barbs1
asked on
Email rejected to certain exchanges (Exchange 2010 - need to setup SPF)
Hey guys,
I'm fairly new to Exchange, and I recently set it up on my organization.. but I seem to be getting this delivery error on certain addresses:
After doing some research I realized it's because i don't have SPF records setup.. Is anyone able to instruct me on how to do this? I'm trying to access www.openspf.org since that's where everyone else was referred to, but it doesn't seem to work.
Please advise?
Thanks.
I'm fairly new to Exchange, and I recently set it up on my organization.. but I seem to be getting this delivery error on certain addresses:
smtp1.telebecinternet.com rejected your message to the following e-mail addresses:
Name (name@cablevision.qc.ca) (aspirateurs.du.nord@cablevision.qc.ca)
smtp1.telebecinternet.com gave this error:
No reverse DNS found
Your message wasn't delivered due to a permission or security issue. It may have been rejected by a moderator, the address may only accept e-mail from certain senders, or another restriction may be preventing delivery.
After doing some research I realized it's because i don't have SPF records setup.. Is anyone able to instruct me on how to do this? I'm trying to access www.openspf.org since that's where everyone else was referred to, but it doesn't seem to work.
Please advise?
Thanks.
Here's the site I use to test/create SPF records: http://www.kitterman.com/spf/validate.html
ASKER
Sorry, I'm not really sure how to use this.. all I know is when I need to add it I gotta call my ISP and give them the TXT file.. but how do I generate this file?
ASKER
And also will it make a difference if I use potini for my antispam?
Try this SPF record for your domain on the testing tool page i linked:
v=spf1 mx -all
Put in the IP address of your exchange server. Paste in the record, and then use an e-mail address from someone @yourdomain.com
v=spf1 mx -all
Put in the IP address of your exchange server. Paste in the record, and then use an e-mail address from someone @yourdomain.com
I'm not familiar with Postini. So I can't remark on how good/easy it is.
I use ORF on our server. http://www.vamsoft.com/
I use ORF on our server. http://www.vamsoft.com/
ASKER
Here is what I get...
Input accepted, querying now...
Mail sent from this IP address: XX.XX.XX.XX
Mail from (Sender): itelligent@domain.com
Mail checked using this SPF policy: v=spf1 mx -all
Results - FAIL Message may be rejected
ASKER
Woops, but when I add in the last field (since I didnt fill it out) it says..
Does this mean that'll work.. and yes, we are presently using Postini and I just wanted to make sure it wouldn't matter.
But what now?
nput accepted, querying now...
Mail sent from this IP address: XX.XX.XX.XX
Mail from (Sender): itelligent@domain.com
Mail checked using this SPF policy: v=spf1 mx -all
Results - FAIL Message may be rejected
Mail sent from: 70.25.22.46
Mail Server HELO/EHLO identity: itelligent@domain.com
HELO/EHLO Results - none
Does this mean that'll work.. and yes, we are presently using Postini and I just wanted to make sure it wouldn't matter.
But what now?
ASKER
Do I contact my ISP and give them that code for my external domain DNS?
Do you have any MX records set up for your domain?
ASKER
Yes, I do pointing to postini's server through our antispam filter.. but yes we do.. do I need to add another record?
Ok. Well use postini's ip address instead to test the SPF records.
I believe you need a correct setup reverse dns for your mailserver.
ASKER CERTIFIED SOLUTION
membership
Create a free account to see this answer
Signing up is free and takes 30 seconds. No credit card required.
ASKER
Not sure which options to chose from Step 3.
Did you get it working?
ASKER
Yes, the MS one gave me this back:
I'm adding a TXT record with that in it as we speak thru my ISP.
v=spf1 a mx ~all
I'm adding a TXT record with that in it as we speak thru my ISP.
Ahh, glad it's working for you then. =]
ASKER
Could that error be possibly anything else? Should I setup some sort of reverse DNS?
Depends. I would send another e-mail to the domain that was rejected after your records have been udpated.