Monitor unlimited number of servers
Filter log events
Create email and web-based reports

Direct access to Microsoft articles
Customized keywords for major search engines
Access to premium content

Event ID: 4007 Source: smtpsvc

Message delivery to the host '<IP address>' failed while delivering to the remote domain '<domain>' for the following reason: <error message>.
The SMTP verb which caused the error is '<verb>'. The response from the remote server is '<response>'.
This message indicates that the SMTP server was unable to deliver emails to a remote peer. The error details usually provide enough details about the cause of the problem. Examples:

- 461 4.7.1 Client host rejected: cannot find your hostname, [<ip address>] - Some SMTP servers do not accept emails from remote hosts that have IP addresses without a valid reverse domain name resolution as this is a very common indicator of spamming servers. The fix for this would be to ask the Internet provider to configure a reverse DNS record for the public IP address of your server

- 452 4.1.0 Too many emails sent on this session - Again, this looks like an anti-spam measure as the remote server has a limit on the number of emails that can be sent through one connection.

Windows Event Log Analysis Splunk App

Build a great reporting interface using Splunk, one of the leaders in the Security Information and Event Management (SIEM) field, linking the collected Windows events to



Cisco ASA Log Analyzer Splunk App

Obtain enhanced visibility into Cisco ASA firewall logs using the free Firegen for Cisco ASA Splunk App. Take advantage of dashboards built to optimize the threat analysis process.