?
Solved

incomming emails failing due to SPF error check fail

Posted on 2014-07-30
12
Medium Priority
?
515 Views
Last Modified: 2014-08-05
Hello there first time posting in here, in the last few days I have stopped receiving emails from my clients and this is the message they are getting, I have gotten about 40 phone calls from all different clients and this is the same message they are all getting.

servername.mydomain..local rejected your message to the following e-mail addresses:

my name (myname@mydomain.ca) <mailto:myname@mydomain.ca>


 servername.mydomain.local gave this error:
 550 Message rejected because SPF check failed


 Your message wasn't delivered due to a permission or security issue. It may have been rejected by a moderator, the address may only accept e-mail from certain senders, or another restriction may be preventing delivery.

I also have a SPF record
SPF record lookup and validation for: idealos.ca
SPF records are published in DNS as TXT records.

The TXT records found for your domain are:
 v=spf1 mx mx:mail.idealos.ca ip4:96.53.120.102 include:spf.protection.outlook.com -all

 Checking to see if there is a valid SPF record.

 Found v=spf1 record for idealos.ca:
 v=spf1 mx mx:mail.idealos.ca ip4:96.53.120.102 include:spf.protection.outlook.com -all

 evaluating...
 Results - record processed without error.

 The result of the test (this should be the default result of your record) was, pass . The explanation returned was, sender SPF authorized

I am unsure what is going on at this point. Using Exchange 2013
0
Comment
Question by:brian stuckless
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 7
  • 4
12 Comments
 
LVL 35

Expert Comment

by:Seth Simmons
ID: 40230878
I am unsure also.  SPF issues would be the result of the sender, not the recipient.

If this was your issue, you would be receiving the NDR stating SPF failure since the remote mail server is verifying the sending server is valid for that domain.  This is the opposite.  If someone is trying to send to you and they get it returned with SPF failure, the issue is on their end.  However, it does seem very odd that it's multiple users at the same time.  Doesn't quite make sense.  Your SPF record is fine but has nothing to do with remote users sending mail to you.

Does mail get delivered to your mailbox if you send from your own personal gmail or yahoo account or do you get it rejected with the same SPF failure?
0
 
LVL 14

Expert Comment

by:Justin Yeung
ID: 40230891
From my understand SPF is to validate the "sender" but not the receipent, so you should able to send out mail without an issue since your SPF looks fine.

The issue looks like from the sender, did you try as Seth suggested to send an email from like hotmail or gmail?

And what type of mail server you are using? Any relay appliance on top of it?
0
 

Author Comment

by:brian stuckless
ID: 40230902
Seth,

when I send it from my personal email its a hit or miss some times it comes though and some times I get the same SPF, also used the remote connectivity analyzer from Microsoft and the same issue work sometime and the same SPF.

using Exchange 2013, I don't even have the Anti-spam enabled on it so this is really weird.
0
Has Powershell sent you back into the Stone Age?

If managing Active Directory using Windows Powershell® is making you feel like you stepped back in time, you are not alone.  For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why.

 
LVL 14

Expert Comment

by:Justin Yeung
ID: 40230918
Enable logging on your 2013 exchange.

Guide
http://exchangeserverpro.com/exchange-server-protocol-logging/

How many hub servers do you have?
0
 

Author Comment

by:brian stuckless
ID: 40230945
Logs are enable, and only one hub server install on stand alone server not on a DC.
0
 

Author Comment

by:brian stuckless
ID: 40230975
Just the standard rolls installed with exchange 2013, this is one of the logs I was able to pull out.




