Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
2984
Views
10
Helpful
1
Replies

MAIL FROM - Rejected by ESA

pbabu6001
Level 1
Level 1

‎06-05-2017 11:04 AM

Please find the below error and suggest on how can I resolve this issue to allow emails from that sender. Where this check happens on the email flow?

81BEF444431: to=<user@zurichna.com>, relay=cdcma01.zurichna.com[206.22.69.10]:25, delay=4.6, delays=0/0/2/2.6, dsn=5.0.0, status=bounced (host cdcma01.zurichna.com[206.22.69.10] said: 553 #5.1.8 Domain of sender address <pgp-universal-admin@sa.worthaminsurance.com> does not exist (in reply to MAIL FROM command))

Thank you!

Labels:
0 Helpful
1 Reply 1

Libin Varghese
Cisco Employee
Cisco Employee

‎06-05-2017 11:32 AM

Hi,

AsyncOS performs an MX record query for the domain of the sender address. AsyncOS
then performs an A record lookup based on the result of the MX record lookup. If the DNS server returns “NXDOMAIN” (there is no record for this domain), AsyncOS treats that domain as non-existent. This falls into the category of “Envelope Senders whose domain does not exist.” NXDOMAIN can mean that the root name servers are not providing any authoritative name servers for this domain.


However, if the DNS server returns “SERVFAIL,” it is categorized as “Envelope Senders whose domain does not resolve.” SERVFAIL means that the domain does exist but DNS is having transient problems looking up the record.

This is enabled under Mail Policies -> Mail Flow Polices -> Select Policy -> Envelope Sender DNS Verification

This happens at the connection level and you would be locate corresponding details in the mail_logs.

Thank You!

Libin Varghese

Customers Also Viewed These Support Documents