"Delivery of a message was aborted because it appeared to be an impersonation attempt or unwanted bulk mail. The 821 originator was firstname.lastname@example.org. Either this address or the 822 message triggered this based on TurfTable entries in the registry. The message that caused this was ZZZZZZZZ."
This is an Exchange 5.5 SP4 server running on Win2k server.
We can send e-mail to these users/domains, but all inbound e-mail from them end up in the TurfDir folder.
I am looking for a valid reason why these are being sent to the turfdir and need to know how to allow these messages to be delivered.
What you could try to do is to remove all entries in the message filter list and remove the registry value that creates the path to the turf directory then restart the Internet mail service. This should effectively disable message filtering on your IMC. Now verify, with message filtering removed, that you can receive e-mail from this external domain. If that doesn't work, then this has nothing to do with Exchange 5.5's message filtering. If that does work, then you can go through the process of re-enabling messaging filtering. Hopefully by reinstating the filters fresh it will eradicate whatever is turfing those e-mails.
Do you have comments on this Ask the Expert question and response? Let us know.
This was first published in February 2005