I would like to know what policy to follow terms of the number of recipients
who permitís send an e-mail.
I do not currently have limited, but I'm thinking about putting it at 70.
Years ago, spammers loaded up the to: and cc: fields with dictionary attacks,
10s or 100s of recipients, but I
Upon further investigation, the majority of the inbound emails are to invalid
addresses at our domain. We have a backup mail service and in talking to them
they say they are getting upwards of 66,000 emaills an hour for our domain
during the time our server is out of service.
Sounds like a
Auto-Deny hack attempt?
If you have that activated, turn it off. It's useless and counterproductive.
Len
__
IMGate OpenSource Mail Firewall www.IMGate.net
To Unsubscribe: http://imailserver.com/support/discussion_list/
List Archive:
This is kind of urgent, so if anyone has any thoughts or ideas, I am all
ears.
go a cmd.exe window,
telnet mx.domain.tld 25
... for any MX that is logged as failure to connect, and let us know what
happens.
Len
__
IMGate OpenSource Mail
Not having much luck with telnet.
so forget about Imail until you get telnet working
We also set up a new firewall for the new location. Is there something that
we forgot to open up?
you need a rule like this
allow from localhost to any tcp keep-state
allow from localhost to any udp
Is your new circuit / IP ADDRESS provider doing a REVERSE DNS for the IP
address you are now using for IMAIL?
that would be a 5xx policy reject at the SMTP protocol level.
http://www.imgate.net/?page_id=130
He's having what appears to be connectivity problems at the TCP level.
Len
From today, IMGate Advanced 09 adds the content-filtering option of ARM
Research's Message Sniffer.
For details, visit:
http://www.imgate.net/?page_id=101
http://www.imgate.net/?page_id=111
Len
__
IMGate OpenSource Mail Firewall
I know what you are asking, but I have never looked into that. With regard
to brute force defense, can the email server be configured to lock the
accounts after x amount of failed attempts?
Locking the account locks it for the legit user, too.
the best tactic is reactive blocking for z time of
We have reverse DNS records.
confirmed:
dig -x 69.51.66.5 +short
mail.centric.net.
dig mail.centric.net. +short
69.51.66.5
there is dig.exe for Windows, short tutorial here:
http://www.imgate.net/?page_id=451
Len
__
IMGate OpenSource Mail
We are having a problem were one of our accounts is constantly being
tested to send email through. The password has been changed now we
have 100's of IP's from all over trying to access this account. I would
ban the IP's but there are too many of them. The log is showing FAILED
authentication
IMGate Background
=
The emphasis of IMgate has always been envelope rejection, before the
SMTP DATA command and avoiding expensive queuing to disk. This
approach has now become Postfix designer's own preference, that the
envelope stage is where defensive policies should be
We are having a problem were one of our accounts is constantly being
tested to send email through. The password has been changed now we
have 100's of IP's from all over trying to access this account. I would
ban the IP's but there are too many of them. The log is showing FAILED
authentication
Got too aggressive in cleaning up 90K alert msgs generated by a sick machine.
deleted too many Q files and have a couple 1000 D files remaining
that won't deliver.
anybody have a tool for creating Q files from D files?
thanks
Len
To Unsubscribe:
What is the spam conference to attend in the US? Filtering isn't working
meaning? what you consider too much spam is getting through? or too
many false positives? or just too much work?
and I'm curious where all this might be headed. We're harvesting IP's from
our logs and creating an ACC
Yes, but it still costs a small fortune to accept the spam in the first
place.
If you choose the wrong solution (accept every DATA body THEN reject
it), yes it costs a small fortune.
Len
To Unsubscribe: http://www.ipswitch.com/support/mailing-lists.html
List Archive:
I am only using this DNS as a local caching server, forwarding to my ISP
when needed. This box will not see queries from outside our LAN.
If you're running MS DNS, then you will turn on recursion, and
recursion is on (or off) for all IPs, including Internet, so at your
firewall, block from
The knowledge base seems to indicate that you can run a DNS server and IMail
2006.23 on the same box.
Is this true and if so, what are the cons of doing this?
If you accept to run MS DNS as Internet-facing DNS (only a tiny,
shrinking minority does), probably the biggest problem is on a busy
We have been told that we need to set up a Reverse DNS for our
domain names so they aren't rejected by AOL or Yahoo.
having a PTR is absolutely required for a business mail server, and
good policy to enforce with outright rejection (like aol and yahoo)
or heavy negative scoring.
The best
Sorry for the off topic post but I know someone here will have a easy answer
to this question.
I currently host DNS records for our Active Directory domain on our domain
controller (Win 2003 with local domain COMMARTS.LAN) and want to create a
local only NON-AUTHORITATIVE A
The term DNS
What I initially did was I created a new Forward Lookup Zone in the DNS
snap-in that was a Primary zone for commarts.com and added the A record for
image.commarts.com and immediately noticed that DNS was not resolving for
any other commarts.com records. My choices for creating Forward zones
you can't spoof one record.
Assuming the zones don't change often, copy the entire
forward/reverse zone from the authoritative DNS, put in in MS DNS as
authoritative, and add/modify the temporary A + PTR records.
this approach is call spoofing authority for the zone.
Len
To Unsubscribe:
there's nothing else that _should_ be active on 25
netstat -an | more
and also google for TCP View.
http://www.download.com/3001-2085_4-10558709.html?spi=97a8a3e07221b8fe7782895d7b8cd234part=dl-AdvancedP
telnet ip.ad.re.ss 25
... to see if anything answers.
Len
To Unsubscribe:
Something else that's strange: I am seeing new .smd files appearing in
the queue, albeit very few and very sporadically, and a test message
sent earlier was just delivered. So wouldn't that suggest that even
though I can't connect to the box, the service is accepting at least
SOME connections?
No:
E:\imailtelnet 63.134.128.131 25
Connecting To 63.134.128.131...Could not open a connection to host on
port 25 :
Connect failed
I can't telnet from Internet to :25, :587, :80, :100, can't ping (do
you have all ICMP blocked?), and port scan of :25, :80, :110, :587
can't even connect to
I used the IP here to attempt a connection. On SMTP it timed out.
I used 2 different ports scanner on the port range 25 - 110, with 1
and 5 sec timeout delay, and got nothing.
Len
To Unsubscribe: http://www.ipswitch.com/support/mailing-lists.html
List Archive:
I am getting ready to go to either a Barracuda or IronPort
solution that uses LDAP.
It's much easier, and vastly cheaper, to export your recipients to a
non-$$$subscription solution like IMGate. Why unnecessarily pass
1000s or 100s of 1000s of LDAP or SMTP queries for non-existent
So what you are saying is that each email sent passes a LDAP request
from the appliance to Imail. Seems like the appliance would use some
sort of caching to prevent unnecessary traffic on the network. I
will check it out.
caching LDAP/SMTP queries can be negative and/or positive.
If you
I will add, per usual, that a well-configured LDAP server can handle
millions of recipient lookups per hour, and the claims of too much
overhead are FUDdy.
As per usual, total BS. :)
Why would any MX design pass millions LDAP queries for bad
recipients to a backend server when those
We've all been filtering email for years now and it's not getting any better.
The mail abuse war will never be won. It's been muddy trench warfare
for years, with neither side winning or losing technically (although
MXs lose money defending, while spammers make huge money attacking),
So what does that translate to for Imail? Max two sessions? 1 bad
recipient, then blacklist it? That seems awfully low.
IMGate doesn't blacklist in a session. It disconnects the session
after 2 5xx's.
Eventually, through harvesting the mail log, enough sessions with
(even one) bad
I did find this in the logs:
11:23 15:36 SMTPD(63ed01a50125) [65.74.132.77] Max Invalid RCPTs Exceeded
This has never been an issue before should I just up the limit in
the SMTP services settings from 20 to something higher until it
plays nice? What the recommended settings for
DNS security improves as firms tool up to tackle spam
Configuration errors blot copybook
By
http://forms.theregister.co.uk/mail_author/?story_url=/2007/11/20/dns_security_survey/John
Leyden http://search.theregister.co.uk/?author=John%20LeydenMore by
this author
Published Tuesday 20th
We use SimpleDNS (www.simpledns.com) and have had no problems. Easy
operation and allows you to turn off recursion
.. all or nothing recursion won't work, because recursion has to be:
1) allowed for his IPs
2) denied for not-his-IPs.
and has a do not respond
feature which slows down any
No, the server under attack is not authoritative for any
domain. It's mostly just used to resolve for our mail servers. I
also use it from my notebook, but I guess I could find a different
server to use.
Then just firewall block from Internet to that IP:53, allow queries
only from the
I know there are several people on this list that know DNS very
well. I have a problem.
A very nice person (not) has published the IP Address of one of our
DNS servers as a nameserver for a bunch of porn sites.
Example: We run dns1.abcd.com on 1.1.1.1 and this guy has published
The fundamental SMTP system engineering point here is that the MX
must know how to accept only valid recipients, and reject invalid recipients.
If Imail is setup correctly, it will bounce invalid recipients from
the MX gateway, which then generates an NDR msg to the envelope sender.
Same experience here. The proof is in the tone of their site, I'd say.
If you can't even market yourself without showing your temper
Universal. Dennis/ETINC is a sicko, uniquely weird in customer relations. :)
Len
To Unsubscribe: http://www.ipswitch.com/support/mailing-lists.html
It does sound like IMGate is great, but I don't want to learn
another OS and I love the flexibility if giving users the ability to
handle their own filters and quarantine with the Barracuda.
As I said, if you go Barracuda, you can go with a cheaper box and
cheaper subscription, saving
100K bad recipients? BC send 50K queries to Imail.)
correction, of course, BC passes thru 100K queries to Imail. That's
the problem a closed box. IMGate can be integrated with mailbox
servers since IMGate is an open solution on generic hardware you provide.
Len
To Unsubscribe:
You don't have to set it up this way; our Barracudas do the lookup
against LDAP
My guess is that LDAP queries are cost even more than than SMTP RCPT
TO queries.
In either case, unlike native postfix, there seems to be no
negative/positive caching so every incoming msg generates another
I just called Barracuda and spoke to an Engineer. The appliances
*do not* accept the whole message before tests are run
There's no proprietary stuff here, BC can't do anything special with SMTP.
The Barracuda runs postfix, probably modified, and can do envelope
checks on PTR/FROM/TO/HELO,
We have two 400 for incoming and one 200 for out going. The main
drawback is, it can't handle volume of emails.
This is the main complaint I see from my clients who have
Barracuda. More than one has placed IMGate out front in exactly the
same role as IMGate plays for IMail, to remove the
I am specifically interested in the Listserv functionality of the
IMail software. I currently have a listserv running on SmarterMail
and it is ok but we need something more
sophisticated/robust. Having been a long time user of WhatsUp and
very happy with it, it seems natural to look at
Static is always the best way to go for this. But if its not
available then I think the best way to get the job done would be VPN.
Consensus it that static is the best. It would probably cost less
than relaying through another mail server.
Without the complexity of VPN, the Exchange
smtp.dpsource.com claims to be host faucet.com [but that host is at
206.65.183.250 (may be cached), not 63.81.202.243].
The PTR and A records match :
dig -x 63.81.202.243 +short
243.192.202.81.63.in-addr.arpa.alias
smtp.dpsource.com.
dig -x 63.81.202.243 +short
set q=ptr
68.208.144.9
Server: smtu.mt.rs.els-gms.att.net
Address: 12.127.16.68
Non-authoritative answer:
9.144.208.68.in-addr.arpa name = mail.esavannah.net
9.144.208.68.in-addr.arpa name = mail.neurospecsav.com
9.144.208.68.in-addr.arpa name = mail.gapafcu.com
What's with all the winail.dat attachments?
Can't you people turn that crap off?
Len
To Unsubscribe: http://www.ipswitch.com/support/mailing-lists.html
List Archive: http://www.mail-archive.com/imail_forum%40list.ipswitch.com/
Knowledge Base/FAQ: http://www.ipswitch.com/support/IMail/
Hi All... Can someone tell me how IIS can be configured to act as a
gateway for Imail??? What we really want to do is set up one or 2
IIS boxes to run alligate in front of our imail config... may be
even have Barracuda between Alligate and Imail. Any
suggestions? Looked in the archives
Linux + http://www.shorewall.net/http://www.shorewall.net/
Easy and flexible! Great results so far.
There must be many 1000s of free firewalls running on FreeBSD and
Linux, with plenty of complete pkgs, how-to's, boot from cdrom/flash,
no disk, etc, with all the major features of
04:13 10:16 SMTPD(90bf089a5822)
[http://209.208.92.68209.208.92.68] connect
http://64.40.84.12664.40.84.126 port 1970
04:13 10:16 SMTPD(90bf089a5822) [http://64.40.84.126
64.40.84.126] EHLO User
04:13 10:16 SMTPD(90bf089a5822) Authenticated
mailto:[EMAIL PROTECTED][EMAIL
I'm taking over the hosting of email and DNS for the domain
Ibrandsinc.com. Up until now, I've only created a zone from scratch.
