Geekzone: technology news, blogs, forums
Guest
Welcome Guest.
You haven't logged in yet. If you don't have an account you can register now.


ForumsSpark New Zealand (including Skinny and BigPipe)Exchange mail non-delivery (Telecom to TelstraClear Endpoints, IP Reputation)
coffeenow

33 posts

Geek

ID Verified
Trusted

#100209 5-Apr-2012 09:50
Send private message

Hi

I have a couple of clients who host their own Exchange server (SBS 2008) and are experiencing a high number of non-deliveries and delay deliveries.

- They are on the Telecom network
- Fixed IP
- Exchange sending directly via DNS
- Most bounces/delays are to clear.net.nz or paradise.net.nz addresses (+ some other domains)
- Error messages suggest IP reputation as reason for rejection
- Delays seem to have occurred since Monday
- PTR record is default Telecom xxx-xxx-xxx-xxx.adsl.xtra.co.nz
- IP address does not appear to be blacklisted anywhere
- www.senderbase.org lists the IP reputation as poor (senderbase 

I've asked Telecom to change the PTR record to the mail URL for one of my sites but unsure if this will fix things.

- Is anyone experiencing similar problems with their Exchange server on the Telecom network?
- Has something changed resently at TCL or elsewhere?
- Is there a temporary workaround (is it possible to use send.xtra.co.nz as a smarthost?)
- How do restore the IP reputation?

Thanks in advance.

Tim

Create new topic
Brunzy
2016 posts

Uber Geek

Trusted

  #605582 5-Apr-2012 10:52
Send private message

I had a call am today from a client saying he had been trying to mail me for a few days and it kept getting returned.
I am with TC ( Paradise)



freitasm
BDFL - Memuneh
79266 posts

Uber Geek

Administrator
ID Verified
Trusted
Geekzone
Lifetime subscriber

  #605583 5-Apr-2012 10:55
Send private message

If you have a business and depends on email, do yourself a favour and DO NOT USE YOUR ISP'S EMAIL.

Register a domain (what's $20-$30 for a business when considering branding, reliability, etc?) and use a free option such as Windows Live Domains or Google Apps. Or go for a paid option such as Office 365 or Google Apps Enterprise.

I am sad to see people driving around in vans with a web site address and email below is "@xtra.co.nz" or "@paradise.net.nz". They stopped one step short of getting a better life.




Please support Geekzone by subscribing, or using one of our referral links: Samsung | AliExpress | Wise | Sharesies | Hatch | GoodSyncBackblaze backup

CYaBro
4583 posts

Uber Geek

ID Verified
Trusted

  #605588 5-Apr-2012 10:58
Send private message

freitasm: If you have a business and depends on email, do yourself a favour and DO NOT USE YOUR ISP'S EMAIL.

Register a domain (what's $20-$30 for a business when considering branding, reliability, etc?) and use a free option such as Windows Live Domains or Google Apps. Or go for a paid option such as Office 365 or Google Apps Enterprise.

I am sad to see people driving around in vans with a web site address and email below is "@xtra.co.nz" or "@paradise.net.nz". They stopped one step short of getting a better life.


Did you read the original post correctly?
They are using DNS to send their emails and as they are using Exchange they would have their own domain name and wouldn't be using their ISPs email.




Opinions are my own and not the views of my employer.



freitasm
BDFL - Memuneh
79266 posts

Uber Geek

Administrator
ID Verified
Trusted
Geekzone
Lifetime subscriber

  #605589 5-Apr-2012 10:59
Send private message

I was replying to Brunzy.




Please support Geekzone by subscribing, or using one of our referral links: Samsung | AliExpress | Wise | Sharesies | Hatch | GoodSyncBackblaze backup

coffeenow

33 posts

Geek

ID Verified
Trusted

  #605605 5-Apr-2012 11:13
Send private message

1) PTR

A reverse PTR record has been created and this hasn't resolved the issue (yet).

2) SPF

I've been through the MS Sender ID Framework SPF Record Wizard at http://www.microsoft.com/mscorp/safety/content/technologies/senderid/wizard/default.aspx and it's produced the SPF value "v=spf1 a mx ptr ~all".

I assume I add the SPF record in DNS with the following values:

Hostname: mail.domain.co.nz
Type: TXT
Value: v=spf1 a mx ptr ~all

3) Smarthost

Can I point an Exchange server at an Xtra smarthost?

send.xtra.co.nz? smtp.xtra.co.nz? SSL or not?

(Port 25 outbound has obviously been opened by Telecom for the server to be able send via DNS)

Sending via a smarthost would give me time to fix the IP reputation (if PTR + SPF is the solution)

Cheers

Tim

Oldhat
180 posts

Master Geek

Lifetime subscriber

  #605609 5-Apr-2012 11:24
Send private message

Using the standard xtra servers probably wouldn't be viable.

