Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 16 replies
  • Subscribers 1 subscriber
  • Views 10147 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

SMPT log error message

James Shakour
I am seeing the following error and i'm not sure what it means...


2010:04:19-00:10:39 smtp1-1 exim[21418]: 2010-04-19 00:10:39 id="1003" severity="info" sys="SecureMail" sub="smtp" name="email rejected" srcip="123.20.53.244" from="ofl00%40wetlands-engineering.com" to="elliott%40na.omgi.com" size="-1" reason="rdns_helo" extra="RDNS missing"
2010:04:19-00:10:39 smtp1-1 exim[21418]: 2010-04-19 00:10:39 H=(EJJDUALI) [123.20.53.244]:31443 F= rejected RCPT : No RDNS entry for 123.20.53.244
2010:04:19-00:10:39 smtp1-1 exim[21418]: 2010-04-19 00:10:39 SMTP connection from (EJJDUALI) [123.20.53.244]:31443 closed by DROP in ACL


Thoughts?


This thread was automatically locked due to age.
  • 0
    Jshakour - This is a big concern of ours, seems some things are being rejected with RDNS when they should not be, is there a problem with open dns ?
  • 0 in reply to AstaroArnold
    Welcome to the boards double A,

    I was told by Astaro to use Open DNS for my DNS forwarders. Im not sure how to tell if Open DNS would be causing the issue, we would have to change the forwarder to a different and watch the logs.
  • 0
    James when you upgrade to ASG v7.300 ?  looks like it was introduced at that time.


    [:)]Astaro Up2Date Announcements: Up2Date ASG V7.300 GA Release
  • 0
    If your still on 7.300, your next step is to update to the most recent release version which is 7.504.  If using up2date, you'll have to update in increments until you get current.
     
    If you don't want to do that, you can create exceptions to skip rDNS checks for specific domains/senders/recipients to be granular or turn off the "Reject invalid HELO / missing RDNS" feature altogether (not recommended).
     
    What it comes down to is that rDNS problems are that almost always at the senders end (either due to recent DNS change or ISP/DNS provider misconfiguration), which you have no control over so the best you can do is to is to bypass that check.
    __________________
    ACE v8/SCA v9.3

    ...still have a v5 install disk in a box somewhere.

    http://xkcd.com
    http://www.tedgoff.com/mb
    http://www.projectcartoon.com/cartoon/1
  • 0
    A client and we experienced a similar issue last year.  It seems that this phenomenon is a result of your ISP doing DNS hijacking.  The way the RBL works is that it resolves the request when when the IP is blacklisted.  When your ISP's nameserver returns a valid IP, the Astaro assumes the email is from a blacklisted IP.  OpenDNS is "RBL friendly" and should not cause these problems.

    When I complained to the local Cox technicians, it seemed from their subsequent commentary that they had gotten their knuckles rapped when they escalated my issue to Atlanta.  I have no complaints with Cox; they aren't uniqu among large ISPs in doing DNS hijacking to be able to do a little advertising.

    Cheers - Bob
     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
Cookie Information Banner