sigh
This is legit, coming from my own mailserver, and it failed the SPF test.
Obviously something is not correct here.
Any suggestions?
I have used the wizard on the pobox site and pasted the text string into a
text record in my DNS.
I've had to disable the test for now as all my legit mail
This is legit, coming from my own mailserver, and it failed the SPF test.
Obviously something is not correct here.
Any suggestions?
I have used the wizard on the pobox site and pasted the text string into a
text record in my DNS.
The problem is that your SPF record (v=spf1 a mx ptr -all) doesn't
-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED]] On Behalf Of Sharyn Schmidt
Sent: Wednesday, June 30, 2004 8:33 AM
To: [EMAIL PROTECTED]
Subject: [Declude.JunkMail] FW: You **MAY** have spam
sigh
This is legit, coming from my own mailserver, and it failed the SPF test.
Obviously
The problem is that your SPF record (v=spf1 a mx ptr -all) doesn't list
IPs that your users may be connecting to your mailserver from.
The problem may also be that ID 10 T error and I never listed the IP of my
firewall, which uses an SMTP proxy. (Len is laughing if he is reading this)
In
Ok..
Does this mean things are working now?
I just ran the test on Scott's website...
SPF lookup of sender [EMAIL PROTECTED] from IP 24.73.160.162:
SPF string used: v=spf1 ip4:24.73.160.162 a mx ptr -all.
Processing SPF string: v=spf1 ip4:24.73.160.162 a mx ptr -all.
Testing
I lowered the weight of the spf fail weight to 1 (warn in headers) to test
this internally.
My internal IPs are still failing the spf test.
How do I go about whitelisting 5 subnets of internal IP addresses with IMAIL
7.15?
It's probably not a bad idea anyway, if it's possible, as everything
Sharyn Schmidt wrote:
I control all the IPS my users are on, it's a local LAN...192.168.x.x (there
are 5 different subnets) but my mail server is on a DMZ off the firewall,
and I have an smtp proxy enabled. This would indicate that in reality, it's
the IP address of the firewall that is actually
Chances are that you need to IPBYPASS the firewall's IP in your
global.cfg and then whitelist your LAN by it's IP space.
Do I have to list each individual address separately (will put it at over
200 addresses so this won't work) or can I use a /24 notation for each
subnet block?
Sharyn
We
CIDR ranges do work. I believe the manual contains examples of this.
For example:
IPBYPASS24.73.160.162
WHITELISTIP 192.168.0.1/24
Just to be clear on the conditions present, the whitelisting won't work
if you have users that connect directly (or through your