12-21-2012 03:26 AM
We have configured a ESA for a customer whose appliance was broken down because of a software problem and being replaced with a new one by cisco.
Today we have a big problem about Reverse DNS. When they send email to their customers, the remote mail servers reject their messages. I double check the configuration and haven’t found anything. If we route mail traffic over exchange instead of ironport, there aren’t any problem. The broken device worked about 6 months without being connected. Also, the remote server sends a message like:
Diagnostic information for administrators:
Generating server: mail.xyz.com.tr
abc@test.com.tr
[89.19.0.217] #<[89.19.0.217] #5.0.0 smtp; 5.1.0 - Unknown address error 554-'This server requires PTR for unauthenticated connections.' (delivery attempts: 0)> #SMTP#
Has anyone come across this type of problem or error code?
12-21-2012 03:52 AM
Please check the IP address from which the mail is being delivered to the remote server. This address might differ when the mail is routed through the exchange and through IronPort.
Most probably, the issue could be because of PTR record of the IP address( that IronPort is using to send the mail) is not registered in the DNS or it is not matching with the domain name. Was there any change in the Network configuration on the new ESA compared to the broken down ESA?
12-21-2012 05:15 AM
Thanks for the response. The problem should be originated from wrong PTR record I think and I told that to the customer. There isn't any configuration change in both ESAs but nat was made by customer newly.
12-21-2012 06:35 AM
I guess adding NAT recently explains it. May be the customer can try to fix it by updating the DNS entries with the NAT IP address or skip NATting for the mails(packets) having source IP address as the IP address of the IronPort (provided the IP configured to IronPort is a public IP address).
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide