Email rejected to certain exchanges (Exchange 2010 - need to setup SPF)

Hey guys,

I'm fairly new to Exchange, and I recently set it up on my organization.. but I seem to be getting this delivery error on certain addresses:

smtp1.telebecinternet.com rejected your message to the following e-mail addresses:
 
Name (name@cablevision.qc.ca) (aspirateurs.du.nord@cablevision.qc.ca)
 
smtp1.telebecinternet.com gave this error:
No reverse DNS found 
 
Your message wasn't delivered due to a permission or security issue. It may have been rejected by a moderator, the address may only accept e-mail from certain senders, or another restriction may be preventing delivery.

Open in new window


After doing some research I realized it's because i don't have SPF records setup.. Is anyone able to instruct me on how to do this? I'm trying to access www.openspf.org since that's where everyone else was referred to, but it doesn't seem to work.

Please advise?

Thanks.
barbs1Asked:
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

drilusCommented:
Here's the site I use to test/create SPF records: http://www.kitterman.com/spf/validate.html
0
barbs1Author Commented:
Sorry, I'm not really sure how to use this.. all I know is when I need to add it I gotta call my ISP and give them the TXT file.. but how do I generate this file?
0
barbs1Author Commented:
And also will it make a difference if I use potini for my antispam?
0
Making Bulk Changes to Active Directory

Watch this video to see how easy it is to make mass changes to Active Directory from an external text file without using complicated scripts.

drilusCommented:
Try this SPF record for your domain on the testing tool page i linked:

v=spf1 mx -all

Put in the IP address of your exchange server. Paste in the record, and then use an e-mail address from someone @yourdomain.com
0
drilusCommented:
I'm not familiar with Postini. So I can't remark on how good/easy it is.

I use ORF on our server. http://www.vamsoft.com/
0
barbs1Author Commented:
Here is what I get...
Input accepted, querying now...


Mail sent from this IP address: XX.XX.XX.XX
Mail from (Sender): itelligent@domain.com
Mail checked using this SPF policy: v=spf1 mx -all 
Results - FAIL Message may be rejected

Open in new window

0
barbs1Author Commented:
Woops, but when I add in the last field (since I didnt fill it out) it says..


nput accepted, querying now...


Mail sent from this IP address: XX.XX.XX.XX
Mail from (Sender): itelligent@domain.com
Mail checked using this SPF policy: v=spf1 mx -all 
Results - FAIL Message may be rejected


Mail sent from: 70.25.22.46 
Mail Server HELO/EHLO identity: itelligent@domain.com

HELO/EHLO Results - none

Open in new window


Does this mean that'll work.. and yes, we are presently using Postini and I just wanted to make sure it wouldn't matter.

But what now?
0
barbs1Author Commented:
Do I contact my ISP and give them that code for my external domain DNS?
0
drilusCommented:
Do you have any MX records set up for your domain?
0
barbs1Author Commented:
Yes, I do pointing to postini's server through our antispam filter.. but yes we do.. do I need to add another record?
0
drilusCommented:
Ok. Well use postini's ip address instead to test the SPF records.
0
jannisjCommented:
I believe you need a correct setup reverse dns for your mailserver.
0
drilusCommented:
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
barbs1Author Commented:
Not sure which options to chose from Step 3.
0
drilusCommented:
Did you get it working?
0
barbs1Author Commented:
Yes, the MS one gave me this back:
v=spf1 a mx ~all

Open in new window


I'm adding a TXT record with that in it as we speak thru my ISP.
0
drilusCommented:
Ahh, glad it's working for you then.  =]
0
barbs1Author Commented:
Could that error be possibly anything else? Should I setup some sort of reverse DNS?
0
drilusCommented:
Depends. I would send another e-mail to the domain that was rejected after your records have been udpated.
0
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Exchange

From novice to tech pro — start learning today.

Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.