[Mdaemon-L] E-mail dari Pajak.go.id tidak bisa masuk

[Syafril Hermansyah via Mdaemon-L]

On 3/18/25 11:06, Slamet Raharjo via Mdaemon-L wrote:
Coba diperika Firewall Traffic Rule untuk tcp port 25 (dan 110, 143) khsusnya
untuk inbound rule (dari internet ke server MDaemon mail.aio.co.id), samakan
exclusionnya dengan traffic rule port 587.

Traffic rule untuk outbound sudah benar mendukung SMTP/TLS.
Saya sudah cek di Firewall, dan saya sudah membuat rule khusus agar dari semua 
MX pajak.go.id (Saya cek melalui MX Toolbox) agar tidak di filter, MX-nya sbb :

Mestinya di bypass berdasar SPF host bukan MX host.

Tue 2025-03-18 10:42:58.526: [36983393] Session 36983393; child 0003
Tue 2025-03-18 10:42:58.526: [36983393] Accepting SMTP connection from 
103.28.106.109:60105 to 192.168.1.19:25
Tue 2025-03-18 10:42:58.526: [36983393] Location Screen says connection is from 
Indonesia, Asia
Tue 2025-03-18 10:42:58.527: [36983393] --> 220 mail.aio.co.id ESMTP MDaemon 
23.0.1; Tue, 18 Mar 2025 10:42:58 +0700
Tue 2025-03-18 10:42:58.531: [36983393] <-- EHLO mx12.pajak.go.id
Tue 2025-03-18 10:42:58.531: [36983393] --> 250-mail.aio.co.id Hello 
mx12.pajak.go.id [103.28.106.109], pleased to meet you
Tue 2025-03-18 10:42:58.531: [36983393] --> 250-ETRN
Tue 2025-03-18 10:42:58.531: [36983393] --> 250-8BITMIME
Tue 2025-03-18 10:42:58.531: [36983393] --> 250-ENHANCEDSTATUSCODES
Tue 2025-03-18 10:42:58.531: [36983393] --> 250-PIPELINING
Tue 2025-03-18 10:42:58.531: [36983393] --> 250-CHUNKING
Tue 2025-03-18 10:42:58.531: [36983393] --> 250-STARTTLS
Tue 2025-03-18 10:42:58.531: [36983393] --> 250 SIZE 52428800
Tue 2025-03-18 10:42:58.535: [36983393] <-- STARTTLS
Tue 2025-03-18 10:42:58.535: [36983393] --> 220 2.7.0 Ready to start TLS
Tue 2025-03-18 10:42:58.552: [36983393] SSL negotiation successful (TLS 1.2, 
TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384)
Tue 2025-03-18 10:42:58.555: [36983393] <-- EHLO mx12.pajak.go.id
Tue 2025-03-18 10:42:58.555: [36983393] --> 250-mail.aio.co.id Hello 
mx12.pajak.go.id [103.28.106.109], pleased to meet you
Tue 2025-03-18 10:42:58.555: [36983393] --> 250-ETRN
Tue 2025-03-18 10:42:58.555: [36983393] --> 250-8BITMIME
Tue 2025-03-18 10:42:58.555: [36983393] --> 250-ENHANCEDSTATUSCODES
Tue 2025-03-18 10:42:58.555: [36983393] --> 250-PIPELINING
Tue 2025-03-18 10:42:58.555: [36983393] --> 250-CHUNKING
Tue 2025-03-18 10:42:58.555: [36983393] --> 250-REQUIRETLS
Tue 2025-03-18 10:42:58.555: [36983393] --> 250 SIZE 52428800
Tue 2025-03-18 10:42:58.561: [36983393] <-- MAIL FROM:<no-re...@pajak.go.id> 
SIZE=278206
Tue 2025-03-18 10:42:58.563: [36983393] Performing PTR lookup 
(109.106.28.103.IN-ADDR.ARPA)
Tue 2025-03-18 10:42:58.564: [36983393] *  D=109.106.28.103.IN-ADDR.ARPA 
TTL=(5) PTR=[mailout-06.pajak.go.id]
Tue 2025-03-18 10:42:58.564: [36983393] *  D=109.106.28.103.IN-ADDR.ARPA 
TTL=(5) PTR=[mx10.pajak.go.id]
Tue 2025-03-18 10:42:58.566: [36983393] *  D=mailout-06.pajak.go.id TTL=(5) 
A=[103.28.106.109]
Tue 2025-03-18 10:42:58.567: [36983393] *  D=mx10.pajak.go.id TTL=(0) 
A=[103.28.106.109]
Tue 2025-03-18 10:42:58.567: [36983393] ---- End PTR results
Tue 2025-03-18 10:42:58.573: [36983393] Performing IP lookup (mx12.pajak.go.id)
Tue 2025-03-18 10:42:58.576: [36983393] *  DNS server reports domain name 
unknown
Tue 2025-03-18 10:42:58.576: [36983393] ---- End IP lookup results
Tue 2025-03-18 10:42:58.576: [36983393] --> 501 5.7.0 mx12.pajak.go.id host 
can't be resolved
Tue 2025-03-18 10:42:58.576: [36983393] SMTP session terminated (Bytes in/out: 
498/3709)
Tue 2025-03-18 10:42:58.576: ----------


Ini sudah jalan STARTTLS nya, setelah bypass firewall filtering.
Mailnya ditolak karena dikirim melalui server yang identitas hostnya 
tidak terdaftar di internet.

Sudah dibuatkan pengecualian dan diupdate ke

https://ftp.dutaint.com/altn-mdaemon/miscl/HeloLookupWL.dat

Namun di logs ini saya melihat ada yang Namanya : mailout-06.pajak.go.id 
(sepertinya ini untuk SMTP Outbound)

Ini cara kita cek pajak.go.id pakai SMTP Outbound dengan nama apa saja, 
bagaimana caranya ya pak ?


Check ke PTR host name dari semua SPF host domain pajak.go.id.
Tidak akurat tetapi membantu.

$ host 103.28.106.109 1.1.1.1
Using domain server:
Name: 1.1.1.1
Address: 1.1.1.1#53
Aliases:

109.106.28.103.in-addr.arpa domain name pointer mx10.pajak.go.id.
109.106.28.103.in-addr.arpa domain name pointer mailout-06.pajak.go.id.


Check SPF host

$ dig txt pajak.go.id _spf.mlsend.com spf.mailtarget.co

pajak.go.id.		833	IN	TXT	"v=spf1 +a +mx +ip4:103.28.106.0/24 
include:_spf.mlsend.com include:spf.mailtarget.co -all"

_spf.mlsend.com.	300	IN	TXT	"v=spf1 ip4:185.249.220.0/24 
ip4:185.225.161.0/24 ~all"

spf.mailtarget.co.	14400	IN	TXT	"v=spf1 include:spf.layang.id 
ip4:156.70.63.207 ip4:35.219.53.239 ip4:147.253.214.50 
ip4:192.174.85.116 ip4:147.253.216.201 ip4:147.253.218.183 
ip4:192.174.93.194 ip4:147.253.215.168 ip4:147.253.223.222 
ip4:192.174.86.224 ip4:147.253.223.14 ip4:192.174.86." "166 
ip4:156.70.25.152 ip4:156.70.25.153 ip4:156.70.25.154 ip4:156.70.25.155 
ip4:156.70.22.217 ip4:156.70.22.218 ip4:156.70.22.219 ip4:156.70.22.220 
ip4:159.65.3.183 ip4:156.70.47.155 ip4:156.70.53.34 ip4:156.70.53.35 
ip4:156.70.53.36 ip4:156.70.53.37 ip4:" "147.253.223.61 
ip4:147.253.223.62 ip4:147.253.223.63 ip4:147.253.223.64 ip4:156.70.4.15 
ip4:199.15.224.234 ip4:13.250.158.5 ip4:18.136.7.250 ip4:3.1.92.226 
ip4:168.203.32.129 ip4:168.203.32.130 ip4:156.70.151.215 
ip4:35.219.52.21 ip4:35.219.112.34 ip4:35." "219.118.116 
ip4:35.219.22.31 ip4:35.219.12.140 ip4:35.219.65.72 ip4:35.219.86.225 
ip4:156.70.52.101 ip4:156.70.52.102 ip4:199.15.224.207 
ip4:156.70.151.112 ip4:156.70.151.199 ip4:199.15.225.211 
ip4:192.174.93.219 ip4:156.70.4.61 ip4:156.70.4.62 ip4:156.70" ".4.63 
ip4:156.70.63.137 ip4:156.70.4.135 ~all"


--
syafril
--------
Syafril Hermansyah

MDaemon-L Moderator, run MDaemon 25.0.1 Beta A
Mohon tidak kirim private mail (atau cc:) untuk masalah MDaemon.

Rasa takut adalah naluri, rasa berani adalah kemenangan: kemauan 
mengbungkam rasa takut dan menyembunyikannya dibawah rasa berani
        -- Comtese Diane, 1829-1899


--
--[mdaemon-l]----------------------------------------------------------
Milis ini untuk Diskusi antar pengguna MDaemon Mail Server di Indonesia

Netiket: https://wiki.openstack.org/wiki/MailingListEtiquette
Arsip: http://mdaemon-l.dutaint.com
Dokumentasi : http://mdaemon.dutaint.com
Berlangganan: Kirim mail ke mdaemon-l-subscr...@dutaint.com
Henti Langgan: Kirim mail ke mdaemon-l-unsubscr...@dutaint.com
Versi terakhir: MDaemon 25.0.0, SecurityGateway 10.5.3