Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 12 replies
  • Subscribers 1 subscriber
  • Views 3450 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

E-mail suddenly gone missing

white94cobra
Running ASG 220 v7.402 using SMTP for E-mail.  Several users have complained that they are not receiving E-mails from outside sources.  I tested with one of the outside sources and we can receive no E-mail from them unless we add them to the exception list (currently excluding ALL tests).  What's strange is there is no log at all of a connection attempt from the outside mail server in the SMTP log.  It's like the delivery attempt was never made - or Astaro ignored it completely.  Ideas?  Thanks.


This thread was automatically locked due to age.
Parents
  • 0
    What message does the sender receive in the non-delivery notification?
     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
  • 0 in reply to BAlfson
    What message does the sender receive in the non-delivery notification?


    They do not receive any indication that the delivery failed.  We just tested again and I can see the internal->external E-mail being delivered in our SMTP log, but his response is no where to be found.
Reply
  • 0 in reply to BAlfson
    What message does the sender receive in the non-delivery notification?


    They do not receive any indication that the delivery failed.  We just tested again and I can see the internal->external E-mail being delivered in our SMTP log, but his response is no where to be found.
Children
  • 0 in reply to white94cobra
    It may take two days, depending on their mail server.  Can you ask the admin of the other mail server what he sees?
     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
  • 0 in reply to BAlfson
    I checked with the other individual I tested with a few weeks ago.  I sent them E-mails every other day for about a week but never got a reply.  I finally called to see why they were ignoring me and they indicated they replied to every E-mail.  We then started testing and only when I added them to the exceptions list did the E-mails start coming through.  No logs at all on our end and no NDR on their end.  We tested over two weeks ago and they never received an NDR.
  • 0 in reply to white94cobra
    No NDR? - that shouldn't be.  It would be interesting to eliminate exception items one by one until the exception failed so we could see if a single exception worked.  I would expect RDNS/HELO or Dialup Host Check, but that should be in the log.  Very strange unless the other mail server is mis-configured.
     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
  • 0 in reply to BAlfson
    We sent sequences of test E-mails, adding an exclude each time.  It turns out it was Greylisting causing the issue.  With it enabled we don't get the E-mails and there is nothing in the SMTP log.  With Greylisting disabled we get the E-mails (in fact all of the prior failed tests came in within a minute or so).  Once we identified Greylisting, we tested multiple times with it on/off.  Each time it was on we received no E-mails.  

    Greylisting is now turned off.
  • 0 in reply to white94cobra
    If the other server is Exchange, ask them if the emails reappear when they restart the SMTP service.  Still, it's strange that the Astaroo's SMTP logs didn't show the greylisting...

    Cheers - Bob
     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
  • 0 in reply to BAlfson
    If the other server is Exchange, ask them if the emails reappear when they restart the SMTP service.  Still, it's strange that the Astaroo's SMTP logs didn't show the greylisting...

    Cheers - Bob


    I'm not sure I follow...  The other server as in the outside recipient's server?  E-mails reappear as in the NDR shows up?

    After turning off Greylisting we have had a few other employees indicate they are suddenly getting E-mails from outside sources they thought were ignoring them.  The problem was not isolated to one or two organizations.

    Thanks.
  • 0 in reply to white94cobra
    Apparently, some installations of Exchange 2003 R2 have had this problem. FWIW, I also turn Greylisting off for all of my clients, although I know some very smart people here who swear by it.

    Cheers -Bob
     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
  • 0 in reply to BAlfson
    Apparently, some installations of Exchange 2003 R2 have had this problem. FWIW, I also turn Greylisting off for all of my clients, although I know some very smart people here who swear by it.

    Cheers -Bob


    Hi,

    There is a bug in Exchange server 2003 related to greylisting. We had the same issues and followed Microsoft KB950757. 

    E-mail senders do not receive an indication that some messages have been held by Exchange Server 2003 until the SMTP service, the Microsoft Exchange Information Store service, or the Exchange server is restarted

    You can apply this patch to your system, but I think it would difficult to tell administrators of other domains sending you emails that they need to patch theirs as well. You only option is to turn off greylisting completely or add those domains having trouble to your exception list.

    Take care, Julio
  • 0 in reply to rxjules
    I've found Greylisting to be unnecessary for my customers;  it's just too problematic to implement.. Not Astaro's fault, the mechanism itself just causes problems with some remote mail systems.  The CommTouch and RBL lookups seem to be doing a good job.

    CTO, Convergent Information Security Solutions, LLC

    https://www.convergesecurity.com

    Advice given as posted on this forum does not construe a support relationship or other relationship with Convergent Information Security Solutions, LLC or its subsidiaries.  Use the advice given at your own risk.

Cookie Information Banner