The NS doesn't have zone transfers restricted, here is the entire
zone contents:
dig @ns19a.nameservers.net. Ibrandsinc.com. axfr
; DiG 9.3.2
Thanks, Len.
I'm a bit confused though.
First, how did you do this???
no secrets, see my dig command.
2nd, the mx record is for fusemail, that is where their mail is
currently being hosted. Do I not need an A record for this in my
ibrandsinc.com zone
You can't put
Due to a previous name change, todhunter.com is an alias of
cruzaninc.com so all email addressed to me at either
[EMAIL PROTECTED] or [EMAIL PROTECTED] goes to the
cruzaninc.com address.
Our email domain will be changing to floridadistillers.com and our
email format will be changing to
OO Defrag is very quick and needs more or less no ressources. We
started defragmenting on a daily bases watching the disk acitivity
via SNMP. We started to defrag the disks every 6 hours and at the
end, 2 hours looked optimal. Maybe it sounds a bit like Voodoo, but
the disks have less to do
It's Compaq DL-360, which have only two disks. I don't see the benefit to
have the spool files on the same Array but in on a different partition.
Makes this really a difference?
When a partition has X amt of used space plus X+ amt of free space,
the defragging is much faster and more
I have maybe a silly question to you: with information will be taken
to do a helo (reverse) test on our server? Ist this the greeting
text from the SMTP Service?
The only PTR of interest to an SMTP server is the IP of the SMTP client.
Reverse usually means querying for the PTR of an IP.
Whatever it takes, here are the best and simlest DNS and SMTP
settings you should implement.
In DNS, for the IP of SMTP outbound gateway:
d.c.b.a.in-addr.arpa. PTR label.domain.tld.
with only ONE PTR record for the SMTP IP, and having the match
in the forward zone:
label.domain.tld.
We are currently running 2 clustered Barracuda 600's and they cannot always
keep up with the current peak load.
Been there, done that, last autumn, with an mail user whose Barracuda
400 was totally overwhelmed, delaying msgs by up to 12 hours.
Keep your 600s and add IMGate in front as MX.
100% with you!
FF is a great browser and add-ons are great
sure, you can get bad
ones, but it's up to us to filter the bad one from the good one
I go with FF also. It did have a memory leak earlier that required
closing it every day or so to free up memory, but version 2 is much
better.
I have a client that is trying to send mail to a domain.
Our server is trying to his the A record for that domain and not the
MX record.
Any idea why and now to fix this?
Here is the info about the domain from DNSSTUFF
3partners.biz.NSIN7200DNS2.DEDICATEDNS.COM.
What are the pros and cons of running a defragmentation program on hard
drives on an Imail servers?
pros: faster, more stable mail operations
cons: it can consume a lot of resources (esp disk i/o) that you are
trying to optimize
We use diskkeeper - anyone have other
recommendations?
as
We're using OO Software Defrag running *every hour* on the data partition
and once a day on the system partition.
I use this one, too, on my Thinkpad. but any one long-time,
well-known defragger will do.
Len
To Unsubscribe: http://www.ipswitch.com/support/mailing-lists.html
List
Any thoughts or recommendations on partitioning
1st drive: OS, apps,
second drive: unique system-wide swap file
(no page file on following drives/partitions)
3rd drive: mailqueue and webmail workspace
3th: all logging. (use a separate logging pgm if Imail/windows isn't
flexible
No doubt about that. We get thousands of Verizon zombies connecting
to us every day. SenderBase.org shows 25,300 zombies active in the
last 30 days that start with pool and end with verizon.net.
Regarding Sender Address Validation in general. I believe this is
effectively the equivalent
What newsletters do that?
I see them all of the time.
Some legit send-only list servers use [EMAIL PROTECTED] where:
1. sender@ does not exist (aka no return path), which is RFC illegal.
2. DNS query for MX/A of @label.sender.domain gets an answer, but
trying to contact the MX/A times
they were ignoring his MX records and going straight to his server
Verizon were calling back to the sending IP rather than the
@sender.domain's MX?
Amazingly stupid, ie, par for the course for Verizon mail policies. :)
Looking at verizon.net PTRs, I find 4 subdomains that connect to our
BTW, would I be better off leaving my internal dns server listed there or
one of my ISP's?
The problem you had, DNS caching a stale record, happens with every
caching DNS.