2014-07-31T03:33:33.148Z,IDEALFSJSVR003\Default IDEALFSJSVR003,08D17A56DF02E7CB,53,192.168.116.249:2525,192.168.116.249:55021,<,MAIL FROM:<brian.stuckless@gmail.com> SIZE=0 AUTH=<>,
2014-07-31T03:33:41.211Z,IDEALFSJSVR003\Default IDEALFSJSVR003,08D17A56DF02E7CB,54,192.168.116.249:2525,192.168.116.249:55021,*,08D17A56DF02E7CB;2014-07-31T03:33:33.085Z;1,receiving message
2014-07-31T03:33:41.211Z,IDEALFSJSVR003\Default IDEALFSJSVR003,08D17A56DF02E7CB,55,192.168.116.249:2525,192.168.116.249:55021,<,RCPT TO:<brian@idealos.ca>,
2014-07-31T03:33:41.211Z,IDEALFSJSVR003\Default IDEALFSJSVR003,08D17A56DF02E7CB,56,192.168.116.249:2525,192.168.116.249:55021,>,250 2.1.0 Sender OK,
2014-07-31T03:33:41.211Z,IDEALFSJSVR003\Default IDEALFSJSVR003,08D17A56DF02E7CB,57,192.168.116.249:2525,192.168.116.249:55021,>,250 2.1.5 Recipient OK,
2014-07-31T03:33:41.211Z,IDEALFSJSVR003\Default IDEALFSJSVR003,08D17A56DF02E7CB,58,192.168.116.249:2525,192.168.116.249:55021,<,BDAT 2395 LAST,
2014-07-31T03:33:41.211Z,IDEALFSJSVR003\Default IDEALFSJSVR003,08D17A56DF02E7CB,59,192.168.116.249:2525,192.168.116.249:55021,*,,receiving message with InternetMessageId <CAFaZfGZ8Z35oLtz-VoL3tVugbYp9RJS0mwcZ-pSFS-LaJ2mizA@mail.gmail.com>
2014-07-31T03:33:45.238Z,IDEALFSJSVR003\Default IDEALFSJSVR003,08D17A56DF02E7CB,60,192.168.116.249:2525,192.168.116.249:55021,>,550 5.7.1 550 Message rejected because SPF check failed,
0
 
LVL 14

Expert Comment

by:Justin Yeung
ID: 40230999
the log doesn't really contains any info regarding on this.

from my understand or the most possible issue is your DNS lookup since it is hit or miss issue.

first, when an email sent to your exchange server, it will scan the sender ID by using the SPF record, in most case SPF record is using DNS name but not IP, unless it is a small environment.

when your exchange server unable to resolve the IP address of that name, it will consider failure of the SPF record from the sender and return with and NDR.
0
 

Author Comment

by:brian stuckless
ID: 40231006
So even if the Anti-spam is not enable on the exchange it will still scan for the SPF?

Also when I do a DNS lookup every thing looks fine.

This is the weirdest issue I have every seen and its become a huge issue as I am unable to get emails.

Any other advice would be much help. as I am at a stand still.
0
 
LVL 14

Expert Comment

by:Justin Yeung
ID: 40231013
it is call sender ID filtering in exchange.

Anit-Spam purposes is for Junk mail and Bulk.

what is the DNS server setting on your exchange box?

I really think that is a DNS issue !!!!.
0
 

Author Comment

by:brian stuckless
ID: 40231019
Correct Sender ID filtering, still has to be enable tho?

What DNS Server Setting are you looking for?

thanks for the help
0
 

Accepted Solution

by:
brian stuckless earned 0 total points
ID: 40232163
The issue has been resolved it was caused by Viper Email security, Anti-spoofing the service has crashed, even tho I had it disabled when testing what the cause of this issue was, I thought I would remove it completely this morning and once it was removed the emails started to work again.

thanks for all the help
0
 

Author Closing Comment

by:brian stuckless
ID: 40240773
this fixed the issue
0

Featured Post

What is SQL Server and how does it work?

The purpose of this paper is to provide you background on SQL Server. It’s your self-study guide for learning fundamentals. It includes both the history of SQL and its technical basics. Concepts and definitions will form the solid foundation of your future DBA expertise.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This article will help to fix the below errors for MS Exchange Server 2013 I. Certificate error "name on the security certificate is invalid or does not match the name of the site" II. Out of Office not working III. Make Internal URLs and Externa…
There are times when we need to generate a report on the inbox rules, where users have set up forwarding externally in their mailbox. In this article, I will be sharing a script I wrote to generate the report in CSV format.
In this video we show how to create an Address List in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Organization >> Ad…
In this Micro Video tutorial you will learn the basics about Database Availability Groups and How to configure one using a live Exchange Server Environment. The video tutorial explains the basics of the Exchange server Database Availability grou…
Suggested Courses

771 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question