Go Premium for a chance to win a PS4. Enter to Win

x
?
Solved

Sender ID rejecting ALL e-mail originating from a domain with an SPF record after passing through a Barracuda 100 device

Posted on 2009-05-04
4
Medium Priority
?
899 Views
Last Modified: 2013-11-30
I have a domain that uses a Barracuda 100 device to filter spam/junk e-mail and a single Exchange 2003 SP 2 server.
The beginning of last week, users noticed they were not receiving e-mail from specific senders. After looking into it, the Barracuda device was marking these e-mails as Allowed, and Delivered, but the result was 'Rejected' by the server. The tracking log on the Barracuda device showed the server rejected the e-mail due to 'Sender ID (PRA) Note permitted', which is a failure in the SPF check. I checked the SPF record of a few senders, and the records were configured correctly. I then noticed on the Message Log from the Barracuda device that the "Recieved" field showed the LAN IP and FQDN of the originating server, not the WAN IP and FQDN. I then bypassed the Barracuda device all together, and e-mail originating from domain's with SPF records passed the Sender ID check, and were delivered properly.
I then concluded there is a problem with the Barracuda device itself, possibly passing through the wrong originating IP from the sender, which would therefore cause the Sender ID check to fail, resulting in the server rejecting the message. However, Barracuda cannot find anything wrong with their device. There were no updates done to the server, or Barracuda device in the last 3 weeks. I since, per Barracuda, updated the Firmware on the Barracuda 100 device, and cleared the message logs to try and resolve the issue with no luck.
Barracuda is firm about the problem not being on their end, and is not offering any solutions other than to 'properly configure my exchange server'.
Has anyone else ran into this problem? I am positive the problem is on the Barracuda device, not Exchange. I'm just not sure what else to do since Barracuda is not offering a solution. I was thinking about restoring the Barracuda to factory defaults (if possible), but i'm not sure if this will resolve the issue or not.
As a workaround, i have changed Sender ID to 'Allow' instead of 'Block' insted of bypassing the Barracuda device altogether. This is allowing a good amount of spam to get through. I am offering 500 points because the issue needs to be resolved ASAP.
Thanks in advance.
0
Comment
Question by:mhdcommunications
4 Comments
 
LVL 1

Accepted Solution

by:
mhdcommunications earned 0 total points
ID: 24353961
I reset the Barracuda device to factory defaults, and reconfigured it all together. Everything is working fine now.
There were firmware updates after the reset since it puts it at the original firmware. Even after doing these updates, everything still worked.
I also noticed after the reset, the "Recieved:" field now shows WAN IP and FQDN of the originating server, not the LAN IP and FQDN. I asked Barracuda what they thought of this, and they are still adament that the problem was not on their device and that i must have made some setting adjustments to my Exchange Server to resolve the issue, which is not the case.
0

Featured Post

Nothing ever in the clear!

This technical paper will help you implement VMware’s VM encryption as well as implement Veeam encryption which together will achieve the nothing ever in the clear goal. If a bad guy steals VMs, backups or traffic they get nothing.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Want to know how to use Exchange Server Eseutil command? Go through this article as it gives you the know-how.
In this post, I will showcase the steps for how to create groups in Office 365. Office 365 groups allow for ease of flexibility and collaboration between staff members.
This video shows how to quickly and easily deploy an email signature for all users in Office 365 and prevent it from being added to replies and forwards. (the resulting signature is applied on the server level in Exchange Online) The email signat…
Exchange organizations may use the Journaling Agent of the Transport Service to archive messages going through Exchange. However, if the Transport Service is integrated with some email content management application (such as an antispam), the admini…
Suggested Courses
Course of the Month12 days, 22 hours left to enroll

972 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question