On 2024-06-20 at 09:00:35 UTC-0400 (Thu, 20 Jun 2024 15:00:35 +0200)
Emmanuel Seyman via Postfix-users <emman...@seyman.fr>
is rumored to have said:
Hello, all.
Since yesterday, I've started seeing email from my servers getting
rejected due to SPF problems.
550 5.7.23 <sd...@my-company.com>: Sender address rejected: Message
rejected due to: SPF fail - not authorized. Please see
http://spf.libraesva.com/Why?s=helo;id=mail01.my-company.com;ip=192.168.52.130;r=dounia.someth...@client.com
(in reply to RCPT TO command))
That page states:
dounia.someth...@client.com received a message from
mail01.my-company.com (192.168.52.130) that claimed to be
mail01.my-company.com.
However, the domain mail01.my-company.com has declared using SPF that
it does not send mail through mail01.my-company.com (192.168.52.130).
That is why the message was rejected.
So there's a confusion between the hostname of the mailer and the
doamin to be used for the SPF check. Is anybody else seeing this ?
Seeing WHAT?
You've obfuscated all details to the point that it is impossible to
understand exactly what problem you are encountering.
My best *guess* based on how the error description is phrased is that
the receiving side is unwisely enforcing SPF against your HELO argument.
Doing that is deeply unwise for mail systems that want to generally
receive legitimate email, but there are sites that do it anyway. Because
of that, it is generally a good idea to include an 'a' directive in your
SPF record and make sure that the IP which you appear to be coming from
and the name you use in HELO/EHLO have simply symmetric DNS.
--
Bill Cole
b...@scconsult.com or billc...@apache.org
(AKA @grumpybozo@toad.social and many *@billmail.scconsult.com
addresses)
Not Currently Available For Hire
_______________________________________________
Postfix-users mailing list -- postfix-users@postfix.org
To unsubscribe send an email to postfix-users-le...@postfix.org
