Apparently our IP address is on the Symantec Brightmail list and our email to some senders is being blocked

Hi,

Last week, emails from our server to Hotmail were being returned with a message "Error 550 - Command rejected for Policy Reasons".  We contacted MSN and were advised that we were on the Symantec Brightmail List.  

Investigation of our exchange server suggested that we had been subject to a NDR attack, as we had lots of messages in our queue from a postmaster account.  We have now dealt with these issues and the queues on the server appear to be normal at present.

However, I need to know how we get off this list.  I have tried emailing investigation@review.symantec.com , as suggested by MSN, but haven't received any reply.  Does anybody else have any suggestions as to what to do?

All suggestions would be gratefully received.

Many Thanks

baileytibbsAsked:
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

MCPJoeCommented:
Have you checked dnsstuff.com to run an RBL check to see which RBLs your on?  You might be on more than just the symantec list.  The various lists have different policies on removal.  Some of them make it extremely difficult to get off, even if your not a spammer.
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
rstovallCommented:
OOPS!  One thing is not sending out NDR's if you'd like .. which can be bad policy, but not necessarily, it isn't as widely done in the present as it was in the past...

I would definitely recommend a spam solution that can determine NDR attacks and not send them back out .. Ironport on the high-end solution, or Astaro makes a nice solution for small networks, or .. you can purchase a solution like MailMarshal or IMSS to go on a windows box

moving forward is the email that you ahve sent to investigation@review .. explain that it is critical to your business, and have effected changes to avoid this attack in the future .. good luck with that one, and I would be holding my breath on a reply any time in hte near future ..
0
SembeeCommented:
If you are on Exchange 2003 you do not need to purchase anything to deal with NDR attacks, Exchange 2003 can do that on its own.

For older versions of Exchange you will need something to deal with the NDRs - GFI Mail Essentials or Vamsoft ORF can both deal with it.

Simon.
0
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Exchange

From novice to tech pro — start learning today.

Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.