[mdaemon-l] Email Bounced Rejected Per SPF Policy
On 06/09/18 16:32, Nugroho Cahyo Riadmojo (cahyo.riadm...@kpi.co.id) wrote: > Pertanyaan tambahan, di menu setting SPF tersebut ada tombol white list. > Apa fungsi dari fitur white list tersebut? Melakukan exclusion (bypass) check mail dikirim dari sender IP. > Apakah kita bisa menambahkan suatu domain agar bisa bypass SPF check jika > ditambahkan pada white list? Tidak bisa di MD versi lama (sebelum versi 17.0), kalau di MD 17.0 keatas bisa melakukan whitelist terhadap domain atau MX backup. Ini penjelasnnya di MD 17.0.x keatas. > # Exception List > # > # This file lists IP addresses, email addresses, and domains which are exempt > # from SPF lookups. Email addresses are compared against the SMTP envelope > # not the message From header). Domains are whitelisted by placing the word > # "spf" in front of the domain name. MDaemon will include that domain's > # SPF record in every SPF evaluation using an MDaemon specific > # "wlinclude:" tag. In this way you can have your backup MX provider > # treated as a valid SPF source for all senders. > # > # Wildcards and CIDR notation are supported. One entry per line please. -- syafril --- Syafril Hermansyah MDaemon-L Moderators, running MDaemon 18.5.0-64 bit Beta B Harap tidak cc: atau kirim ke private mail untuk masalah MDaemon. I have not failed. I've just found 10,000 ways that won't work. --- Thomas A. Edison -- --[mdaemon-l]-- Milis ini untuk Diskusi antar pengguna MDaemon Mail Server di Indonesia Netiket: https://wiki.openstack.org/wiki/MailingListEtiquette Arsip: http://mdaemon-l.dutaint.com Dokumentasi : http://mdaemon.dutaint.co.id Berlangganan: Kirim mail ke mdaemon-l-subscr...@dutaint.com Henti Langgan: Kirim mail ke mdaemon-l-unsubscr...@dutaint.com Versi terakhir MD 18.0.2, SG 5.5.0
[mdaemon-l] Email Bounced Rejected Per SPF Policy
>Domain eurotecnica.it sedang transisi pindah hosting dari googlemail >apps ke office365, tetapi user-2x nya masih pakai server googlemail apps >atau DNS SPF recordnya belum diupdate. >Karena kpi.co.id masih pakai MDaemon versi dibawah 17.0 maka non >aktifkan SPF verification check agar bisa terima mail dari sender domain >itu. >http://mdaemon.dutaint.co.id/mdaemon/18.0/index.html?security--spf__sender_id.htm >[ ] Enable SPF verification Dear Pak Syafril, Terima kasih pencerahannya. Pertanyaan tambahan, di menu setting SPF tersebut ada tombol white list. Apa fungsi dari fitur white list tersebut? Apakah kita bisa menambahkan suatu domain agar bisa bypass SPF check jika ditambahkan pada white list? Mohon pencerahannya Pak. Terima kasih. Salam, Nugroho Cahyo Riadmojo IT - PT KALTIM PARNA INDUSTRI -- __ Disclaimer : __ This message is intended for the lawful recipient(s) explicitly stated in above only. It may contain confidential information prohibited for any Unauthorized use by any party other than the lawful addressee. The message, information and statement expressed herein should also be legally privileged for the lawful recipient(s). If you are not the intended recipient(s) or person responsible for delivering it to the intended recipient(s), you must therefore be notified not to copy, print, distribute or take any action in reliance on it, directly or indirectly. __ Please consider **ENVIRONTMENT** before PRINTING this email . -- --[mdaemon-l]-- Milis ini untuk Diskusi antar pengguna MDaemon Mail Server di Indonesia Netiket: https://wiki.openstack.org/wiki/MailingListEtiquette Arsip: http://mdaemon-l.dutaint.com Dokumentasi : http://mdaemon.dutaint.co.id Berlangganan: Kirim mail ke mdaemon-l-subscr...@dutaint.com Henti Langgan: Kirim mail ke mdaemon-l-unsubscr...@dutaint.com Versi terakhir MD 18.0.2, SG 5.5.0
[mdaemon-l] Email Bounced Rejected Per SPF Policy
On 06/09/18 15:17, Nugroho Cahyo Riadmojo (cahyo.riadm...@kpi.co.id) wrote: > Berikut lognya. > > Wed 2018-09-05 18:02:33.122: 05: Accepting SMTP connection from > 209.85.218.70:34681 to 192.168.1.2:25 > Wed 2018-09-05 18:02:33.137: 03: --> 220 kpi.co.id ESMTP MDaemon 15.5.1; > Wed, 05 Sep 2018 18:02:33 +0700 > Wed 2018-09-05 18:02:46.497: 05: * P=000 S=000 D=eurotecnica.it TTL=(59) > MX=[eurotecnica-it.mail.protection.outlook.com] > Wed 2018-09-05 18:02:58.966: 09: * Policy: v=spf1 > include:spf.protection.outlook.com -all Domain eurotecnica.it sedang transisi pindah hosting dari googlemail apps ke office365, tetapi user-2x nya masih pakai server googlemail apps atau DNS SPF recordnya belum diupdate. Karena kpi.co.id masih pakai MDaemon versi dibawah 17.0 maka non aktifkan SPF verification check agar bisa terima mail dari sender domain itu. http://mdaemon.dutaint.co.id/mdaemon/18.0/index.html?security--spf__sender_id.htm [ ] Enable SPF verification -- syafril --- Syafril Hermansyah MDaemon-L Moderators, running MDaemon 18.5.0-64 bit Beta B Harap tidak cc: atau kirim ke private mail untuk masalah MDaemon. % Menularkan pesimisme cuma perlu modal gombal. Tapi membangun harapan harus dengan kerja keras dan hasil nyata. --- Dahlan Iskan -- --[mdaemon-l]-- Milis ini untuk Diskusi antar pengguna MDaemon Mail Server di Indonesia Netiket: https://wiki.openstack.org/wiki/MailingListEtiquette Arsip: http://mdaemon-l.dutaint.com Dokumentasi : http://mdaemon.dutaint.co.id Berlangganan: Kirim mail ke mdaemon-l-subscr...@dutaint.com Henti Langgan: Kirim mail ke mdaemon-l-unsubscr...@dutaint.com Versi terakhir MD 18.0.2, SG 5.5.0
[mdaemon-l] Email Bounced Rejected Per SPF Policy
>Bisa dicarikan transaksi tolakkanya di smtp-in log? Pak Syafril, Berikut lognya. Wed 2018-09-05 18:02:33.122: 05: Session 857366; child 0003 Wed 2018-09-05 18:02:33.122: 05: Accepting SMTP connection from 209.85.218.70:34681 to 192.168.1.2:25 Wed 2018-09-05 18:02:33.137: 03: --> 220 kpi.co.id ESMTP MDaemon 15.5.1; Wed, 05 Sep 2018 18:02:33 +0700 Wed 2018-09-05 18:02:33.340: 02: <-- EHLO mail-oi0-f70.google.com Wed 2018-09-05 18:02:33.340: 03: --> 250-kpi.co.id Hello mail-oi0-f70.google.com, pleased to meet you Wed 2018-09-05 18:02:33.340: 03: --> 250-ETRN Wed 2018-09-05 18:02:33.340: 03: --> 250-AUTH LOGIN CRAM-MD5 PLAIN Wed 2018-09-05 18:02:33.340: 03: --> 250-8BITMIME Wed 2018-09-05 18:02:33.340: 03: --> 250-ENHANCEDSTATUSCODES Wed 2018-09-05 18:02:33.340: 03: --> 250-STARTTLS Wed 2018-09-05 18:02:33.340: 03: --> 250 SIZE Wed 2018-09-05 18:02:33.559: 02: <-- STARTTLS Wed 2018-09-05 18:02:33.559: 03: --> 220 2.7.0 Ready to start TLS Wed 2018-09-05 18:02:33.981: 01: SSL negotiation successful (TLS 1.0, 1024 bit key exchange, 168 bit 3DES encryption) Wed 2018-09-05 18:02:34.184: 02: <-- EHLO mail-oi0-f70.google.com Wed 2018-09-05 18:02:34.184: 03: --> 250-kpi.co.id Hello mail-oi0-f70.google.com, pleased to meet you Wed 2018-09-05 18:02:34.184: 03: --> 250-ETRN Wed 2018-09-05 18:02:34.184: 03: --> 250-AUTH LOGIN CRAM-MD5 PLAIN Wed 2018-09-05 18:02:34.184: 03: --> 250-8BITMIME Wed 2018-09-05 18:02:34.184: 03: --> 250-ENHANCEDSTATUSCODES Wed 2018-09-05 18:02:34.184: 03: --> 250 SIZE Wed 2018-09-05 18:02:34.403: 02: <-- MAIL FROM: SIZE=270554 Wed 2018-09-05 18:02:34.403: 05: Performing PTR lookup (70.218.85.209.IN-ADDR.ARPA) Wed 2018-09-05 18:02:34.403: 05: * D=70.218.85.209.IN-ADDR.ARPA TTL=(849) PTR=[mail-oi0-f70.google.com] Wed 2018-09-05 18:02:34.403: 05: * D=mail-oi0-f70.google.com TTL=(849) A=[209.85.218.70] Wed 2018-09-05 18:02:34.403: 05: End PTR results Wed 2018-09-05 18:02:34.403: 05: Performing IP lookup (mail-oi0-f70.google.com) Wed 2018-09-05 18:02:34.403: 05: * D=mail-oi0-f70.google.com TTL=(849) A=[209.85.218.70] Wed 2018-09-05 18:02:34.403: 05: End IP lookup results Wed 2018-09-05 18:02:34.403: 05: Performing IP lookup (eurotecnica.it) Wed 2018-09-05 18:02:38.887: 05: * D=eurotecnica.it TTL=(14) A=[85.88.196.45] Wed 2018-09-05 18:02:46.497: 05: * P=000 S=000 D=eurotecnica.it TTL=(59) MX=[eurotecnica-it.mail.protection.outlook.com] Wed 2018-09-05 18:02:54.794: 05: * D=eurotecnica-it.mail.protection.outlook.com TTL=(0) A=[213.199.154.42] Wed 2018-09-05 18:02:54.794: 05: * D=eurotecnica-it.mail.protection.outlook.com TTL=(0) A=[213.199.180.138] Wed 2018-09-05 18:02:54.794: 05: End IP lookup results Wed 2018-09-05 18:02:54.794: 09: Performing SPF lookup (eurotecnica.it / 209.85.218.70) Wed 2018-09-05 18:02:58.966: 09: * Policy: v=spf1 include:spf.protection.outlook.com -all Wed 2018-09-05 18:02:58.966: 09: * Evaluating include:spf.protection.outlook.com: performing lookup Wed 2018-09-05 18:03:06.967: 09: *Policy: v=spf1 ip4:207.46.100.0/24 ip4:207.46.163.0/24 ip4:65.55.169.0/24 ip4:157.56.110.0/23 ip4:157.55.234.0/24 ip4:213.199.154.0/24 ip4:213.199.180.128/26 ip4:52.100.0.0/14 include:spfa.protection.outlook.com -all Wed 2018-09-05 18:03:06.967: 09: *Evaluating ip4:207.46.100.0/24: no match Wed 2018-09-05 18:03:06.967: 09: *Evaluating ip4:207.46.163.0/24: no match Wed 2018-09-05 18:03:06.967: 09: *Evaluating ip4:65.55.169.0/24: no match Wed 2018-09-05 18:03:06.967: 09: *Evaluating ip4:157.56.110.0/23: no match Wed 2018-09-05 18:03:06.967: 09: *Evaluating ip4:157.55.234.0/24: no match Wed 2018-09-05 18:03:06.967: 09: *Evaluating ip4:213.199.154.0/24: no match Wed 2018-09-05 18:03:06.967: 09: *Evaluating ip4:213.199.180.128/26: no match Wed 2018-09-05 18:03:06.967: 09: *Evaluating ip4:52.100.0.0/14: no match Wed 2018-09-05 18:03:06.967: 09: *Evaluating include:spfa.protection.outlook.com: performing lookup Wed 2018-09-05 18:03:10.904: 09: * Policy: v=spf1 ip4:157.56.112.0/24 ip4:207.46.51.64/26 ip4:64.4.22.64/26 ip4:40.92.0.0/14 ip4:40.107.0.0/17 ip4:40.107.128.0/17 ip4:134.170.140.0/24 include:spfb.protection.outlook.com ip6:2001:489a:2202::/48 -all Wed 2018-09-05 18:03:10.904: 09: * Evaluating ip4:157.56.112.0/24: no match Wed 