"Delivery of a message was aborted because it appeared to be an impersonation attempt or unwanted bulk mail. The
821 originator was email@example.com. Either this address or the 822 message triggered this based on TurfTable entries in the registry. The message that caused this was ZZZZZZZZ."
This is an Exchange 5.5 SP4 server running on Win2k server.
We can send e-mail to these users/domains, but all inbound e-mail from them end up in the TurfDir folder.
I am looking for a valid reason why these are being sent to the turfdir and need to know how to allow these messages to be delivered.
What you could try to do is to remove all entries in the message filter list and remove the registry value that creates the path to the turf directory then restart the Internet mail service. This should effectively disable message filtering on your IMC. Now verify, with message filtering removed, that you can receive e-mail from this external domain. If that doesn't work, then this has nothing to do with Exchange 5.5's message filtering. If that does work, then you can go through the process of re-enabling messaging filtering. Hopefully by reinstating the filters fresh it will eradicate whatever is turfing those e-mails.
Do you have comments on this Ask the Expert question and response? Let us know.
Dig deeper on Spam and virus protection
Related Q&A from Richard Luckett
There are a number of actions to take to implement OWA security, including obvious ones like creating strong password policies. Admins should also ...continue reading
Our resident Microsoft Lync expert explains where to find IP phones that are compatible with Microsoft Lync Server.continue reading
While Cisco IP phones are not directly compatible with Microsoft Lync Server, there are ways to make them compatible. Lync guru Richard Luckett ...continue reading
Have a question for an expert?
Please add a title for your question
Get answers from a TechTarget expert on whatever's puzzling you.