Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people, just like you, are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
Solved

A Few Exchange emails bouncing - SPF Records listed as reason?

Posted on 2013-01-15
6
1,255 Views
Last Modified: 2013-03-03
Hello,

We have Exchange 2010 setup for mutliple tenants and a few of them are reporting this error when sending out emails to a few domains. However, 99% of email is going through with no kick backs. Any recommendations?

_______________________________________________________________________________


dsmdc-mail-imta-02 rejected your message to the following e-mail addresses:

Cust First And Last Name(customer@mchsi.com) (customer@mchsi.com)


dsmdc-mail-imta-02 gave this error:
<customer@domain.com> Invalid SPF record please see http://www.openspf.org - POL007


This message was rejected by the recipient e-mail system. Please check the recipient's e-mail address and try resending this message, or contact the recipient directly.

Diagnostic information for administrators:

Generating server: UPEXSVR01.domain.local

customer@mchsi.com
dsmdc-mail-imta-02 #550 5.1.0 <customer@email.com> Invalid SPF record please see http://www.openspf.org - POL007 ##

Original message headers:

Received: from UPEXSVR01.domain.local ([fe80::c0b3:72a:1f6c:4e6f]) by
 UPEXSVR01.domain.local ([fe80::c0b3:72a:1f6c:4e6f%11]) with mapi id
 14.02.0328.009; Tue, 15 Jan 2013 08:15:56 -0600
From: Cust First And Last Name<customer@domain.com>
To: "Cust First And Last Name(customer@mchsi.com)" <customer@mchsi.com>
Subject: test sending from customer1 to mediacom
Thread-Topic: test sending from customer1 to mediacom
Thread-Index: Ac3zKtrFxsJlwDQwSDWV6CeUKvbALQ==
Date: Tue, 15 Jan 2013 14:15:54 +0000
Message-ID: <E7BB29BF7867C6448048E7EC6CB6E4A36E129D@UPEXSVR01.99.domain.local>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-originating-ip: [173.23.51.89]
Content-Type: multipart/alternative;
      boundary="_000_E7BB29BF7867C6448048E7EC6CB6E4A36E129DUPEXSVR01999domain_"
MIME-Version: 1.0
0
Comment
Question by:Pcbydesignllc
  • 3
  • 2
6 Comments
 
LVL 19

Expert Comment

by:R--R
ID: 38778924
There are some domains which checks the SPF record. Do you have a SPF record for your domain?
0
 

Author Comment

by:Pcbydesignllc
ID: 38778942
No, these customers do not. Would we need it on the main Exchange Server domain, or the customers domains?

Thanks
0
 
LVL 19

Expert Comment

by:R--R
ID: 38779006
You are getting this while sending or receiving mails?
0
Best Practices: Disaster Recovery Testing

Besides backup, any IT division should have a disaster recovery plan. You will find a few tips below relating to the development of such a plan and to what issues one should pay special attention in the course of backup planning.

 

Author Comment

by:Pcbydesignllc
ID: 38779020
I'm not, and I'm on the same domain sending to mchsi.com. Two different client's are though, who are also on our Hosted Exchange Server
0
 

Author Comment

by:Pcbydesignllc
ID: 38779023
Sending -
0
 
LVL 26

Accepted Solution

by:
DrDave242 earned 500 total points
ID: 38794009
No, these customers do not. Would we need it on the main Exchange Server domain, or the customers domains?
An SPF record is needed for the sending domain (the domain that the mail is originating from, not the domain it's going to).  The function of SPF is to define what servers are allowed to send mail from a particular domain.  The website mentioned in the error (http://www.openspf.org/) has very good information on what SPF is and how it works, but there's a lot of info there, so you may not want (or have time) to wade through it all.

Several websites have wizards you can use to generate an SPF record for a domain (the Microsoft one is here, for example).  Note that the records generated by these wizards are often more complex than they need to be, but they'll get the job done.  If you'd rather create the record manually, I can help with that, but I will need some information about the sending domain and what mail servers are authorized to send mail from it.
0

Featured Post

How our DevOps Teams Maximize Uptime

Our Dev teams are like yours. They’re continually cranking out code for new features/bugs fixes, testing, deploying, responding to production monitoring events and more. It’s complex. So, we thought you’d like to see what’s working for us. Read the use case whitepaper.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Learn to move / copy / export exchange contacts to iPhone without using any software. Also see the issues in configuration of exchange with iPhone to migrate contacts.
How to resolve IMCEAEX NDRs in Exchange or Exchange Online related to invalid X500 addresses.
To show how to generate a certificate request in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.:  First we need to log into the Exchange Admin Center. Navigate to the Servers >> Certificates…
This video shows how to quickly and easily add an email signature for all users on Exchange 2016. The resulting signature is applied on a server level by Exchange Online. The email signature template has been downloaded from: www.mail-signatures…

809 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question