[mdaemon-l] 550 failed to meet SPF requirements
Dear Pak Syafril, User saya ada masalah lagi mengenai email yang tidak diterima. Berikut log SMTP(In) : Thu 2012-06-21 13:24:53: [139501:16] -- MAIL FROM: da...@tiankunchemical.com SIZE=330537 Thu 2012-06-21 13:24:53: [139501:16] Performing PTR lookup (51.191.210.210.IN-ADDR.ARPA) Thu 2012-06-21 13:27:53: [139501:16] * DNS: 180 second wait for DNS response exceeded (DNS Server: 208.67.222.222) Thu 2012-06-21 13:27:53: [139501:16] * D=51.191.210.210.IN-ADDR.ARPA TTL=(661) PTR=[mx-corp3-out.cbn.net.id] Thu 2012-06-21 13:27:53: [139501:16] * Gathering A records... Thu 2012-06-21 13:27:53: [139501:16] * D=mx-corp3-out.cbn.net.id TTL=(526) A=[210.210.191.51] Thu 2012-06-21 13:27:53: [139501:16] * D=mx-corp3-out.cbn.net.id TTL=(526) A=[210.210.145.51] Thu 2012-06-21 13:27:53: [139501:16] End PTR results Thu 2012-06-21 13:27:53: [139501:16] Performing IP lookup ( mx-corp3-out.cbn.net.id) Thu 2012-06-21 13:27:53: [139501:16] * D=mx-corp3-out.cbn.net.id TTL=(526) A=[210.210.191.51] Thu 2012-06-21 13:27:53: [139501:16] * D=mx-corp3-out.cbn.net.id TTL=(526) A=[210.210.145.51] Thu 2012-06-21 13:27:53: [139501:16] End IP lookup results Thu 2012-06-21 13:27:53: [139501:16] Performing IP lookup ( tiankunchemical.com) Thu 2012-06-21 13:27:53: [139501:16] * D=tiankunchemical.com TTL=(0) A=[67.215.65.132] Thu 2012-06-21 13:27:53: [139501:16] * P=010 S=000 D=tiankunchemical.comTTL=(110) MX=[ mx7.chinanetsun.com] Thu 2012-06-21 13:27:53: [139501:16] * D=tiankunchemical.com TTL=(0) A=[67.215.65.132] Thu 2012-06-21 13:27:53: [139501:16] End IP lookup results Thu 2012-06-21 13:27:53: [139501:16] Performing SPF lookup ( tiankunchemical.com / 210.210.191.51) Thu 2012-06-21 13:27:53: [139501:16] * Policy: v=spf1 include: spf.chinanetsun.com -all Thu 2012-06-21 13:27:53: [139501:16] * Evaluating include: spf.chinanetsun.com: performing lookup Thu 2012-06-21 13:27:53: [139501:16] *Policy: v=spf1 ip4:222.73.232.146 ip4:222.73.108.32/27 ip4:222.73.238.128/26 ip4:122.224.186.18 ip4:122.224.214.195 ip4:60.12.235.198 ip4:124.42.11.42 ip4:204.152.206.156 -all Thu 2012-06-21 13:27:53: [139501:16] *Evaluating ip4:222.73.232.146: no match Thu 2012-06-21 13:27:53: [139501:16] *Evaluating ip4:222.73.108.32/27: no match Thu 2012-06-21 13:27:53: [139501:16] *Evaluating ip4:222.73.238.128/26: no match Thu 2012-06-21 13:27:53: [139501:16] *Evaluating ip4:122.224.186.18: no match Thu 2012-06-21 13:27:53: [139501:16] *Evaluating ip4:122.224.214.195: no match Thu 2012-06-21 13:27:53: [139501:16] *Evaluating ip4:60.12.235.198: no match Thu 2012-06-21 13:27:53: [139501:16] *Evaluating ip4:124.42.11.42: no match Thu 2012-06-21 13:27:53: [139501:16] *Evaluating ip4:204.152.206.156: no match Thu 2012-06-21 13:27:53: [139501:16] *Evaluating -all: match Thu 2012-06-21 13:27:53: [139501:16] * Evaluating include: spf.chinanetsun.com: no match Thu 2012-06-21 13:27:53: [139501:16] * Evaluating -all: match Thu 2012-06-21 13:27:53: [139501:16] * Result: fail Thu 2012-06-21 13:27:53: [139501:16] End SPF results Thu 2012-06-21 13:27:53: [139501:16] -- 550 failed to meet SPF requirements Thu 2012-06-21 13:27:53: [139501:16] SMTP session terminated (Bytes in/out: 81/269) Kalau seperti ini permasalahannya dimana ya? SPF itu apa? apakah bisa dibuatkan pengecualian juga? Terima kasih Rusdi --[MDaemon-L] Milis ini untuk Diskusi antar pengguna MDaemon Mail Server. Netiket: http://www.netmeister.org/news/learn2quote Arsip: http://mdaemon-l.dutaint.com Dokumentasi : http://mdaemon.dutaint.co.id Henti Langgan: Kirim mail ke MDaemon-L-unsubscribe [at] dutaint.com Berlangganan: kirim mail ke MDaemon-L-subscribe [at] dutaint.com Versi terakhir MD 12.5.6, SP 4.1.4, OC 2.2.9, SG 2.0.7, PP 2.0.0 [ attachment or non Plain-Text portion has been remove by MDaemon ]
[mdaemon-l] 550 failed to meet SPF requirements
alien wrote on 28/06/12 15:57 +07:00: User saya ada masalah lagi mengenai email yang tidak diterima. Berikut log SMTP(In) : Thu 2012-06-21 13:27:53: [139501:16] -- 550 failed to meet SPF requirements Kalau seperti ini permasalahannya dimana ya? Mail dikirim melalui sender host/IP yang tidak terdaftar di SPF record. SPF itu apa? Sender Policy Framework http://www.openspf.org/ http://en.wikipedia.org/wiki/Sender_Policy_Framework apakah bisa dibuatkan pengecualian juga? Itu terserah kepada pengelola domain bukan ke penerima/receiver, maksud utamanya adalah agar tidak setiap orang bisa kirim mail mengatasnamakan domain yang di proteksi dengan SPF. Kelemahan dari SPF adalah tidak mendukung mail forwarding, sehingga kalau mail untuk MDaemon Anda melalui relayhost maka sebaiknya SPF checker di disable saja (mirip dengan DNS-BL yang sebaiknya didisable, pasrahkan saja ke mail hoster). http://mdaemon.dutaint.co.id/12.5.5/security__spf__sender_id.htm [ ] Verify sending host using SPF [ ] Verify PRA using Sender ID Atau kalau punya MX backup maka masukkan IP address MX backup kedalam SPF whitelist. Sekarang ini jarang orang menerapkan SPF kecuali kurang gaul sehingga tidak tahu kelemahan utama SPF, jika yang merasa perlu proteksi domain terhadap penyalahan penggunaan domain (domain abuse) orang menggunakan DKIM (Domain Keys Identified Mail). http://en.wikipedia.org/wiki/DomainKeys_Identified_Mail -- syafril --- Syafril Hermansyah MDaemon-L Moderators, running MDaemon 12.5.6 Release Edition Harap tidak cc: atau kirim ke private mail untuk masalah MDaemon. --[MDaemon-L] Milis ini untuk Diskusi antar pengguna MDaemon Mail Server. Netiket: http://www.netmeister.org/news/learn2quote Arsip: http://mdaemon-l.dutaint.com Dokumentasi : http://mdaemon.dutaint.co.id Henti Langgan: Kirim mail ke MDaemon-L-unsubscribe [at] dutaint.com Berlangganan: kirim mail ke MDaemon-L-subscribe [at] dutaint.com Versi terakhir MD 12.5.6, SP 4.1.4, OC 2.2.9, SG 2.0.7, PP 2.0.0
[mdaemon-l] Permanent delivery failure
