Solved

E-mail bounce back - 553 Sender Policy Framework (SPF) fail (in reply to RCPT TO command)

Posted on 2013-06-20
1
17,595 Views
Last Modified: 2013-06-20
We recently getting e-mail bounce back when e-mailing certain people. It's always been fine but it started happening about 2 weeks ago.

An example of the bounce back message is:

This is the mail system at host abc.abc.abc.net.

I'm sorry to have to inform you that your message could not be delivered to one or more recipients. It's attached below.

For further assistance, please send mail to postmaster.

If you do so, please include this problem report. You can delete your own text from the attached returned message.

                   The mail system

<abc@abc.com>: host cluster.abc.abc.com[xxx.xxx.xxx.xxx]
    said: 553 Sender Policy Framework (SPF) fail (in reply to RCPT TO command)

Any advice on how I can get this resolved?
0
Comment
Question by:MattToner
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
1 Comment
 
LVL 35

Accepted Solution

by:
Seth Simmons earned 500 total points
ID: 39262933
you need to have an SPF record in your public DNS that specifies the public IP address of your server to show it's allowed to send for your domain (not all receiving mail systems do SPF check)

for example, your SPF value (as a DNS TXT record with name of @ and TTL value 1 hour is sufficient) would look like this:

v=spf1 mx -all

this assumes your receiving server that's in your mx record is the same as what it goes out as; if it's different then you will need to replace 'mx' above with it's address in the format of ip4:<address>

once that change is made, it will take a little time to propagate
you can verify with nslookup with a google public dns server

nslookup - 8.8.8.8
>set type=txt
>abc.com


and should show the spf record you just added

here is a more detailed explanation of SPF records

http://en.wikipedia.org/wiki/Sender_Policy_Framework
0

Featured Post

Free NetCrunch network monitor licenses!

Only on Experts-Exchange: Sign-up for a free-trial and we'll send you your permanent license!

Here is what you get: 30 Nodes | Unlimited Sensors | No Time Restrictions | Absolutely FREE!

Act now. This offer ends July 14, 2017.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

How to resolve IMCEAEX NDRs in Exchange or Exchange Online related to invalid X500 addresses.
After hours on line I found a solution which pointed to the inherited Active Directory permissions . You have to give/allow permissions to the "Exchange trusted subsystem" for the user in the Active Directory...
In this video we show how to create an Address List in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Organization >> Ad…
The basic steps you have just learned will be implemented in this video. The basic steps are shown to configure an Exchange DAG in a live working Exchange Server Environment and manage the same (Exchange Server 2010 Software is used in a Windows Ser…
Suggested Courses

632 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question