[Mdaemon-L] 550 5.7.23 ETP203 SPF Failure for domain

2021-04-14 Terurut Topik Syafril Hermansyah via Mdaemon-L 
On 14/04/21 16.20, Bonar Gultom via Mdaemon-L wrote:
> Mohon bantuan analisis dan sarannya, ada user kami mengirim email ke
> luar namun ditolak dengan pesan sbb:


>  [896612] --> EHLO mail.ciputrahospital.com
>   [896612] <-- 250-use1-etp-mta-inbound-edge-prd09-35.cso.fireeye.com says 
> EHLO to 180.250.59.248:62940
>   [896612] --> MAIL From:
>   [896612] <-- 250 2.0.0 MAIL FROM accepted
>   [896612] <-- 550 5.7.23 ETP203 SPF Failure for domain (mfrom: 
> ) - 7C6D26527ECF457065e1cc686


Sender host mail.ciputrahospital.com [180.250.59.248] tidak masuk dalam
daftar SPF host domain ciputrahospital.com.
Diubah saja DNS SPF record domain ciputrahospital.com menjadi

ciputrahospital.com TXT "v=spf1 a:mail.ciputrahospital.com mx -all"

atau

ciputrahospital.com TXT "v=spf1 a:mail.ciputrahospital.com
ip4:180.250.59.248 mx -all"

agar bisa kirim mail ke recipient domain itu.


$ host -t txt ciputrahospital.com
ciputrahospital.com descriptive text "v=spf1 a mx -all"

$ host ciputrahospital.com
ciputrahospital.com has address 45.13.133.131
ciputrahospital.com mail is handled by 10 mail.ciputra.co.id.


-- 
syafril

Syafril Hermansyah

MDaemon-L Moderator.
Please do not send mail direct or cc: to me regarding MDaemon problems.
Run MDaemon 21.0.2 64 bit Beta A

Learning is not attained by chance, it must be sought for with ardour
and attended to with diligence.
--- Abigail Adams



-- 
--[mdaemon-l]--
Milis ini untuk Diskusi antar pengguna MDaemon Mail Server di Indonesia

Netiket: https://wiki.openstack.org/wiki/MailingListEtiquette
Arsip: http://mdaemon-l.dutaint.com
Dokumentasi : http://mdaemon.dutaint.co.id
Berlangganan: Kirim mail ke mdaemon-l-subscr...@dutaint.com
Henti Langgan: Kirim mail ke mdaemon-l-unsubscr...@dutaint.com
Versi terakhir: MDaemon 21.0.1, SecurityGateway 8.0

[Mdaemon-L] 550 5.7.23 ETP203 SPF Failure for domain

2021-04-14 Terurut Topik Bonar Gultom via Mdaemon-L 
Dear Pak Syafril,

Mohon bantuan analisis dan sarannya, ada user kami mengirim email ke luar namun 
ditolak dengan pesan sbb:

-Original Message-
From: "MDaemon at mail.ciputrahospital.com" 
mailto:postmas...@ciputrahospital.com>>
To: admar3@ciputrahospital.com
Date: Tue, 13 Apr 2021 15:01:23 +0700
Subject: WARNING: Message delivery failed


=  Greetings from the MDaemon mail system at 
mail.ciputrahospital.com  =


The following message:

 Session-ID: 896612 (specific to this delivery attempt)
   Queue-ID: pd35006388705.msg
 Message-ID: 
wc20210413080111.140...@ciputrahospital.com

could not be delivered to the following recipient(s):

 
provider_relation...@manulife.com 
(unrecoverable error)

despite one or more unsuccessful attempts to do so.

No further delivery attempts will be made and the message has been removed from 
the queue.

The original message headers follow at the end of this report.  For information 
on DSN messages see http://www.altn.com/dsn/.

Please quote the Queue-ID, Session-ID, and Message-ID found above in any 
inquiries regarding this message.


=  Session Transcript  =


  [896612] Session 896612; child 0001
  [896612] Parsing message 
  [896612] *  From: 
admar3@ciputrahospital.com
  [896612] *  To: 
provider_relation...@manulife.com
  [896612] *  Subject:
  [896612] *  Size (bytes): 5236
  [896612] *  Message-ID: 
mailto:WC20210413080111.140E3A%40ciputrahospital.com>>
  [896612] Resolving MX record for manulife.com (DNS 
Server: 202.158.38.162)...
  [896612] *  P=010 S=002 D=manulife.com TTL=(10) 
MX=[primary.us.email.fireeyecloud.com]
  [896612] *  P=020 S=001 D=manulife.com TTL=(10) 
MX=[alt1.us.email.fireeyecloud.com]
  [896612] *  P=030 S=000 D=manulife.com TTL=(10) 
MX=[alt2.us.email.fireeyecloud.com]
  [896612] *  P=040 S=003 D=manulife.com TTL=(10) 
MX=[alt3.us.email.fireeyecloud.com]
  [896612] Attempting SMTP connection to 
primary.us.email.fireeyecloud.com
  [896612] Resolving A record for 
primary.us.email.fireeyecloud.com 
(DNS Server: 202.158.38.162)...
  [896612] *  
D=primary.us.email.fireeyecloud.com 
TTL=(5) A=[3.93.93.45]
  [896612] *  
D=primary.us.email.fireeyecloud.com 
TTL=(5) A=[3.93.93.44]
  [896612] *  
D=primary.us.email.fireeyecloud.com 
TTL=(5) A=[3.93.93.43]
  [896612] Randomly picked 3.93.93.44 from list of possible hosts
  [896612] Attempting SMTP connection to 3.93.93.44:25
  [896612] Waiting for socket connection...
  [896612] *  Connection established 
172.16.10.11:62940 --> 
3.93.93.44:25
  [896612] Waiting for protocol to start...
  [896612] <-- 220 2.0.0 
mx.us.email.fireeyecloud.com ESMTP
  [896612] --> EHLO mail.ciputrahospital.com
  [896612] <-- 
250-use1-etp-mta-inbound-edge-prd09-35.cso.fireeye.com
 says EHLO to 180.250.59.248:62940
  [896612] <-- 250-8BITMIME
  [896612] <-- 250-STARTTLS
  [896612] <-- 250-PIPELINING
  [896612] <-- 250 ENHANCEDSTATUSCODES
  [896612] --> STARTTLS
  [896612] <-- 220 2.0.0 continue
  [896612] SSL negotiation successful (TLS 1.2, 2048 bit key exchange, 256 bit 
AES encryption)
  [896612] SSL certificate is valid (matches 
primary.us.email.fireeyecloud.com 
and is signed by recognized CA)
  [896612] --> EHLO mail.ciputrahospital.com
  [896612] <-- 
250-use1-etp-mta-inbound-edge-prd09-35.cso.fireeye.com
 says EHLO to 180.250.59.248:62940
  [896612] <-- 250-8BITMIME
  [896612] <-- 250-PIPELINING
  [896612] <-- 250 ENHANCEDSTATUSCODES
  [896612] --> MAIL 
From:mailto:admar3.cgc%40ciputrahospital.com>>
  [896612] <-- 250 2.0.0 MAIL FROM accepted
  [896612] --> RCPT 
To:mailto:provider_relation_id%40manulife.com>>
  [896612]