Page 1 of 2 12 LastLast
Results 1 to 10 of 20

Thread: Not receiving from given domain

  1. #1
    jrefl5 is offline Advanced Member
    Join Date
    Nov 2007
    Location
    AZ, USA
    Posts
    205
    Rep Power
    7

    Question Not receiving from given domain

    Trying to understan what is going inorder to clean up.

    When we have zimbraMtaRestrictions set to:
    reject_invalid_hostname
    reject_non_fqdn_hostname
    reject_non_fqdn_sender
    reject_unknown_client
    reject_unknown_hostname
    reject_unknown_sender

    e-mail from "anyone@somedepartment.tldomain" gets rejected.

    when zimbraMtaRestrictions is set to:
    reject_non_fqdn_hostname
    reject_non_fqdn_sender

    The e-mail is accepted and passed on to recievers mailbox.

    I'm trying to understan why gmail, yahoo, cox and other e-mail addresses work fine, but this one fails to pass through the filters

    Attached is the somewhat edited host, and dig request for the servers in question.

    Any help appearcited
    Attached Files Attached Files

  2. #2
    bonadio is offline Loyal Member
    Join Date
    Oct 2007
    Location
    Brazil
    Posts
    88
    Rep Power
    7

    Default

    This is probably because the machine (client) where you are sending
    the message dont have a DNS host name correctly configured.

    so postfix may be rejecting because the
    reject_unknown_client
    reject_unknown_hostname

    []s

  3. #3
    jrefl5 is offline Advanced Member
    Join Date
    Nov 2007
    Location
    AZ, USA
    Posts
    205
    Rep Power
    7

    Default

    bonadio,
    I have looked through the dig responses that I attached and I don't see where the problem is. If it is the sending servers dns entries are the problem then if I can explain the error to their personnel I can get it fixed.
    I don't wish to cause any bad feelings on the other end as I may be working for them soon and its an MS shop.

  4. #4
    Bill Brock is offline Outstanding Member
    Join Date
    May 2007
    Location
    Oklahoma
    Posts
    703
    Rep Power
    9

    Default

    try doing a reverse DNS lookup on the mail server.

    I use a tool called netscan tools to query DNS for domains.

    The rejected server probably has a problem with their DNS entries. Either MX is wrong or A record is wrong. I see this ever so often. A lot of folks think setting up a mail server is a walk in the park and don't learn the proper way to do it.

    If this is the case and the mail admin is reasonable, he should appreciate your input.

  5. #5
    jrefl5 is offline Advanced Member
    Join Date
    Nov 2007
    Location
    AZ, USA
    Posts
    205
    Rep Power
    7

    Default

    Quote Originally Posted by Bill Brock View Post
    try doing a reverse DNS lookup on the mail server.

    I use a tool called netscan tools to query DNS for domains.

    The rejected server probably has a problem with their DNS entries. Either MX is wrong or A record is wrong. I see this ever so often. A lot of folks think setting up a mail server is a walk in the park and don't learn the proper way to do it.

    If this is the case and the mail admin is reasonable, he should appreciate your input.
    I have run reverse DNS using for both the sending server, and receiving server's IP both look very much the same, not surprising as both are in the same subnets of the same organization. Both resolve to the owning orgs NameServers.

    What DNS records does zimbra use when validating sender address?
    Can I whitelist a domain to allow it through but still have it processed by spamassin and clamav?

  6. #6
    Bill Brock is offline Outstanding Member
    Join Date
    May 2007
    Location
    Oklahoma
    Posts
    703
    Rep Power
    9

    Default

    How about MX records? Are they setup properly in the DNS server?

    If both servers are on the same subnet their shouldn't be a problem. By default, Zimbra puts the subnet of the server in the trusted networks which you can check in the Admin GUI.

  7. #7
    Bill Brock is offline Outstanding Member
    Join Date
    May 2007
    Location
    Oklahoma
    Posts
    703
    Rep Power
    9

    Default

    Is "somedepartment.tldomain" a valid domain. ie. is there a zone file setup on the DNS server you are using for this domain?

  8. #8
    jrefl5 is offline Advanced Member
    Join Date
    Nov 2007
    Location
    AZ, USA
    Posts
    205
    Rep Power
    7

    Default

    Bill, thanks I just got back into the office this AM.

    How about MX records? Are they setup properly in the DNS server?

    If both servers are on the same subnet their shouldn't be a problem. By default, Zimbra puts the subnet of the server in the trusted networks which you can check in the Admin GUI.
    They are both on the same class b network. The zimbra server is behind a firewall that is doing nat to a 10.x.y.z address on our DMZ.
    I think that the sender has something "not quite right" in their DNS setup I just don't know DNS and zimbra well enough to figure out why the rejects occure.


    Quote Originally Posted by Bill Brock View Post
    Is "somedepartment.tldomain" a valid domain. ie. is there a zone file setup on the DNS server you are using for this domain?
    Yes, I have change both xxx.yyy form there actual values to somedepartment and tldomain. they both have MX records in DNS.

    James

  9. #9
    Bill Brock is offline Outstanding Member
    Join Date
    May 2007
    Location
    Oklahoma
    Posts
    703
    Rep Power
    9

    Default

    I know when behind a NAT firewall there is something called split-DNS that has to be enabled. I haven't had to use it because my servers have public IP's. Do a search for split DNS and see if that returns anything.

  10. #10
    phoenix is offline Zimbra Consultant & Moderator
    Join Date
    Sep 2005
    Location
    Vannes, France
    Posts
    23,491
    Rep Power
    56

    Default

    Regards


    Bill


    Acompli: A new adventure for Co-Founder KevinH.

Page 1 of 2 12 LastLast

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Similar Threads

  1. [SOLVED] Remove main domain!
    By zibra in forum Administrators
    Replies: 11
    Last Post: 09-27-2007, 08:50 AM
  2. domain coexistence
    By marcmac in forum Administrators
    Replies: 14
    Last Post: 06-30-2006, 01:19 PM
  3. Adding Domain
    By tbullock in forum Installation
    Replies: 2
    Last Post: 10-20-2005, 11:18 AM

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •