Want to protect your cyber security and still get fast solutions? Ask a secure question today.Go Premium

x
?
Solved

Comcast and Others refusing emails (No PTR Record?)

Posted on 2013-02-04
6
Medium Priority
?
2,008 Views
Last Modified: 2013-02-10
I recently installed Exchange 2007 SP1 on A server 2008 64bit Server.  I also installed a Barracuda Spam Firewall 200 on the DMz.  All Mail seems to be flowing fine with the exception of a few mail servers refusing our email (shown in the Barracuda Outbound queue as deferred).  We use Bluehost as our Zone records holder.   I have created all the A records as instructed by bluehost.

The mail servers refusing our email seem to be Comcast, AOL, Cox.net, Juno, and a couple others.  I contacted Bluehost who stated that it looked like it was a Barracuda issue.  So I bypassed the Barracuda for Outbound mail. Still refused by server.  I contacted Comcast who confirmed that they could not verify by rDNS.

I then Contacted Bluehost again to add a PTR record.  They claim that the PTR has to be setup on our internal DNS server.  

I am not sure where to turn to now.  I added a PTR record to our Reverse zone look up, but not sure if I did it correctly.

Can anyone tell me how to set up the PTR Record in our internal DNS to resolve the rDNS issue?

Does this look like it may resolve the issue with the PTR record?

Do I add a PTR Record for the Barracuda External IP on our internal Domain?

HELP!!!  It seems like all the members of our Board of Directors use Comcast, and our executive Director is about to have my Head on a Platter.
0
Comment
Question by:HOF_Admin
6 Comments
 
LVL 7

Accepted Solution

by:
Robby Swartenbroekx earned 1500 total points
ID: 38854047
PTR record has to be setup with your internet provider. your ip, you received from them, must resolve to your mail server.
0
 
LVL 10

Expert Comment

by:Damjan
ID: 38854083
Yes, your ISP  MUST set up the reverse DNS for your IP on their end.
http://mxtoolbox.com/diagnostic.aspx - here you have great mail server diagnostics tool, where test and verify the server has a reverse DNS (PTR) record too.
0
 
LVL 6

Expert Comment

by:Kailash Aghera
ID: 38854113
Only your ISP (internet service provider) can set rdNS for your IP address. If this is the new IP address, I also suggest you to check the blacklisting as well to avoid the problem in future. You can check it from the following URL:

http://www.mxtoolbox.com/blacklists.aspx
0
Who's Defending Your Organization from Threats?

Protecting against advanced threats requires an IT dream team – a well-oiled machine of people and solutions working together to defend your organization. Download our resource kit today to learn more about the tools you need to build you IT Dream Team!

 

Author Comment

by:HOF_Admin
ID: 38855662
Thank You for all your replies,
Blacklist are clear.
Our DNS Zone records are managed by Bluehost, but AT&T is our ISP.  I just sent a request to AT&T since Bluehost says everything is good on their side.   We will see if AT&T can help.

Thanks Again!
0
 
LVL 6

Expert Comment

by:Kailash Aghera
ID: 38857238
Once your ISP sets rDNS, you will have to allow few hours for the propagation of rDNS.
0
 

Author Comment

by:HOF_Admin
ID: 38874439
Ok, so now bluehost claims that they do not add custom pointer records at this time.  So i will be transferring our DNS to AT&T.  Once i Get this accomplished i will divvy out the points for the solution....
I find it really hard to believe that there are no other Blue Host clients that have exchange in-house.

Update:
All is well after moving our DNS hosting to AT&T.  I have added the pointer and even before updating the name servers for our website on Bluehost, Comcast and several others that were previously refusing our email began accepting.  AOL took an extra day even though I used the AOL Postmaster tool and was able to verify that rDNS was working.

It was really helpful to have Experts-Exchange members assistance to confirm the correct solution while attempting to have a third party make the changes necessary.
0

Featured Post

Who's Defending Your Organization from Threats?

Protecting against advanced threats requires an IT dream team – a well-oiled machine of people and solutions working together to defend your organization. Download our resource kit today to learn more about the tools you need to build you IT Dream Team!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Last month Marc Laliberte, WatchGuard’s Senior Threat Analyst, contributed reviewed the three major email authentication anti-phishing technology standards: SPF, DKIM, and DMARC. Learn more in part 2 of the series originally posted in Cyber Defense …
Exchange database can often fail to mount thereby halting the work of all users connected to it. Finding out why database isn’t mounting is crucial and getting the server back online. Stellar Phoenix Mailbox Exchange Recovery is a champion product t…
This video shows how to quickly and easily add an email signature for all users on Exchange 2016. The resulting signature is applied on a server level by Exchange Online. The email signature template has been downloaded from: www.mail-signatures…
Whether it be Exchange Server Crash Issues, Dirty Shutdown Errors or Failed to mount error, Stellar Phoenix Mailbox Exchange Recovery has always got your back. With the help of its easy to understand user interface and 3 simple steps recovery proced…
Suggested Courses

572 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question