Go Premium for a chance to win a PS4. Enter to Win

x
?
Solved

reverse dns - spam blacklist issue

Posted on 2014-02-25
7
Medium Priority
?
655 Views
Last Modified: 2014-08-15
We have a client that uses Mimecast for sending and recieving emails via their own local Exchange 2007 server

Recently some of the clients that they have been sending to have not received the emails from them apparently.

I have been advised by Mimecast that we setup reverse DNS correctly for the domain in question as they are listed on the blacklist for spamrats - due to the following mesasage:

--------------------------------------------------

Does IP Address resolve to a reverse hostname... Passed!

Does IP Address comply with reverse hostname naming convention... Failed!

--------------------------------------------------

Can you please advise as to how we go about complyng with this reverse hostname naming convention??
0
Comment
Question by:phoenix81
  • 2
  • 2
  • 2
  • +1
7 Comments
 
LVL 76

Expert Comment

by:Alan Hardisty
ID: 39885339
If you pop your (their) IP address into www.blacklistalert.org it will tell you if reverse DNS is setup properly.

You can also check this using NSLOOKUP:

nslookup IP_Address

should return the Reverse DNS Record e.g., mail.domain.com

Then run:

nslookup mail.domain.com

and it should return the same IP_Address as you used in the first nslookup.  If it does, all is good, if not, then something needs to be changed so that the two line up properly.  Either change the Reverse DNS record to one that does resolve to the IP Address, or setup a new A record to match the Reverse DNS record and point it to the IP_Address.

Alan
0
 
LVL 14

Expert Comment

by:Andy M
ID: 39885636
The reverse dns on the internet line is usually handled by your internet provider and generally should be setup so it matches the external hostname of the exchange email server.

If you don't know what the external address is, do a telnet directly to the exchange 2007 server - the header message you get following connection should tell you the hostname (i.e. could be mail.domain.com, smtp,domain.com, remote.domain.com, etc).

You will then need to get your ISP to setup the reverse dns to match this by contacting them with the IP address of the internet line and the hostname you want it to be set as. As mentioned by Alan you can use nslookup to check what the current reverse dns is set to
0
 
LVL 27

Expert Comment

by:skullnobrains
ID: 39886767
same as @alan + you had better make sure the HELO that is sent also matches the PTR for the corresponding ip address, and possibly set an SPF record as well
0
WatchGuard Case Study: NCR

With business operations for thousands of customers largely depending on the internal systems they support, NCR can’t afford to waste time or money on security products that are anything less than exceptional. That’s why they chose WatchGuard.

 

Author Comment

by:phoenix81
ID: 39985636
this seemed to resolve itself guys without us making changes so thanks for your assistance
0
 
LVL 76

Expert Comment

by:Alan Hardisty
ID: 39985647
Long may it stay that way ;)

Alan
0
 
LVL 27

Accepted Solution

by:
skullnobrains earned 1500 total points
ID: 39986131
mimecast must have whitelisted their ip. if mimecast acts like a smarthost (meaning no mail is issued without going through them), this should not be a problem in the future. if not, you will have the same problem with many other peers
0
 

Author Closing Comment

by:phoenix81
ID: 40262681
thanks
0

Featured Post

Important Lessons on Recovering from Petya

In their most recent webinar, Skyport Systems explores ways to isolate and protect critical databases to keep the core of your company safe from harm.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

The main intent of this article is to make you aware of ‘Exchange fail to mount’ error, its effects, causes, and solution.
Mailbox Corruption is a nightmare every Exchange DBA wishes he never has. Recovering from it can be super-hectic if not entirely futile. And though techniques like the New-MailboxRepairRequest cmdlet have been designed to help with fixing minor corr…
In this video we show how to create a mailbox database in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Servers >> Data…
Nobody understands Phishing better than an anti-spam company. That’s why we are providing Phishing Awareness Training to our customers. According to a report by Verizon, only 3% of targeted users report malicious emails to management. With compan…
Suggested Courses

916 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question