2018-09-05 18:03:10.904: 09: * Evaluating ip4:207.46.51.64/26: no match Wed 2018-09-05 18:03:10.904: 09: * Evaluating ip4:64.4.22.64/26: no match Wed 2018-09-05 18:03:10.904: 09: * Evaluating ip4:40.92.0.0/14: no match Wed 2018-09-05 18:03:10.904: 09: * Evaluating ip4:40.107.0.0/17: no match Wed 2018-09-05 18:03:10.904: 09: * Evaluating ip4:40.107.128.0/17: no match Wed 2018-09-05 18:03:10.904: 09: * Evaluating ip4:134.170.140.0/24: no match Wed 2018-09-05 18:03:10.904: 09: * Evaluating include:spfb.protection.outlook.com: performing lookup Wed 2018-09-05 18:03:14.951: 09: *Policy: v=spf1 ip6:2a01:111:f400::/48 ip4:23.103.128.0/19 ip4:23.103.198.0/23
[mdaemon-l] Email Bounced Rejected Per SPF Policy
On 06/09/18 14:33, Nugroho Cahyo Riadmojo (cahyo.riadm...@kpi.co.id) wrote: > User-user mdaemon kami selalu tidak bisa menerima email dari sender dengan > domain berikut "@eurotecnica.it" > Infonya di reject oleh SPF policy. Bisa dicarikan transaksi tolakkanya di smtp-in log? Lihat cara mencarinya dari sini https://www.mail-archive.com/mdaemon-l@dutaint.com/msg38093.html -- syafril --- Syafril Hermansyah MDaemon-L Moderators, running MDaemon 18.5.0-64 bit Beta B Harap tidak cc: atau kirim ke private mail untuk masalah MDaemon. The life so short, the craft so long to learn. --- Hippocrates -- --[mdaemon-l]-- Milis ini untuk Diskusi antar pengguna MDaemon Mail Server di Indonesia Netiket: https://wiki.openstack.org/wiki/MailingListEtiquette Arsip: http://mdaemon-l.dutaint.com Dokumentasi : http://mdaemon.dutaint.co.id Berlangganan: Kirim mail ke mdaemon-l-subscr...@dutaint.com Henti Langgan: Kirim mail ke mdaemon-l-unsubscr...@dutaint.com Versi terakhir MD 18.0.2, SG 5.5.0
[mdaemon-l] Email Bounced Rejected Per SPF Policy
Dear Pak Syafril, User-user mdaemon kami selalu tidak bisa menerima email dari sender dengan domain berikut "@eurotecnica.it" Infonya di reject oleh SPF policy. Mohon pencerahannya Pak, apa yang harus dilakukan, agar domain tersebut tidak direject oleh Mdaemon server? Bounced The error that the other server returned was: 550 5.7.0 Message rejected per SPF policy Terima kasih. Salam, Nugroho Cahyo Riadmojo IT - PT KALTIM PARNA INDUSTRI -- __ Disclaimer : __ This message is intended for the lawful recipient(s) explicitly stated in above only. It may contain confidential information prohibited for any Unauthorized use by any party other than the lawful addressee. The message, information and statement expressed herein should also be legally privileged for the lawful recipient(s). If you are not the intended recipient(s) or person responsible for delivering it to the intended recipient(s), you must therefore be notified not to copy, print, distribute or take any action in reliance on it, directly or indirectly. __ Please consider **ENVIRONTMENT** before PRINTING this email . -- --[mdaemon-l]-- Milis ini untuk Diskusi antar pengguna MDaemon Mail Server di Indonesia Netiket: https://wiki.openstack.org/wiki/MailingListEtiquette Arsip: http://mdaemon-l.dutaint.com Dokumentasi : http://mdaemon.dutaint.co.id Berlangganan: Kirim mail ke mdaemon-l-subscr...@dutaint.com Henti Langgan: Kirim mail ke mdaemon-l-unsubscr...@dutaint.com Versi terakhir MD 18.0.2, SG 5.5.0