[Mdaemon-L] email tidak masuk

[Syafril Hermansyah via Mdaemon-L]

Pada 17/01/22 13.38, ir...@mandau.id menulis:
Mohon pencerahannya, ada email dari Salesforce yang kami pakai untuk 
relay notifikasi email system di Salesforce.com yang tidak masuk ke 
kami. Kalau saya cek log SMTP-IN ada sebagai berikut:




Mon 2022-01-17 13:18:55.978: [05216177] --> 250-mail.mandau.id Hello 
smtp-0c0c79fd4c97b76be.core1.sfdc-mchho0.mta.salesforce.com [35.73.31.4], pleased 
to meet you
Mon 2022-01-17 13:18:56.081: [05216177] <-- MAIL FROM:<>



Ini bounce (DSN) message.


Mon 2022-01-17 13:18:56.318: [05216177] Performing SPF lookup 
(smtp-0c0c79fd4c97b76be.core1.sfdc-mchho0.mta.salesforce.com / 35.73.31.4)
Mon 2022-01-17 13:18:56.333: [05216177] *  Policy: v=spf1 a -all
Mon 2022-01-17 13:18:56.336: [05216177] *  Evaluating a: match
Mon 2022-01-17 13:18:56.336: [05216177] *  Result: pass
Mon 2022-01-17 13:18:56.336: [05216177]  End SPF results



Kalau bounce (DSN/NDR) message maka verikasi authorize sender domain 
adalah SPF sender host.



Mon 2022-01-17 13:18:56.669: [05216177] Performing DMARC processing
Mon 2022-01-17 13:18:56.669: [05216177] *  Message-ID: 
<36.37.00532.05a05...@mx1-public-cloud.mta.salesforce.com>



Sender mail adalah *@mx1-public-cloud.mta.salesforce.com, sub domain 
dari @salesforce.com



Mon 2022-01-17 13:18:56.669: [05216177] *  Author domain: salesforce.com
Mon 2022-01-17 13:18:56.669: [05216177] *  Organizational domain: salesforce.com
Mon 2022-01-17 13:18:56.669: [05216177] *  Query domain: _dmarc.salesforce.com
Mon 2022-01-17 13:18:56.669: [05216177] *Policy record (from cache): 
v=DMARC1;p=reject;pct=100;fo=1;ruf=mailto:d...@ruf.agari.com,mailto:dmarc_...@emaildefense.proofpoint.com;rua=mailto:d...@rua.agari.com,mailto:dmarc_...@emaildefense.proofpoint.com,mailto:dmarc_agg@vali.email


Tidak di specify bahwa subdomain punya DMARC record terpisah.
Juga tidak di specify domain aligment, yang artinya baik SPF maupun DKIM 
harus align.



Mon 2022-01-17 13:18:56.703: [05216177] *  Checking authentication mechanisms 
for DMARC alignment
Mon 2022-01-17 13:18:56.703: [05216177] *SPF: no SPF policy found
Mon 2022-01-17 13:18:56.703: [05216177] *DKIM: no DKIM signatures found


Padahal sub domain mx1-public-cloud.mta.salesforce.com tidak punya SPF 
record maupun DKIM record.

Singkatnya ini salah setting DNS DMARC record.

Kalau memang bounce message mau diterima maka masukkan sender doin 
@*.salesforce.com kedalam SPF whitelist.

Atau sender IP 35.73.31.4 kedalam DMARC whitelist.

http://mdaemon.dutaint.co.id/mdaemon/21.5.0/security--spf__sender_id.html

http://mdaemon.dutaint.co.id/mdaemon/21.5.0/security--dmarc_verification.html






--
syafril

Syafril Hermansyah


--
--[mdaemon-l]--
Milis ini untuk Diskusi antar pengguna MDaemon Mail Server di Indonesia

Netiket: https://wiki.openstack.org/wiki/MailingListEtiquette
Arsip: http://mdaemon-l.dutaint.com
Dokumentasi : http://mdaemon.dutaint.co.id
Berlangganan: Kirim mail ke mdaemon-l-subscr...@dutaint.com
Henti Langgan: Kirim mail ke mdaemon-l-unsubscr...@dutaint.com
Versi terakhir: MDaemon 21.5.1, SecurityGateway 8.0.4

[Mdaemon-L] Socket error 10040 - Message is too long

[Sony Aditya]

> SPF domain infornexus.com salah syntax sehingga tampil error begitu.
> Tidak fatal, tetapi kalau ingin agar tidak tampil lagi error itu masukkan 
> sender
> domain kedalam SPF whitelist.

Noted pak.
Ada beberapa domain yang menampilkan error yang sama, setelah saya random cek 
memang problem di spf mereka. 
Tindakan yang saya ambil hanya melakukan whitelist pada domain kolega kami yang 
rutin berkorespondensi.

Terima kasih.


--
--[mdaemon-l]--
Milis ini untuk Diskusi antar pengguna MDaemon Mail Server di Indonesia

Netiket: https://wiki.openstack.org/wiki/MailingListEtiquette
Arsip: http://mdaemon-l.dutaint.com
Dokumentasi : http://mdaemon.dutaint.co.id
Berlangganan: Kirim mail ke mdaemon-l-subscr...@dutaint.com
Henti Langgan: Kirim mail ke mdaemon-l-unsubscr...@dutaint.com
Versi terakhir: MDaemon 21.5.1, SecurityGateway 8.0.4

[Mdaemon-L] Socket error 10040 - Message is too long

[Syafril Hermansyah via Mdaemon-L]

Pada 17/01/22 13.28, Sony Aditya menulis:

Mohon informasi dan arahannya terkait error message sesuai log berikut:




Mon 2022-01-17 13:17:22.659: 09: [01097993] Performing SPF lookup 
(infornexus.com / 208.87.221.26)
Mon 2022-01-17 13:17:22.827: 04: [01097993] *  Socket error 10040 - Message is 
too long.
Mon 2022-01-17 13:17:22.828: 04: [01097993] *  Socket error 10040 - Message is 
too long.
Mon 2022-01-17 13:17:22.829: 04: [01097993] *  Socket error 10040 - Message is 
too long.
Mon 2022-01-17 13:17:22.830: 04: [01097993] *  Socket error 10040 - Message is 
too long.
Mon 2022-01-17 13:17:22.830: 04: [01097993] *  Socket error 10040 - Message is 
too long.
Mon 2022-01-17 13:17:22.831: 04: [01097993] *  Socket error 10040 - Message is 
too long.
Mon 2022-01-17 13:17:22.831: 09: [01097993] *  Result: none; no SPF record in 
DNS



SPF domain infornexus.com salah syntax sehingga tampil error begitu.
Tidak fatal, tetapi kalau ingin agar tidak tampil lagi error itu 
masukkan sender domain kedalam SPF whitelist.


http://mdaemon.dutaint.co.id/mdaemon/21.5.0/security--spf__sender_id.html

$ host -t txt infornexus.com 1.1.1.1
Using domain server:
Name: 1.1.1.1
Address: 1.1.1.1#53
Aliases:

infornexus.com descriptive text "j747sb1dm5sqgvcrzdt8t8257xyk0p7s"
infornexus.com descriptive text "rcvln0x4hkvf9c8hh0yrxdssh7vsrp95"
infornexus.com descriptive text "\"0ef4f173f4c94e7b9910f9f16af2f1e1\""
infornexus.com descriptive text "dqq2k71ll42xvrtljfszj280nhkr56w2"
infornexus.com descriptive text "\"b4856767afa342e28667c55def52174c\""
infornexus.com descriptive text "\"da998786d3864c58a03875311b6d67dd\""
infornexus.com descriptive text "\"MS=ms13575583\""
infornexus.com descriptive text "v=spf1 
exists:%{i}.spf.hc3692-74.iphmx.com ip4:208.87.221.29 ip4:208.87.221.25 
ip4:208.87.221.26 ip4:72.44.208.137 ip4:52.95.44.161 
include:_spf1.infornexus.com -all"



--
syafril

Syafril Hermansyah
MDaemon-L Moderators, running MDaemon 21.5.2 64 bit Beta B
Harap tidak cc: atau kirim ke private mail untuk masalah MDaemon.

Most people spend their entire lives in a fantasy Island called ‘Someday 
I’ll.’

--- Denis Waitley


--
--[mdaemon-l]--
Milis ini untuk Diskusi antar pengguna MDaemon Mail Server di Indonesia

Netiket: https://wiki.openstack.org/wiki/MailingListEtiquette
Arsip: http://mdaemon-l.dutaint.com
Dokumentasi : http://mdaemon.dutaint.co.id
Berlangganan: Kirim mail ke mdaemon-l-subscr...@dutaint.com
Henti Langgan: Kirim mail ke mdaemon-l-unsubscr...@dutaint.com
Versi terakhir: MDaemon 21.5.1, SecurityGateway 8.0.4

[Mdaemon-L] email tidak masuk

[irwan]

Dear Pak Syafril,

 

Mohon pencerahannya, ada email dari Salesforce yang kami pakai untuk relay
notifikasi email system di Salesforce.com yang tidak masuk ke kami. Kalau
saya cek log SMTP-IN ada sebagai berikut:

 

Mon 2022-01-17 13:18:55.236: --

Mon 2022-01-17 13:18:55.868: [05216177] Session 05216177; child 0004

Mon 2022-01-17 13:18:55.868: [05216177] Accepting SMTP connection from
35.73.31.4:39197 to 117.102.89.155:25

Mon 2022-01-17 13:18:55.869: [05216177] --> 220 mail.mandau.id ESMTP MDaemon
20.0.4; Mon, 17 Jan 2022 13:18:55 +0700

Mon 2022-01-17 13:18:55.972: [05216177] <-- EHLO
smtp-0c0c79fd4c97b76be.core1.sfdc-mchho0.mta.salesforce.com

Mon 2022-01-17 13:18:55.978: [05216177] --> 250-mail.mandau.id Hello
smtp-0c0c79fd4c97b76be.core1.sfdc-mchho0.mta.salesforce.com [35.73.31.4],
pleased to meet you

Mon 2022-01-17 13:18:55.978: [05216177] --> 250-ETRN

Mon 2022-01-17 13:18:55.978: [05216177] --> 250-AUTH LOGIN CRAM-MD5 PLAIN

Mon 2022-01-17 13:18:55.978: [05216177] --> 250-8BITMIME

Mon 2022-01-17 13:18:55.978: [05216177] --> 250-ENHANCEDSTATUSCODES

Mon 2022-01-17 13:18:55.978: [05216177] --> 250 SIZE

Mon 2022-01-17 13:18:56.081: [05216177] <-- MAIL FROM:<>

Mon 2022-01-17 13:18:56.088: [05216177] Performing PTR lookup
(4.31.73.35.IN-ADDR.ARPA)

Mon 2022-01-17 13:18:56.292: [05216177] *  D=4.31.73.35.IN-ADDR.ARPA TTL=(5)
PTR=[smtp-0c0c79fd4c97b76be.core1.sfdc-mchho0.mta.salesforce.com]

Mon 2022-01-17 13:18:56.309: [05216177] *
D=smtp-0c0c79fd4c97b76be.core1.sfdc-mchho0.mta.salesforce.com TTL=(60)
A=[35.73.31.4]

Mon 2022-01-17 13:18:56.309: [05216177]  End PTR results

Mon 2022-01-17 13:18:56.310: [05216177] Performing IP lookup
(smtp-0c0c79fd4c97b76be.core1.sfdc-mchho0.mta.salesforce.com)

Mon 2022-01-17 13:18:56.312: [05216177] *
D=smtp-0c0c79fd4c97b76be.core1.sfdc-mchho0.mta.salesforce.com TTL=(60)
A=[35.73.31.4]

Mon 2022-01-17 13:18:56.312: [05216177]  End IP lookup results

Mon 2022-01-17 13:18:56.318: [05216177] Performing SPF lookup
(smtp-0c0c79fd4c97b76be.core1.sfdc-mchho0.mta.salesforce.com / 35.73.31.4)

Mon 2022-01-17 13:18:56.333: [05216177] *  Policy: v=spf1 a -all

Mon 2022-01-17 13:18:56.336: [05216177] *  Evaluating a: match

Mon 2022-01-17 13:18:56.336: [05216177] *  Result: pass

Mon 2022-01-17 13:18:56.336: [05216177]  End SPF results

Mon 2022-01-17 13:18:56.336: [05216177] --> 250 2.1.0 Sender OK

Mon 2022-01-17 13:18:56.438: [05216177] <-- RCPT TO:

Mon 2022-01-17 13:18:56.439: [05216177] Performing DNS-BL lookup (35.73.31.4
- connecting IP)

Mon 2022-01-17 13:18:56.457: [05216177] *  zen.spamhaus.org - passed

Mon 2022-01-17 13:18:56.457: [05216177]  End DNS-BL results

Mon 2022-01-17 13:18:56.458: [05216177] --> 250 2.1.5 Recipient OK

Mon 2022-01-17 13:18:56.561: [05216177] <-- DATA

Mon 2022-01-17 13:18:56.561: [05216177] --> 354 Enter mail, end with
.

Mon 2022-01-17 13:18:56.665: [05216177] Message size: 5929 bytes

Mon 2022-01-17 13:18:56.666: [05216177] Performing DKIM verification

Mon 2022-01-17 13:18:56.666: [05216177] *  File:
c:\mdaemon\queues\temp\md5001000622085.tmp

Mon 2022-01-17 13:18:56.666: [05216177] *  Message-ID:
<36.37.00532.05a05...@mx1-public-cloud.mta.salesforce.com>

Mon 2022-01-17 13:18:56.666: [05216177] *  Result: neutral

Mon 2022-01-17 13:18:56.666: [05216177]  End DKIM results

Mon 2022-01-17 13:18:56.669: [05216177] Performing DMARC processing

Mon 2022-01-17 13:18:56.669: [05216177] *  File:
c:\mdaemon\queues\temp\md5001000622085.tmp

Mon 2022-01-17 13:18:56.669: [05216177] *  Message-ID:
<36.37.00532.05a05...@mx1-public-cloud.mta.salesforce.com>

Mon 2022-01-17 13:18:56.669: [05216177] *  Author domain: salesforce.com

Mon 2022-01-17 13:18:56.669: [05216177] *  Organizational domain:
salesforce.com

Mon 2022-01-17 13:18:56.669: [05216177] *  Query domain:
_dmarc.salesforce.com

Mon 2022-01-17 13:18:56.669: [05216177] *Policy record (from cache):
v=DMARC1;p=reject;pct=100;fo=1;ruf=mailto:d...@ruf.agari.com,mailto:dmarc_ruf@e
maildefense.proofpoint.com;rua=mailto:d...@rua.agari.com,mailto:dmarc_rua@email
defense.proofpoint.com,mailto:dmarc_agg@vali.email

Mon 2022-01-17 13:18:56.674: [05216177] *  Verifying report recipient:
d...@rua.agari.com

Mon 2022-01-17 13:18:56.674: [05216177] *  Query domain:
salesforce.com._report._dmarc.rua.agari.com

Mon 2022-01-17 13:18:56.678: [05216177] *Policy record: v=DMARC1

Mon 2022-01-17 13:18:56.679: [05216177] *Recipient d...@rua.agari.com is
verified

Mon 2022-01-17 13:18:56.684: [05216177] *  Verifying report recipient:
dmarc_...@emaildefense.proofpoint.com

Mon 2022-01-17 13:18:56.684: [05216177] *  Query domain:
salesforce.com._report._dmarc.emaildefense.proofpoint.com

Mon 2022-01-17 13:18:56.686: [05216177] *Policy record: v=DMARC1;

Mon 2022-01-17 13:18:56.686: [05216177] *Recipient
dmarc_...@emaildefense.proofpoint.com is verified

Mon 2022-01-17 13:18:56.689: [05216177] *  Verifying report recipient:
dmarc_agg@vali.email

Mon 2022-01-17 

[Mdaemon-L] Socket error 10040 - Message is too long

[Sony Aditya]

Selamat siang Pak Syafril,

 

Mohon informasi dan arahannya terkait error message sesuai log berikut:

 

Mon 2022-01-17 13:14:43.785: 01: --

Mon 2022-01-17 13:17:18.116: 05: [01097993] Session 01097993; child 0001

Mon 2022-01-17 13:17:18.116: 05: [01097993] Accepting SMTP connection from
208.87.221.26:50294 to 10.0.1.2:25

Mon 2022-01-17 13:17:18.116: 07: [01097993] Location Screen says connection
is from United States, North America

Mon 2022-01-17 13:17:18.118: 03: [01097993] --> 220 mail.richtex.co.id ESMTP
Mon, 17 Jan 2022 13:17:18 +0700

Mon 2022-01-17 13:17:18.424: 02: [01097993] <-- EHLO smtp2.gtnexus.com

Mon 2022-01-17 13:17:18.432: 01: [01097993] EHLO/HELO response delayed 3
seconds

Mon 2022-01-17 13:17:21.433: 03: [01097993] --> 250-mail.richtex.co.id Hello
smtp2.gtnexus.com [208.87.221.26], pleased to meet you

Mon 2022-01-17 13:17:21.433: 03: [01097993] --> 250-ETRN

Mon 2022-01-17 13:17:21.433: 07: [01097993] Location Screening hiding AUTH
from country United States, North America

Mon 2022-01-17 13:17:21.433: 03: [01097993] --> 250-8BITMIME

Mon 2022-01-17 13:17:21.433: 03: [01097993] --> 250-ENHANCEDSTATUSCODES

Mon 2022-01-17 13:17:21.433: 03: [01097993] --> 250-PIPELINING

Mon 2022-01-17 13:17:21.433: 03: [01097993] --> 250-CHUNKING

Mon 2022-01-17 13:17:21.433: 03: [01097993] --> 250-STARTTLS

Mon 2022-01-17 13:17:21.433: 03: [01097993] --> 250 SIZE 2048

Mon 2022-01-17 13:17:21.650: 02: [01097993] <-- STARTTLS

Mon 2022-01-17 13:17:21.651: 03: [01097993] --> 220 2.7.0 Ready to start TLS

Mon 2022-01-17 13:17:22.101: 01: [01097993] SSL negotiation successful (TLS
1.2, 384 bit key exchange, 256 bit AES encryption)

Mon 2022-01-17 13:17:22.316: 02: [01097993] <-- EHLO smtp2.gtnexus.com

Mon 2022-01-17 13:17:22.321: 03: [01097993] --> 250-mail.richtex.co.id Hello
smtp2.gtnexus.com [208.87.221.26], pleased to meet you

Mon 2022-01-17 13:17:22.321: 03: [01097993] --> 250-ETRN

Mon 2022-01-17 13:17:22.321: 07: [01097993] Location Screening hiding AUTH
from country United States, North America

Mon 2022-01-17 13:17:22.321: 03: [01097993] --> 250-8BITMIME

Mon 2022-01-17 13:17:22.321: 03: [01097993] --> 250-ENHANCEDSTATUSCODES

Mon 2022-01-17 13:17:22.321: 03: [01097993] --> 250-PIPELINING

Mon 2022-01-17 13:17:22.321: 03: [01097993] --> 250-CHUNKING

Mon 2022-01-17 13:17:22.321: 03: [01097993] --> 250-REQUIRETLS

Mon 2022-01-17 13:17:22.321: 03: [01097993] --> 250 SIZE 2048

Mon 2022-01-17 13:17:22.539: 02: [01097993] <-- MAIL
FROM: SIZE=5047

Mon 2022-01-17 13:17:22.552: 09: [01097993] Performing SPF lookup
(smtp2.gtnexus.com / 208.87.221.26)

Mon 2022-01-17 13:17:22.659: 09: [01097993] *  Result: none; no SPF record
in DNS

Mon 2022-01-17 13:17:22.659: 09: [01097993]  End SPF results

Mon 2022-01-17 13:17:22.659: 09: [01097993] Performing SPF lookup
(infornexus.com / 208.87.221.26)

Mon 2022-01-17 13:17:22.827: 04: [01097993] *  Socket error 10040 - Message
is too long.

Mon 2022-01-17 13:17:22.828: 04: [01097993] *  Socket error 10040 - Message
is too long.

Mon 2022-01-17 13:17:22.829: 04: [01097993] *  Socket error 10040 - Message
is too long.

Mon 2022-01-17 13:17:22.830: 04: [01097993] *  Socket error 10040 - Message
is too long.

Mon 2022-01-17 13:17:22.830: 04: [01097993] *  Socket error 10040 - Message
is too long.

Mon 2022-01-17 13:17:22.831: 04: [01097993] *  Socket error 10040 - Message
is too long.

Mon 2022-01-17 13:17:22.831: 09: [01097993] *  Result: none; no SPF record
in DNS

Mon 2022-01-17 13:17:22.831: 09: [01097993]  End SPF results

Mon 2022-01-17 13:17:22.831: 03: [01097993] --> 250 2.1.0 Sender OK

Mon 2022-01-17 13:17:23.074: 02: [01097993] <-- RCPT
TO:

Mon 2022-01-17 13:17:23.081: 05: [01097993] Performing DNS-BL lookup
(208.87.221.26 - connecting IP)

Mon 2022-01-17 13:17:23.110: 05: [01097993] *  zen.spamhaus.org - passed

Mon 2022-01-17 13:17:23.377: 05: [01097993] *  b.barracudacentral.org -
passed

Mon 2022-01-17 13:17:23.474: 05: [01097993] *  bl.spamcop.net - passed

Mon 2022-01-17 13:17:23.732: 05: [01097993] *  truncate.gbudb.net - passed

Mon 2022-01-17 13:17:23.765: 05: [01097993] *  cbl.abuseat.org - passed

Mon 2022-01-17 13:17:23.991: 05: [01097993] *  spam.dnsbl.sorbs.net - passed

Mon 2022-01-17 13:17:24.202: 05: [01097993] *  dnsbl-1.uceprotect.net -
passed

Mon 2022-01-17 13:17:24.202: 05: [01097993]  End DNS-BL results

Mon 2022-01-17 13:17:24.206: 03: [01097993] --> 250 2.1.5 Recipient OK

Mon 2022-01-17 13:17:24.420: 02: [01097993] <-- DATA

Mon 2022-01-17 13:17:24.424: 03: [01097993] --> 354 Enter mail, end with
.

Mon 2022-01-17 13:17:24.852: 01: [01097993] Message size: 6791 bytes

Mon 2022-01-17 13:17:24.854: 10: [01097993] Performing DKIM verification

Mon 2022-01-17 13:17:24.854: 10: [01097993] *  File:
d:\mdaemon\queues\temp\49\md500100019.tmp

Mon 2022-01-17 13:17:24.854: 10: [01097993] *  Message-ID:
<1238337298.1642400215686.Mail.Server@TradeCard>

Mon 2022-01-17 13:17:24.891: 10: [01097993] * 

[Mdaemon-L] 501 5.7.0 Domain must resolve

[Syafril Hermansyah via Mdaemon-L]

Pada 17/01/22 11.58, Bonar Gultom via Mdaemon-L menulis:
Ada user lapor tidak bisa terima email dari salah satu domain luar. 
Lognya sebagai berikut:




Sun 2022-01-16 20:14:56.718: [458050] --> 250-mail.ciputra.co.id Hello 
smtp.maxindo.net [150.129.18.34], pleased to meet you
Sun 2022-01-16 20:14:56.916: [458050] Performing PTR lookup 
(34.18.129.150.IN-ADDR.ARPA)
Sun 2022-01-16 20:14:56.938: [458050] *  D=34.18.129.150.IN-ADDR.ARPA TTL=(240) 
PTR=[smtp.maxindo.net]
Sun 2022-01-16 20:14:57.134: [458050] *  D=smtp.maxindo.net TTL=(1) 
A=[43.247.37.99]
Sun 2022-01-16 20:14:57.134: [458050] *  MDaemon configured to drop connection 
on PTR record mismatch



Mohon info nya apakah perlu update PTR record?



Ya.
Sudah diupdate ke

http://ftp.dutaint.com/altn-mdaemon/miscl/ReverseXcpt.dat

BTW. Itu DNS resolver pakai IP berapa?
Kok hasilnya beda dengan hasil resolve public DNS.

$ host 150.129.18.34 8.8.8.8
Using domain server:
Name: 8.8.8.8
Address: 8.8.8.8#53
Aliases:

34.18.129.150.in-addr.arpa domain name pointer smtp02.prod.maxindo.net.

$ host 150.129.18.34 1.1.1.1
Using domain server:
Name: 1.1.1.1
Address: 1.1.1.1#53
Aliases:

34.18.129.150.in-addr.arpa domain name pointer smtp02.prod.maxindo.net.


--
syafril

Syafril Hermansyah
MDaemon-L Moderators, running MDaemon 21.5.2 64 bit Beta B
Harap tidak cc: atau kirim ke private mail untuk masalah MDaemon.

Competition is the keen cutting edge of business, always shaving away at 
costs.

--- Henry Ford


--
--[mdaemon-l]--
Milis ini untuk Diskusi antar pengguna MDaemon Mail Server di Indonesia

Netiket: https://wiki.openstack.org/wiki/MailingListEtiquette
Arsip: http://mdaemon-l.dutaint.com
Dokumentasi : http://mdaemon.dutaint.co.id
Berlangganan: Kirim mail ke mdaemon-l-subscr...@dutaint.com
Henti Langgan: Kirim mail ke mdaemon-l-unsubscr...@dutaint.com
Versi terakhir: MDaemon 21.5.1, SecurityGateway 8.0.4

[Mdaemon-L] 501 5.7.0 Domain must resolve

[Bonar Gultom via Mdaemon-L]

Dear Pak Syafril,

Ada user lapor tidak bisa terima email dari salah satu domain luar. Lognya 
sebagai berikut:

Sun 2022-01-16 20:14:54.488: [458050] Session 458050; child 0006
Sun 2022-01-16 20:14:54.488: [458050] Accepting SMTP connection from 
150.129.18.34:50964 to 172.16.10.10:25
Sun 2022-01-16 20:14:54.488: [458050] --> 220 mail.ciputra.co.id ESMTP MDaemon 
17.5.3; Sun, 16 Jan 2022 20:14:54 +0700
Sun 2022-01-16 20:14:54.492: [458050] <-- EHLO smtp.maxindo.net
Sun 2022-01-16 20:14:54.492: [458050] Performing SPF lookup (smtp.maxindo.net / 
150.129.18.34)
Sun 2022-01-16 20:14:56.718: [458050] *  Result: none; no SPF record in DNS
Sun 2022-01-16 20:14:56.718: [458050]  End SPF results
Sun 2022-01-16 20:14:56.718: [458050] --> 250-mail.ciputra.co.id Hello 
smtp.maxindo.net [150.129.18.34], pleased to meet you
Sun 2022-01-16 20:14:56.718: [458050] --> 250-ETRN
Sun 2022-01-16 20:14:56.718: [458050] --> 250-AUTH LOGIN CRAM-MD5 PLAIN
Sun 2022-01-16 20:14:56.718: [458050] --> 250-8BITMIME
Sun 2022-01-16 20:14:56.718: [458050] --> 250-ENHANCEDSTATUSCODES
Sun 2022-01-16 20:14:56.718: [458050] --> 250-STARTTLS
Sun 2022-01-16 20:14:56.718: [458050] --> 250 SIZE 2560
Sun 2022-01-16 20:14:56.721: [458050] <-- STARTTLS
Sun 2022-01-16 20:14:56.722: [458050] --> 220 2.7.0 Ready to start TLS
Sun 2022-01-16 20:14:56.792: [458050] SSL negotiation successful (TLS 1.2, 521 
bit key exchange, 256 bit AES encryption)
Sun 2022-01-16 20:14:56.842: [458050] <-- EHLO smtp.maxindo.net
Sun 2022-01-16 20:14:56.842: [458050] Performing SPF lookup (smtp.maxindo.net / 
150.129.18.34)
Sun 2022-01-16 20:14:56.909: [458050] *  Result: none; no SPF record in DNS
Sun 2022-01-16 20:14:56.909: [458050]  End SPF results
Sun 2022-01-16 20:14:56.909: [458050] --> 250-mail.ciputra.co.id Hello 
smtp.maxindo.net [150.129.18.34], pleased to meet you
Sun 2022-01-16 20:14:56.909: [458050] --> 250-ETRN
Sun 2022-01-16 20:14:56.909: [458050] --> 250-AUTH LOGIN CRAM-MD5 PLAIN
Sun 2022-01-16 20:14:56.909: [458050] --> 250-8BITMIME
Sun 2022-01-16 20:14:56.909: [458050] --> 250-ENHANCEDSTATUSCODES
Sun 2022-01-16 20:14:56.909: [458050] --> 250 SIZE 2560
Sun 2022-01-16 20:14:56.916: [458050] <-- MAIL FROM: 
SIZE=43614 BODY=7BIT
Sun 2022-01-16 20:14:56.916: [458050] Performing PTR lookup 
(34.18.129.150.IN-ADDR.ARPA)
Sun 2022-01-16 20:14:56.938: [458050] *  D=34.18.129.150.IN-ADDR.ARPA TTL=(240) 
PTR=[smtp.maxindo.net]
Sun 2022-01-16 20:14:57.134: [458050] *  D=smtp.maxindo.net TTL=(1) 
A=[43.247.37.99]
Sun 2022-01-16 20:14:57.134: [458050] *  MDaemon configured to drop connection 
on PTR record mismatch
Sun 2022-01-16 20:14:57.134: [458050]  End PTR results
Sun 2022-01-16 20:14:57.134: [458050] --> 501 5.7.0 Domain must resolve
Sun 2022-01-16 20:14:57.135: [458050] SMTP session terminated (Bytes in/out: 
1034/5949)

Mohon info nya apakah perlu update PTR record?

Terima kasih.

Best Regards,

Bonar Gultom

--
--[mdaemon-l]--
Milis ini untuk Diskusi antar pengguna MDaemon Mail Server di Indonesia

Netiket: https://wiki.openstack.org/wiki/MailingListEtiquette
Arsip: http://mdaemon-l.dutaint.com
Dokumentasi : http://mdaemon.dutaint.co.id
Berlangganan: Kirim mail ke mdaemon-l-subscr...@dutaint.com
Henti Langgan: Kirim mail ke mdaemon-l-unsubscr...@dutaint.com
Versi terakhir: MDaemon 21.5.1, SecurityGateway 8.0.4