To use send.xtra.co.nz you would need to register each of the domain email addresses through the default account to be able to use send. If they only have a few (i.e. 5-10) it might be okay as a temporary workaround.

Using the xtra smtp server would possibly put you in the same boat as you are now. 

plambrechtsen
1948 posts

Uber Geek
Inactive user


  #605756 5-Apr-2012 15:27
Send private message

Could it be anything to do with this?

http://www.itnews.com.au/News/296066,having-trouble-sending-email.aspx


 
 
 
 

Shop now for Lenovo laptops and other devices (affiliate link).
coffeenow

33 posts

Geek

ID Verified
Trusted

  #605776 5-Apr-2012 15:40
Send private message

Good spotting! I think you've hit the nail on the head.

I checked the Cisco reputation site yesterday (www.senderbase.org) and it stated that my client's IP had a poor reputation. Today the site isn't working - I hope that by tomorrow everything will be back to normal.

Just about to get Domainz to add an SPF record so hopefully that won't create other issues.

Cheers

Tim

qraider
374 posts

Ultimate Geek


  #605835 5-Apr-2012 18:15
Send private message

plambrechtsen: Could it be anything to do with this?

http://www.itnews.com.au/News/296066,having-trouble-sending-email.aspx



That explains a lot - nice find, thank you.




Current Phone:
- Android: Samsung SM-G900F Galaxy S5 (XT)
- Win Phone 8: Samsung ATIV S (XT)

Current Tablet:

 

- Acer Iconia 7" Android Tablet

 

Twitter: qraider

coffeenow

33 posts

Geek

ID Verified
Trusted

  #606029 6-Apr-2012 10:34
Send private message

Everything looks to be back to normal.

- outbound mail queues on the Exchange servers have cleared
- SenderBase IP reputation scores are now "Neutral"
- senderbase.org website is extremely slow today
- appears to have affected domains registered with MelbourneIT/Domainz

So the problem does look like it was a Cisco screw up that's now been fixed. 5-6 days later.

As a result of this one of my clients now has:

- a Telecom-configured Reverse MX A record (PTR) pointing to their mail server
- an SPF TXT record validating their mail server (v=spf1 a mx ptr ~all)

They never seemed to need these in the past but I guess now they are set up as they should be.

Thanks Peter for pointing out the article.

Cheers

Tim

Create new topic





News and reviews »

Air New Zealand Starts AI adoption with OpenAI
Posted 24-Jul-2025 16:00

eero Pro 7 Review
Posted 23-Jul-2025 12:07

BeeStation Plus Review
Posted 21-Jul-2025 14:21

eero Unveils New Wi-Fi 7 Products in New Zealand
Posted 21-Jul-2025 00:01

WiZ Introduces HDMI Sync Box and other Light Devices
Posted 20-Jul-2025 17:32

RedShield Enhances DDoS and Bot Attack Protection
Posted 20-Jul-2025 17:26

Seagate Ships 30TB Drives
Posted 17-Jul-2025 11:24

Oclean AirPump A10 Water Flosser Review
Posted 13-Jul-2025 11:05

Samsung Galaxy Z Fold7: Raising the Bar for Smartphones
Posted 10-Jul-2025 02:01

Samsung Galaxy Z Flip7 Brings New Edge-To-Edge FlexWindow
Posted 10-Jul-2025 02:01

Epson Launches New AM-C550Z WorkForce Enterprise printer
Posted 9-Jul-2025 18:22

Samsung Releases Smart Monitor M9
Posted 9-Jul-2025 17:46

Nearly Half of Older Kiwis Still Write their Passwords on Paper
Posted 9-Jul-2025 08:42

D-Link 4G+ Cat6 Wi-Fi 6 DWR-933M Mobile Hotspot Review
Posted 1-Jul-2025 11:34

Oppo A5 Series Launches With New Levels of Durability
Posted 30-Jun-2025 10:15








Geekzone Live »

Try automatic live updates from Geekzone directly in your browser, without refreshing the page, with Geekzone Live now.


Updates »

Are you subscribed to our RSS feed? You can download the latest headlines and summaries from our stories directly to your computer or smartphone by using a feed reader.







RSS feeds
Main feed
Forums feed
Copyright
©2002-2025 Geekzone®
Site features
Geekzone BI dashboard
Geekzone Badges
Geekzone Status Page

 

Affiliate links
Samsung
AliExpress
Wise
Sharesies
GoodSync
Site Information
Subscribe to Geekzone
Privacy Statement
Forum Usage Guidelines (FUG)
Advertising
Trademark and copyright