Len
To Unsubscribe: http://www.ipswitch.com/support/mailing-lists.html
List Archive:
DNS reports shows the correct address.
When I ping it, the correct address answers, telling my my nameservers have
the correct info.
In my mail server log, I can see:
Connect domainxyz.com [24.28.193.154:25] (1)
Which is the wrong address!
which DNS is the Imail using? that's the DNS that
Thanks Martin. That is on my list as well. In our case, we can have the
website go down for a while and people don't say much. But take away their
email and things get ugly... :o
I think there are two mail server tactics that will cover the vast
majority of business mail servers.
Thanks for your comments. So does this mean that we would do away with
mail2.ourdomain.com?
is that your backup mailserver and backup MX? the backup mail server
shouldn't accepting mail until the primary goes down.
I understand all of the benefits that you mention
about a front line
Since there are thousands of addresses on the Lyris machine that
could be valid, I can't set up an alias on the Imail machine, so it
would be rejected at the 550 SMTP level there.
Any other thoughts on how to handle this?
export the list of all legit accounts from the back-end machines to
Yep, but there are also MTA behaviors that are *not* so easy to
demonize that also prevent efficient delivery when they encounter
common greylisting implementations.
One is the shuffling of outbound mail across servers in a mail
delivery farm during the retry interval. As a
I realize this thread is off OT for Imail, but I was wondering how much
hardware it would take to handle 750,000 emails
750K legit msgs accepted, or 750K total msgs with 90+% rejected?
and 5000 mailboxes a day?
number of mailboxes is irrelevant. The number of msgs dominates,
followed by
we only deliver about 64000 of the 75 or so a day inbound.
90+ as spam, fairly typical.
With an IMGate you block 70+% of that as long-hanging fruit with only
3 explicit filters:
1. bad recips
2. greylisting
3. SAV
... plus the standard sender_domain_not_found, illegal SMTP command
However do be aware of the pitfalls of greylisting
When greylisting is done well (like postgrey or SQLgrey for postfix),
it's extremely painless, effectively invisible after the first day or two.
And it's incredibly effective.
For one of my high-volume clients who is implementing
Yes, I entirely agree.
However, clients don't see the technical side of things and a delay
of 10-15 mins is a disaster to some.
with postgrey/postfix:
the reject/delay happens once per triplet. A retried triplet gets
cached for 30 days (or as long as you set the cache parameter), so as
That's the problem. Brightmail tars you with the same brush as all
the other users in the /24.
IMGate has an option to block an entire /24 if at least x IPs have
been abusing IMGate (x number of IPs in a ClassC each sending x
number of bad recips/day, the x's being your choice), but it has
Anyone found a workaround for the issue that
http://www.dnsstuff.com's/www.dnsstuff.com's mail testing section attempts?
Mail server host name in greeting
WARNING: One or more of your mailservers is claiming to be a host
other than what it really is (the SMTP greeting should be a 3-digit
Let me explain the quandary: I thought about doing the ASSP install, but so
far I've only heard about ASSP running as a gateway between the mail server
and the outside world. Only after reading your email am I aware of the
possibility of installing ASSP on the Imail server.
I'm the IMGate
I used to see this a lot, running Imail 6.xx, before I put our ASSP gateway
in place. I don't know how or if it was related, but I haven't had any
trouble since we started turning away all the junk.
Same with IMGate, which has fixed and salvaged so many IMail
boxes that were overwelmed and
A rogue application may be periodically fighting Imail for the outgoing
smtp port
There isn't a single outgoing SMPT port, the TCP application will
ask the OS for a free (non-privileged, 1024) TCP port (unless you
force the app always to use the same outbound/source port), and get
handed
Went from 5000 on Monday to almost 8000 on Tuesday. I have seen an increase
in spam, Also removed declude and placed a Barracuda in front of the mail
server.
Which model of Barracuda?
I installed a $600 IMGate in front of an overwhelmed $10K Barracuda
400 that was delaying messages for 12
I get over 500,000 messages per day.
Since the 17th:
Total Day Hour
Blocked 5,907,767 288,509 14,450
Blocked: Virus 13,464 738 37
Quarantined 183,450 16,171 413
Allowed: Tagged 0 0 0
Hey Everyone... I have seen this constantly in my logs for days now. I
can start including the IP's in my block list but they are all over the
board. Have any of you seen this pattern and if so, can you give me some
advice on what it is and the best way to stop it?
Here is a log segment...
AUTH-Only is not supported.
on port 587? When I've tested port 587, it fails any SMTP commands
except EHLO and AUTH, if AUTH hasn't been successfully executed.
Len
To Unsubscribe: http://www.ipswitch.com/support/mailing-lists.html
List Archive:
Just out of curiosity, what is the benefit of running ASSP, IMGATE,
Barracuda, and Alligate all in front of your mail system? I have
used most of these products individually in front a several
different types of mail servers, and it would seem to me there would
be little if any benefit
I think that I was pretty clear about this in the sentence before
the one that you quoted.
with an front-end MX like IMGate taking raw Internet inbound, you can
really shut down via firewall access to the SMTP service, almost
completely hardending the SMTP service against attacks.
1. the
My users are getting disturbed and I don't know what to tell them.
You tell them that the Yahoo problem has been reported widely over
the past few weeks, and the solution rests entirely with yahoo.
Len
To Unsubscribe: http://www.ipswitch.com/support/mailing-lists.html
List Archive:
20061030 001624 127.0.0.1 SMTP (98b80de05f1e) 451 Message
temporarily deferred - 4.16.50
this is not a yahoo policy decision to reject you (that would be a
5xx) and so you can't get them to change their policy just for you,
but yahoo's generic message when their system is
What I am finding is that yahoo has implemented the Domain-Key rule.
yahoo are rejecting inbound msgs that don't have a DK header?
I'd be very surprised.
Len
To Unsubscribe: http://www.ipswitch.com/support/mailing-lists.html
List Archive:
Problem is it happens intermittently.
I can sometimes send a message to my yahoo account and other times not.
sure, it depends on which yahoo MX yr msg hits, whether yahoo is that
minute or hour overloaded or not, etc, etc.
What I was trying to say is you have a better chance if you have
this is probably a disk overload problem:
Oct 30 00:25:35 mybox postfix/smtp[2260]: 871931CDB1: to=,
relay=mx2.mail.yahoo.com[4.79.181.136]:25, delay=0.65, delays=0.01/0.0
1/0.52/0.1, dsn=4.0.0, status=deferred (host
mx2.mail.yahoo.com[4.79.181.136] said: 451 Message temporarily
I am sure that would work, but as you know the more port 587 is
published, it will be hit also...
Imail 587 refuses any SMTP command, including the RCPT TO and
its vulnerability, if the SMTP session is started without an SMTP
AUTH after EHLO. IIRC, about the only command port 587 accepts
Is it possible to set port 25 to be SMTP Auth only?
yes, you swap IMail SMTP AUTH 587 to port 25 and swap unAUTH port 25
to port 587.
The problem with SMTP AUTH-only on port 25 is that roamers often are
blocked by the access providers from accessing port 25.
Len
To Unsubscribe:
The problem with SMTP AUTH-only on port 25 is that roamers often
are blocked by the access providers from accessing port 25.
Couldn't you configure your firewall to send both port 25 and 587 to
port 587 on the Imail server?
sure, but when you have a another box like IMGate doing the MX
Then on the IMail box (using 9.1 in this example), you would simply
configure port 587 to force AUTH, but leave port 25 functional. The
gateway can deliver straight to port 25, and you can redirect port
25 to 587 for things beyond that immediate segment of your network,
so IMail port 25 is
I am getting bombarded with between 3,000 - 7,000 (or possibly
more!) spam messages a day, along with the regular mail for 100+
users wonder how taxing this is on my poor ol' dual 500 mail
server. Also, would it be possible, or advisable to just bounce it?
BOUNCE is what the sender sees
From an IMGate as outbound relay, today:
Host/Domain Summary: Message Delivery (top 30)
sent cnt bytes defers avg dly max dly host/domain
--- --- --- --- ---
13615035k 139 1.9 h 12.2 h yahoo.com
... More than one deferral per msg,
2
I have a customer that is complaining that his email can't get to a
comcast customer because the reverse IP for our mail server comes
back as pine.matrosity.com instead of mail.hisdomain.com
the best practice for the MTA's ip is a single PTR:
d.c.b.a.in-addr.arpa. PTR label.domain.tld.
451 Message temporarily deferred - 4.16.50
probably they are just overloaded.
Several of my biggest clients report huge increases in spam in the
last couple weeks.
I have one new client whose Barracuda was so overwhelmed taking 10+
hours to pass messages through it, so we put an IMGate
1 - 100 of 5844 matches
Mail list logo