Pak Syafril, Kalau email kemnbali dan ada log seperti ini kenapa ya? MDaemon Delivery Status Notification - http://www.altn.com/dsn/ -- The attached message had PERMANENT fatal delivery errors. After one or more unsuccessful delivery attempts the attached message has been removed from the MDaemon mail queue on this server. The number and frequency of delivery attempts are determined by local configuration. -- YOUR MESSAGE WAS NOT DELIVERED TO ONE OR MORE RECIPIENTS -- Failed address: dian.purn...@hotmail.com --- Session Transcript --- Fri 2012-06-29 11:01:43: Parsing message \pd35000402718.msg Fri 2012-06-29 11:01:43: * From: nina.nata...@rea.co.id Fri 2012-06-29 11:01:43: * To: dian.purn...@hotmail.com Fri 2012-06-29 11:01:43: * Subject: FW: Penambahan untuk asuransi Project SOM Fri 2012-06-29 11:01:43: * Size (bytes): 155246 Fri 2012-06-29 11:01:43: * Message-ID: 001101cd55a2$80242dd0$806c8970$@nata...@rea.co.id Fri 2012-06-29 11:01:43: Attempting SMTP connection to [hotmail.com] Fri 2012-06-29 11:01:43: Resolving MX records for [hotmail.com] (DNS Server: 202.134.0.155)... Fri 2012-06-29 11:01:43: * P=005 S=000 D=hotmail.com TTL=(37) MX=[mx3.hotmail.com] Fri 2012-06-29 11:01:43: * P=005 S=001 D=hotmail.com TTL=(37) MX=[mx4.hotmail.com] Fri 2012-06-29 11:01:43: * P=005 S=002 D=hotmail.com TTL=(37) MX=[mx1.hotmail.com] Fri 2012-06-29 11:01:43: * P=005 S=003 D=hotmail.com TTL=(37) MX=[mx2.hotmail.com] Fri 2012-06-29 11:01:43: Attempting SMTP connection to [mx3.hotmail.com:25] Fri 2012-06-29 11:01:43: Resolving A record for [mx3.hotmail.com] (DNS Server: 202.134.0.155)... Fri 2012-06-29 11:01:43: * D=mx3.hotmail.com TTL=(19) A=[65.55.37.72] Fri 2012-06-29 11:01:43: * D=mx3.hotmail.com TTL=(19) A=[65.55.37.104] Fri 2012-06-29 11:01:43: * D=mx3.hotmail.com TTL=(19) A=[65.55.37.120] Fri 2012-06-29 11:01:43: * D=mx3.hotmail.com TTL=(19) A=[65.55.92.152] Fri 2012-06-29 11:01:43: * D=mx3.hotmail.com TTL=(19) A=[65.55.37.88] Fri 2012-06-29 11:01:43: * D=mx3.hotmail.com TTL=(19) A=[65.55.92.136] Fri 2012-06-29 11:01:43: * D=mx3.hotmail.com TTL=(19) A=[65.55.92.184] Fri 2012-06-29 11:01:43: * D=mx3.hotmail.com TTL=(19) A=[65.54.188.72] Fri 2012-06-29 11:01:43: * D=mx3.hotmail.com TTL=(19) A=[65.54.188.94] Fri 2012-06-29 11:01:43: * D=mx3.hotmail.com TTL=(19) A=[65.54.188.110] Fri 2012-06-29 11:01:43: * D=mx3.hotmail.com TTL=(19) A=[65.54.188.126] Fri 2012-06-29 11:01:43: * D=mx3.hotmail.com TTL=(19) A=[65.55.92.168] Fri 2012-06-29 11:01:43: Randomly picked 65.54.188.94 from list of A records Fri 2012-06-29 11:01:43: Attempting SMTP connection to [65.54.188.94:25] Fri 2012-06-29 11:01:43: Waiting for socket connection... Fri 2012-06-29 11:01:43: * Connection established (118.97.209.132:2910 - 65.54.188.94:25) Fri 2012-06-29 11:01:43: Waiting for protocol to start... Fri 2012-06-29 11:01:43: -- 220 BAY0-MC2-F47.Bay0.hotmail.com Sending unsolicited commercial or bulk e-mail to Microsoft's computer network is prohibited. Other restrictions are found at http://privacy.microsoft.com/en-us/anti-spam.mspx. Thu, 28 Jun 2012 20:01:43 -0700 Fri 2012-06-29 11:01:43: -- EHLO rea.co.id Fri 2012-06-29 11:01:44: -- 250-BAY0-MC2-F47.Bay0.hotmail.com (3.15.0.97) Hello [118.97.209.132] Fri 2012-06-29 11:01:44: -- 250-SIZE 36909875 Fri 2012-06-29 11:01:44: -- 250-PIPELINING Fri 2012-06-29 11:01:44: -- 250-8bitmime Fri 2012-06-29 11:01:44: -- 250-BINARYMIME Fri 2012-06-29 11:01:44: -- 250-CHUNKING Fri 2012-06-29 11:01:44: -- 250-AUTH LOGIN Fri 2012-06-29 11:01:44: -- 250-AUTH=LOGIN Fri 2012-06-29 11:01:44: -- 250 OK Fri 2012-06-29 11:01:44: -- MAIL From:nina.nata...