08-10-2020 07:11 AM
Hello,
I'm having constant bounces on ESA with following log entries:
Mon Aug 10 06:38:20 2020 Info: New SMTP DCID 3186430 interface <suppressed> address <suppressed> port 25
Mon Aug 10 06:38:20 2020 Info: Delivery start DCID 3186430 MID 12410025 to RID [0]
Mon Aug 10 06:38:23 2020 Info: Delayed: DCID 3186430 MID 12410025 to RID 0 - 4.1.0 - Unknown address error ('450', ['4.1.8 <iwogpood@bhoxporg.cn>: Sender address rejected: Domain not found']) []
Mon Aug 10 06:38:28 2020 Info: DCID 3186430 close
Such messages are being delayed a few times and just bounced afterwards. However, in my case all these emails should be accepted and processed. I checked all mail policies and ensured that "Envelope Sender DNS Verification" is disabled. One more thing to mention - all senders have different addresses. I need just to accept such emails somehow but I can't figure out how to do that. Does someone have any ideas?
Thanks,
Andrii
Solved! Go to Solution.
08-10-2020 08:34 AM
What the HAT is being triggered, go to the MAIL FLOW policy for that for that sender is triggered on, and scroll down to Sender Verification.
See if this is enabled.
08-10-2020 07:25 AM
Andrii,
That is bouncing because that domain does not exist.
'4.1.8 <iwogpood@bhoxporg.cn>: Sender address rejected: Domain not found']
https://www.whatsmydns.net/#A/bhoxporg.cn
https://talosintelligence.com/reputation_center/lookup?search=bhoxporg.cn
If you resolve this internally, make sure that the ESA points to the correct DNS server, and that it resolves correctly. If it does resolve internally, make sure an MX record is published.
08-10-2020 07:36 AM
Hi Jared,
Thank you for the reply. Yes, the domain does not exist but the point is that I do need emails that come with invalid domains in "From" field. So the question is how to accept messages with unknown addresses (they are absolutely random).
Thanks,
Andrii
08-10-2020 07:51 AM
08-10-2020 07:55 AM
Can you verify the HAT sender group its hitting, then verify the Sender group settings for this IP/hostname.
In those settings if the 'Connecting host PTR record does not exist in DNS.' is checked, it might be dropping it there.
08-10-2020 08:34 AM
What the HAT is being triggered, go to the MAIL FLOW policy for that for that sender is triggered on, and scroll down to Sender Verification.
See if this is enabled.
08-10-2020 08:49 AM
08-11-2020 02:10 AM
Jared, Ken,
Thank you for replies. I've added a few sender addresses to HAT and bounce rate got decreased. Although my issue isn't 100% solved, the overall situation is acceptable.
Thanks,
Andrii
 
					
				
				
			
		
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide