com/2009/11/510-500-firewall-error.html Category: Cisco October [...]
November 17th, 2011 at 6:58 am
Thank you for you post however and just to let you know when I disabled Ip Inspect using No Ip Inspect on my Wan interface the internet acces was down and also affect my outgoing email services, so I had to re-enable it and then just remove ESMTP protocol from the list.
Leave a Reply