@rea.co.id SIZE=155246 Fri 2012-06-29 11:01:44: -- 550 SC-001 (BAY0-MC2-F47) Unfortunately, messages from 118.97.209.132 weren't sent. Please contact your Internet service provider since part of their network is on our block list. You can also refer your provider to http://mail.live.com/mail/troubleshooting.aspx#errors. Fri 2012-06-29 11:01:44: -- QUIT Fri 2012-06-29 11:01:44: Attempting SMTP connection to [mx4.hotmail.com:25] Fri 2012-06-29 11:01:44: Resolving A record for [mx4.hotmail.com] (DNS Server: 202.134.0.155)... Fri 2012-06-29 11:01:44: * D=mx4.hotmail.com TTL=(19) A=[65.54.188.110] Fri 2012-06-29 11:01:44: * D=mx4.hotmail.com TTL=(19) A=[65.54.188.126] Fri 2012-06-29 11:01:44: * D=mx4.hotmail.com TTL=(19) A=[65.55.92.168] Fri 2012-06-29 11:01:44: * D=mx4.hotmail.com TTL=(19) A=[65.55.92.184] Fri 2012-06-29 11:01:44: * D=mx4.hotmail.com TTL=(19) A=[65.55.37.88] Fri 2012-06-29 11:01:44: * D=mx4.hotmail.com TTL=(19) A=[65.55.37.104] Fri 2012-06-29 11:01:44: * D=mx4.hotmail.com TTL=(19) A=[65.55.37.120] Fri 2012-06-29 11:01:44: *
[mdaemon-l] PTR bermasalah lagi
Update saja dengan file berikut ftp://ftp.dutaint.com/altn-mdaemon/miscl/ReverseXcpt.dat copykan (overwrite) ke \\mdaemon\app, lalu restart MDaemon service. Saya sudah update file diatas, tetapi pagi ini PTR kembali bermaslah pak, berikut log-nya. mohon pencerahannya. terima kasih Fri 2012-06-29 10:57:08: [611655:3] Session 611655; child 3 Fri 2012-06-29 10:57:08: [611655:3] Accepting SMTP connection from [202.146.0.154:1555] to [202.146.0.67:25] Fri 2012-06-29 10:57:08: [611655:3] -- 220 mail.kompas.tv ESMTP MDaemon 12.5.4; Fri, 29 Jun 2012 10:57:08 +0700 Fri 2012-06-29 10:57:08: [611655:3] -- EHLO kompasgramedia.com Fri 2012-06-29 10:57:08: [611655:3] -- 250-mail.kompas.tv Hello kompasgramedia.com, pleased to meet you Fri 2012-06-29 10:57:08: [611655:3] -- 250-ETRN Fri 2012-06-29 10:57:08: [611655:3] -- 250-AUTH LOGIN CRAM-MD5 PLAIN Fri 2012-06-29 10:57:08: [611655:3] -- 250-8BITMIME Fri 2012-06-29 10:57:08: [611655:3] -- 250 SIZE Fri 2012-06-29 10:57:08: [611655:3] -- MAIL From:nurca...@cfm.kompasgramedia.com SIZE=11824 Fri 2012-06-29 10:57:08: [611655:3] Performing PTR lookup (154.0.146.202.IN-ADDR.ARPA) Fri 2012-06-29 10:57:08: [611655:3] * D=154.0.146.202.in-addr.arpa TTL=(1440) PTR=[opme.gramedia.com] Fri 2012-06-29 10:57:08: [611655:3] * Gathering A records... Fri 2012-06-29 10:57:08: [611655:3] * No A records found Fri 2012-06-29 10:57:08: [611655:3] * MDaemon configured to drop connection on PTR record miss-match Fri 2012-06-29 10:57:08: [611655:3] End PTR results Fri 2012-06-29 10:57:08: [611655:3] -- 501 Domain must resolve Fri 2012-06-29 10:57:08: [611655:3] SMTP session terminated (Bytes in/out: 81/230) Fri 2012-06-29 10:57:08: -- --[MDaemon-L] Milis ini untuk Diskusi antar pengguna MDaemon Mail Server. Netiket: http://www.netmeister.org/news/learn2quote Arsip: http://mdaemon-l.dutaint.com Dokumentasi : http://mdaemon.dutaint.co.id Henti Langgan: Kirim mail ke MDaemon-L-unsubscribe [at] dutaint.com Berlangganan: kirim mail ke MDaemon-L-subscribe [at] dutaint.com Versi terakhir MD 12.5.6, SP 4.1.4, OC 2.2.9, SG 2.0.7, PP 2.0.0
[mdaemon-l] Permanent delivery failure
coki harmada wrote on 29/06/12 10:49 +07:00: Kalau email kemnbali dan ada log seperti ini kenapa ya? Fri 2012-06-29 11:01:44: -- 550 SC-001 (BAY0-MC2-F47) Unfortunately, messages from 118.97.209.132 weren't sent. Please contact your Internet service provider since part of their network is on our block list. You can also refer your provider to http://mail.live.com/mail/troubleshooting.aspx#errors. Public IP Anda masuk dalam blacklistnya server hotmail.com 550 SC-001 Mail rejected by Hotmail for policy reasons. Reasons for rejection may be related to content with spam-like characteristics or IP/domain reputation. If you are not an email/network admin please contact your Email/Internet Service Provider for help. Minta bantuan ISP atau relay mail melalui smtp server ISP. -- syafril --- Syafril Hermansyah MDaemon-L Moderators, running MDaemon 12.5.6 Release Edition Harap tidak cc: atau kirim ke private mail untuk masalah MDaemon. --[MDaemon-L] Milis ini untuk Diskusi antar pengguna MDaemon Mail Server. Netiket: http://www.netmeister.org/news/learn2quote Arsip: http://mdaemon-l.dutaint.com Dokumentasi : http://mdaemon.dutaint.co.id Henti Langgan: Kirim mail ke MDaemon-L-unsubscribe [at] dutaint.com Berlangganan: kirim mail ke MDaemon-L-subscribe [at] dutaint.com Versi terakhir MD 12.5.6, SP 4.1.4, OC 2.2.9, SG 2.0.7, PP 2.0.0
[mdaemon-l] PTR bermasalah lagi
Ahmad Ardiansyah wrote on 29/06/12 11:29 +07:00: Saya sudah update file diatas, tetapi pagi ini PTR kembali bermaslah pak, berikut log-nya. mohon pencerahannya. terima kasih Fri 2012-06-29 10:57:08: [611655:3] Session 611655; child 3 Fri 2012-06-29 10:57:08: [611655:3] Accepting SMTP connection from [202.146.0.154:1555] to [202.146.0.67:25] Fri 2012-06-29 10:57:08: [611655:3] -- 220 mail.kompas.tv ESMTP MDaemon 12.5.4; Fri, 29 Jun 2012 10:57:08 +0700 Fri 2012-06-29 10:57:08: [611655:3] -- EHLO kompasgramedia.com Hal ini karena sender host kompasgramedia.com ganti IP address, tadinya pakai 202.146.0.60 menjadi 202.146.0.154 dan tidak lapor ke pengelola DNS IP 202.146.0.* untuk dibuatkan PTR recordnya. Padahal tinggal mail saja ke hostmas...@itdiv.kompasgramedia.com untuk keperluan pembuatan PTR record itu. Saya sudah update ke ftp://ftp.dutaint.com/altn-mdaemon/miscl/ReverseXcpt.dat silakan di sync melalui \\mdaemon\app\midnight.bat -- syafril --- Syafril Hermansyah --[MDaemon-L] Milis ini untuk Diskusi antar pengguna MDaemon Mail Server. Netiket: http://www.netmeister.org/news/learn2quote Arsip: http://mdaemon-l.dutaint.com Dokumentasi : http://mdaemon.dutaint.co.id Henti Langgan: Kirim mail ke MDaemon-L-unsubscribe [at] dutaint.com Berlangganan: kirim mail ke MDaemon-L-subscribe [at] dutaint.com Versi terakhir MD 12.5.6, SP 4.1.4, OC 2.2.9, SG 2.0.7, PP 2.0.0
