Page 2 of 2 FirstFirst 12
Results 11 to 13 of 13

Thread: Non-Resolving HELO names

  1. #11
    LMStone's Avatar
    LMStone is offline Moderator
    Join Date
    Sep 2006
    Location
    477 Congress Street | Portland, ME 04101
    Posts
    1,367
    Rep Power
    10

    Default

    Quote Originally Posted by uxbod View Post
    So much for having standards then Mark And I do take your comments on board and have seen similar but otherwise how do companies learn.
    Well, I hear what you are saying and in principle generally agree. But standards do (and IMHO should) evolve to accommodate changes in technology and the marketplace.

    At a time when most folks ran their own mailservers, I think strict adherence to this standard made good sense for a number of reasons. Certainly in years past we ourselves made hundreds of calls and emails to email admins whose systems didn't HELO to match their MX.

    Today, strict adherence to this standard is nigh impossible for large complex mail systems, like those of large ISPs and outsourced providers like Postini.

    Plus, the tradeoffs are actually beneficial IMHO for large systems NOT to adhere to these standards.

    Consider a large ISP whose gateway MX is "smtp.isp.com". In reality, that's just a load balancing proxy for a dozen email servers behind it, e.g. "mail1.isp.com" etc.

    For the ISP, without the load balancing proxy, they'd need to set up a dozen MX records for every domain they host.

    For systems sending email to any of the ISP's mail servers, if one of the ISP's mail servers is overloaded, the sending mail server gets loaded too waiting for a timeout, then has to do another DNS lookup to find the next MX record, and then try again. Of course, at that point, every other sending email server is doing the same thing and so that specific ISP's MX now gets overloaded. Mail flow slows, the ISP's mail servers are underutilized collectively, and sending mail servers are overloaded with unnecessary timeouts and extra DNS lookups.

    Then too, adding or deleting mail servers to/from the ISP's farm requires a gazillion changes to public DNS without a load balancing proxy. It gets a little hairy...

    One key goal of the original requirement for MX/HELO matching was to ensure that we all knew for sure that the mail server we were trying to reach was the mail server we actually wound up talking to. This was long before spam volumes made things like valid recipient checking mandatory (remember how we all used to have "catchall" addresses as a matter of course?). And this was also at a time when many DNS "servers" were nothing more than the /etc/hosts file!

    Nowadays, most mail servers will only accept mail for valid recipients, so if we as a sending server wound up talking to the wrong mail server, we'd get an NDR anyway.

    So, the need to correctly identify a mail server driving this requirement originally has diminished greatly; changes in technology make adhering to this requirement nigh impossible for large systems (and in some cases results in better resource utilization too for both sender and receiver), and; we have lots more effective tools in our arsenal for screening spam without generating the false positives that this test will.

    In other words, while I am generally a proponent of standards adherence, this standard needs to catch up with the world as it exists now IMHO.

    Hope that helps,
    Mark

  2. #12
    bhwong is offline Elite Member
    Join Date
    Feb 2009
    Location
    Singapore
    Posts
    494
    Rep Power
    6

    Default

    Thanks Mark for providing us with an good insight of this issue with huge ISPs. Tiny ISPs have the opposite problem with standards... sharing 1 IP with multiple domains, ensuring that domain and IP will not match up except for 1... :P

  3. #13
    rwcanary is offline Loyal Member
    Join Date
    Jun 2007
    Posts
    86
    Rep Power
    8

    Default

    Its not my clients MTA causing the issue, it is my client's client. Something I have no control.
    Robert Canary
    OCDirect Electrical-Datacomm

Page 2 of 2 FirstFirst 12

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Similar Threads

  1. Replies: 2
    Last Post: 10-06-2009, 05:53 AM
  2. Remove Account names from GAL
    By g8se in forum Administrators
    Replies: 6
    Last Post: 05-25-2009, 01:38 AM
  3. DNS ERROR resolving ... mewbie
    By ThePulse in forum Installation
    Replies: 11
    Last Post: 09-10-2008, 10:58 AM
  4. zmmailbox and spaces in folder names
    By badrian in forum Administrators
    Replies: 2
    Last Post: 06-28-2007, 11:26 AM
  5. 3 Domain Names .. Single Account
    By freeformz in forum Administrators
    Replies: 1
    Last Post: 03-12-2007, 10:58 PM

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •