NoobNKC
asked on
SMTP error from remote mail server after RCPT
We are trying to send emails to an email address user@xxxx.k12.mt.us and get the following error. Can someone help me understand why we are getting this error.
-----Original Message-----
From: Mail Delivery System [mailto:Mailer-Daemon@loca lhost.loca ldomain]
Sent: Tuesday, October 16, 2012 1:14 PM
To: user@company.com
Subject: Mail delivery failed: returning message to sender
This message was created automatically by mail delivery software.
A message that you sent could not be delivered to one or more of its
recipients. This is a permanent error. The following address(es) failed:
user@xxxx.k12.mt.us
SMTP error from remote mail server after RCPT
TO:<nichole_emerson@gfps.k 12.mt.us>:
host mx1.xxxx.k12.mt.us [69.51.X.X]: 554 5.7.1
<unknown[66.148.X.X]>:
Client host rejected: envelope policy RBL PTRNUL
------ This is a copy of the message, including all the headers. ------
------ The body of the message is 406334 characters long; only the first
------ 106496 or so are included here.
-----Original Message-----
From: Mail Delivery System [mailto:Mailer-Daemon@loca
Sent: Tuesday, October 16, 2012 1:14 PM
To: user@company.com
Subject: Mail delivery failed: returning message to sender
This message was created automatically by mail delivery software.
A message that you sent could not be delivered to one or more of its
recipients. This is a permanent error. The following address(es) failed:
user@xxxx.k12.mt.us
SMTP error from remote mail server after RCPT
TO:<nichole_emerson@gfps.k
host mx1.xxxx.k12.mt.us [69.51.X.X]: 554 5.7.1
<unknown[66.148.X.X]>:
Client host rejected: envelope policy RBL PTRNUL
------ This is a copy of the message, including all the headers. ------
------ The body of the message is 406334 characters long; only the first
------ 106496 or so are included here.
ASKER
I checked mxtoolbox.com and it does have a reverse DNS. However when I check the SMTP Test. I get SMTP Reverse DNS mismatch - Warning Reverse DNS does not match SMTP banner.. and I get SMTP TLS - Warning - Does not support TLS
How do I correct the warnings?
How do I correct the warnings?
ASKER
FYI. We are using MailEnable with several post offices for several sub companies/domains
Our Setup:
SMTP mail server is mail.company.com (which also has a post office for email)
company.com
A Record - Mail points to 66.xxx.xxx.1
Mx Record - @ points to mail.company.com
subdomain1.com
A record - Mail points to 66.xxx.xxx.2
Mx Record - @ points to mail.subdomain1.com
subdomain2.com
A record - Mail points to 66..xxx.xxx.3
Mx Record - @ points to mail.subdomain3.com
subdomain3.com
A record - Mail points to 66.xxx.xxx.4
Do I need to add the mail.company.com to the MX records to each subdomain MX record?
Our Setup:
SMTP mail server is mail.company.com (which also has a post office for email)
company.com
A Record - Mail points to 66.xxx.xxx.1
Mx Record - @ points to mail.company.com
subdomain1.com
A record - Mail points to 66.xxx.xxx.2
Mx Record - @ points to mail.subdomain1.com
subdomain2.com
A record - Mail points to 66..xxx.xxx.3
Mx Record - @ points to mail.subdomain3.com
subdomain3.com
A record - Mail points to 66.xxx.xxx.4
Do I need to add the mail.company.com to the MX records to each subdomain MX record?
ASKER
Anyone?
You don't need reverse DNS for your MX records.
You need to make sure you have reverse DNS for all of your "A" records
You need to make sure you have reverse DNS for all of your "A" records
Also, don't worry about TLS warning. It means that you servers don't support TLS (Transportation level security), but it is not a requirement for every server.
If you need TLS for your business purposes, then you should buy SSL certificate from one of the public CAs or create a self-signed certificate, install it on your mail server and configure to use it
If you need TLS for your business purposes, then you should buy SSL certificate from one of the public CAs or create a self-signed certificate, install it on your mail server and configure to use it
The other warning "Reverse DNS does not match SMTP banner" means that during SMTP session / handshake your server is coming (connecting) from IP xx.yy.zz.1 and saying something like:
Helo mailserver.mydomain.com
but reverse record for IP xx.yy.zz.1 is pointing to mailserver2.mydomain.com (and not mailserver.mydomain.com)
Again, it does not have to be 100% match, therefore it is just a warning.
In all my experience, only handful of places were checking for this match and all these places were in Germany
Helo mailserver.mydomain.com
but reverse record for IP xx.yy.zz.1 is pointing to mailserver2.mydomain.com (and not mailserver.mydomain.com)
Again, it does not have to be 100% match, therefore it is just a warning.
In all my experience, only handful of places were checking for this match and all these places were in Germany
ASKER
How do I go about setting up reverse DNS for my "A" records. GoDaddy does all my DNS.
The reverse records are managed by the company that "owns" your IP block(s). It is usually your ISP.
So you will have to contact your ISP (and not GoDaddy) and ask ISP to setup reverse records for each of your A records
So you will have to contact your ISP (and not GoDaddy) and ask ISP to setup reverse records for each of your A records
ASKER
I contacted our ISP and rDNS is in place. But why am I still getting errors when sending emails to certain domains.
Error:
-----Original Message-----
From: Mail Delivery System [mailto:Mailer-Daemon@loca lhost.loca ldomain]
Sent: Tuesday, October 16, 2012 1:14 PM
To: user@company.com
Subject: Mail delivery failed: returning message to sender
This message was created automatically by mail delivery software.
A message that you sent could not be delivered to one or more of its
recipients. This is a permanent error. The following address(es) failed:
user@xxxx.k12.mt.us
SMTP error from remote mail server after RCPT
TO:<nichole_emerson@gfps.k 12.mt.us>:
host mx1.xxxx.k12.mt.us [69.51.X.X]: 554 5.7.1
<unknown[66.148.X.X]>:
Client host rejected: envelope policy RBL PTRNUL
------ This is a copy of the message, including all the headers. ------
------ The body of the message is 406334 characters long; only the first
------ 106496 or so are included here.
Any other ideas?
Error:
-----Original Message-----
From: Mail Delivery System [mailto:Mailer-Daemon@loca
Sent: Tuesday, October 16, 2012 1:14 PM
To: user@company.com
Subject: Mail delivery failed: returning message to sender
This message was created automatically by mail delivery software.
A message that you sent could not be delivered to one or more of its
recipients. This is a permanent error. The following address(es) failed:
user@xxxx.k12.mt.us
SMTP error from remote mail server after RCPT
TO:<nichole_emerson@gfps.k
host mx1.xxxx.k12.mt.us [69.51.X.X]: 554 5.7.1
<unknown[66.148.X.X]>:
Client host rejected: envelope policy RBL PTRNUL
------ This is a copy of the message, including all the headers. ------
------ The body of the message is 406334 characters long; only the first
------ 106496 or so are included here.
Any other ideas?
check your IPs (all of 66.xxx.xxx.1 - ¿¿ 66.xxx.xxx.4 ) on http://www.dnsstuff.com/
to see what is actually in place (PTR records)
and if anything blacklisted
to see what is actually in place (PTR records)
and if anything blacklisted
ASKER
I checked our IP's on http://www.debouncer.com/reverse-dns-check and the IP's point to the correct mail.company.com addresses, but we continue to get bounced emails.
554 Your access to this mail system has been rejected due to the sending MTA's poor reputation. If you believe that this failure is in error, please contact the intended recipient via alternate means.
or the error listed above.
554 Your access to this mail system has been rejected due to the sending MTA's poor reputation. If you believe that this failure is in error, please contact the intended recipient via alternate means.
or the error listed above.
It means that one of more of your IPs are listed in some RBL (real time black lists)
You need to find out the RBL that has your IP and follow their instructions on how to delist your addresses
The places to check are
http://www.anti-abuse.org/multi-rbl-check/
http://mxtoolbox.com/blacklists.aspx
http://www.trustedsource.org/
http://rbl-check.org/
You need to find out the RBL that has your IP and follow their instructions on how to delist your addresses
The places to check are
http://www.anti-abuse.org/multi-rbl-check/
http://mxtoolbox.com/blacklists.aspx
http://www.trustedsource.org/
http://rbl-check.org/
ASKER
I checked http://www.anti-abuse.org/multi-rbl-check/ and all 4 IP's Not Listed or Blocked
I checked http://mxtoolbox.com/blacklists.aspx with ZERO listed
I checked http://www.trustedsource.org/ and all 4 IP's are at Minimal Risk
Its pretty frustrating when I check to see if any of our IP's are being blocked or blacklisted and they are not. I also checked to see if our rDNS is ok and it is. I have no clue why we continue to receive errors when sending email.
I checked http://mxtoolbox.com/blacklists.aspx with ZERO listed
I checked http://www.trustedsource.org/ and all 4 IP's are at Minimal Risk
Its pretty frustrating when I check to see if any of our IP's are being blocked or blacklisted and they are not. I also checked to see if our rDNS is ok and it is. I have no clue why we continue to receive errors when sending email.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Do you have a reverse DNS record for your MX record?
Check your domain with www.mxtoolbox.com