Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 23 replies
  • Subscribers 1 subscriber
  • Views 10208 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

V8 RBLs

JonEtkins
Looking at the SMTP Log in Mail Manager on my newly-upgraded ASG V8, I see RBL rejection messages citing black.rbl.ctipd.astaro.local and grey.rbl.ctipd.astaro.local.  I presume these are composite RBLs used internally by the ASG, but my question is: if a valid recipient finds himself being rejected, how can he (or I) now find out which actual RBL caused the rejection?


This thread was automatically locked due to age.
Parents Reply Children
  • 0 in reply to JonEtkins
    Was it a false positive?  Some folks noted problems with the CommTouch RBL during the beta.

    CTO, Convergent Information Security Solutions, LLC

    https://www.convergesecurity.com

    Advice given as posted on this forum does not construe a support relationship or other relationship with Convergent Information Security Solutions, LLC or its subsidiaries.  Use the advice given at your own risk.

  • 0 in reply to JonEtkins
    Never mind - I looked more closely at the SMTP log and I can see that the underlying RBL is referenced in the reject message.


    How did you find the underlying RBL. I have non-spam mail being rejected by grey.rbl.ctipd.astaro.local, I assume the local copy of the RBL is actually take from other sources, however when I check the incoming email IP against a blacklist checker it doesn't find it listed.

    This also leads to my next question of how often are the local copies of the RBL updated? Can you trying off the local RBL and just use the external reference list?
  • 0 in reply to Lemo
    How did you find the underlying RBL. I have non-spam mail being rejected by grey.rbl.ctipd.astaro.local
    I should have mentioned earlier, the answer lies in the real SMTP log, not the glossy expurgated version visible on the Mail Manager page.
    2010:08:02-10:16:12 astaro exim[4956]: 2010-08-02 10:16:12 SMTP connection from [205.162.42.155]:40419 (TCP/IP connection count = 2)
    2010:08:02-10:16:13 astaro exim[27147]: 2010-08-02 10:16:13 id="1003" severity="info" sys="SecureMail" sub="smtp" name="email rejected" srcip="205.162.42.155" from="TechTarget%40techtargetlists.com" to="***%40snikte.net" size="-1" reason="rbl" extra="grey.rbl.ctipd.astaro.local"
    2010:08:02-10:16:13 astaro exim[27147]: 2010-08-02 10:16:13 H=techtargetlists.com [205.162.42.155]:40419 F= temporarily rejected RCPT : Delivery from 205.162.42.155 is deferred. Send again or check at Check IP Reputation | Commtouch - Messaging and Web Security Technology. Reference code: tid=0001.0A090302.4C56E13D.00EA
    2010:08:02-10:16:13 astaro exim[27147]: 2010-08-02 10:16:13 unexpected disconnection while reading SMTP command from techtargetlists.com [205.162.42.155]:40419
Cookie Information Banner