?
Solved

Sender ID rejecting ALL e-mail originating from a domain with an SPF record after passing through a Barracuda 100 device

Posted on 2009-05-04
4
Medium Priority
?
901 Views
Last Modified: 2013-11-30
I have a domain that uses a Barracuda 100 device to filter spam/junk e-mail and a single Exchange 2003 SP 2 server.
The beginning of last week, users noticed they were not receiving e-mail from specific senders. After looking into it, the Barracuda device was marking these e-mails as Allowed, and Delivered, but the result was 'Rejected' by the server. The tracking log on the Barracuda device showed the server rejected the e-mail due to 'Sender ID (PRA) Note permitted', which is a failure in the SPF check. I checked the SPF record of a few senders, and the records were configured correctly. I then noticed on the Message Log from the Barracuda device that the "Recieved" field showed the LAN IP and FQDN of the originating server, not the WAN IP and FQDN. I then bypassed the Barracuda device all together, and e-mail originating from domain's with SPF records passed the Sender ID check, and were delivered properly.
I then concluded there is a problem with the Barracuda device itself, possibly passing through the wrong originating IP from the sender, which would therefore cause the Sender ID check to fail, resulting in the server rejecting the message. However, Barracuda cannot find anything wrong with their device. There were no updates done to the server, or Barracuda device in the last 3 weeks. I since, per Barracuda, updated the Firmware on the Barracuda 100 device, and cleared the message logs to try and resolve the issue with no luck.
Barracuda is firm about the problem not being on their end, and is not offering any solutions other than to 'properly configure my exchange server'.
Has anyone else ran into this problem? I am positive the problem is on the Barracuda device, not Exchange. I'm just not sure what else to do since Barracuda is not offering a solution. I was thinking about restoring the Barracuda to factory defaults (if possible), but i'm not sure if this will resolve the issue or not.
As a workaround, i have changed Sender ID to 'Allow' instead of 'Block' insted of bypassing the Barracuda device altogether. This is allowing a good amount of spam to get through. I am offering 500 points because the issue needs to be resolved ASAP.
Thanks in advance.
0
Comment
Question by:mhdcommunications
1 Comment
 
LVL 1

Accepted Solution

by:
mhdcommunications earned 0 total points
ID: 24353961
I reset the Barracuda device to factory defaults, and reconfigured it all together. Everything is working fine now.
There were firmware updates after the reset since it puts it at the original firmware. Even after doing these updates, everything still worked.
I also noticed after the reset, the "Recieved:" field now shows WAN IP and FQDN of the originating server, not the LAN IP and FQDN. I asked Barracuda what they thought of this, and they are still adament that the problem was not on their device and that i must have made some setting adjustments to my Exchange Server to resolve the issue, which is not the case.
0

Featured Post

Independent Software Vendors: We Want Your Opinion

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Microsoft Jet database engine errors can crop up out of nowhere to disrupt the working of the Exchange server. Decoding why a particular error occurs goes a long way in determining the right solution for it.
Exchange database can often fail to mount thereby halting the work of all users connected to it. Finding out why database isn’t mounting is crucial and getting the server back online. Stellar Phoenix Mailbox Exchange Recovery is a champion product t…
The video tutorial explains the basics of the Exchange server Database Availability groups. The components of this video include: 1. Automatic Failover 2. Failover Clustering 3. Active Manager
how to add IIS SMTP to handle application/Scanner relays into office 365.
Suggested Courses
Course of the Month8 days, 21 hours left to enroll

621 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question