Messaging Gateway

Hi,

Windows Live SNDS reports me that two IPs of my dedicated server are in Symantec BrightMail block-list.

I use the IP Reputation Investigation page  but nothing appens since 5 days.

I read in an other topic that you advice to contact Symatec support, but they required a valid product name and version, and nothing about Symantec BrightMail !

Do you know how to contact them ?

Thanks a lot.

So ?

I have the same problem since 3 months I am trying to remove it dispear for few days and back again I even switch off the server and back again the product is scrap the support is scrap and the technology too.

Norton commander was the last sucessfull product in 90's

I have a similar issue. 

I'm on BrightMail listing, someday neutral, other days I'm marked bad.

But my issue here is that Symantec says that my ReverseDNS is not working. But, I checked many times with my ISP, and I cheched with external utility sites, and everyone of them see my reverse DNS as working correctly.

Who can I contact to investigate this issue? It been reported in the little box for comments, but I never received email even if I provided my address…

Where should I go to get this issue resolved?

My IP is 64.15.67.118.

Regards,

   Antoine

http://mxtoolbox.com/SuperTool.aspx?action=smtp%3asmtp2.beaubien.net&run=toolpage#

MX Toolbox points out that it is your SMTP server's banner that does not match the PTR record of your IP. (saine.org is not beaubien.net). This looks suspicious to many people and they will configure their mail servers to close the connection once they see that.

Thank you.

It was not like that a few days ago, I change something without thinking about this side-effect. It is now fixed.

So, now, how fast can I expect BrightMail to see the change?

Also, in the report, it talks about TLS (stream encrytion), but I don't support it. Can this influence the ReverseDNS status?

It is not likely that not supporting TLS will cause an issue with reverse DNS. Where do you see that you are being blocked due to DNS?

If it is on the Messaging Gateway appliance, this check will happen each time you connect. The Messaging Gateway will perform a PTR lookup on your IP and evaluate the return value(s) compared to your SMTP banner.

I see that on this page:
http://www.symantec.com/security_response/landing/spam/

With the following IPs : 64.15.67.116,64.15.67.117,64.15.67.118,64.15.67.119.

I don't understant, since this is in a subnet of /30, why my Network IP, my Gateway IP and my Broadcast IP are being affected (but I do understand that thoses IP have no reverse DNS).

I just want my Mail Server IP (64.15.67.118) to have a good reputation. And for that, I need to have the Reverse/Forward DNS working.

The reputation for your IP is neutral, which is great

Hi JDavis,

   I did appreciate your help, but please understand that neutral — for me that have a Mail Server (managed by me on my own machine) for the last 20 years — is below my expectations.

   For sure, I can't accept that BrightMail doesn't see my Reverse DNS.

   What must I change to have the rDNS working?

DNS -> IP -> DNS
64.15.67.118 -> smtp2.beaubien.net -> 64.15.67.118 AND
SMTP Hello = smtp2.beaubien.net…

   This should work and has to be fixed. Just point me in the good direction, and I'll do the rest!

Antoine Beaubien

M. JDavis,

   Just to be clear, I just want to do what it takes to have the Rev/Fwd DNS seen by BrightMail. You pointed out the STMP HELO, I fix-it rigth away, it was a recent change.

   I have both beaubien.net and smtp2.beaubien.net that points to 64.15.67.118. And 64.15.67.118 rDNS is smtp2.beaubien.net.

   And all was done at least 10 days ago.

   What's next to do?

Regards,
   Antoine

I'm sorry, but what you are asking is proprietary information that we cannot divulge. Our technologies are based on many methods that we need to keep confidential in order for them to function correctly and keep our customers safe.

Mr. Davis,

    I understand the logic of trade secrets, and I respect it. But, just like Coke will not give it recipe, it still has the legal obligation to list the ingredients they use.

   I understand that the reputation is based on a lot of factors, and that I must accept it as it is.

   But I do have a legitimate question, I think… Why is the Network, Gateway and Broadcast IPs of my small network (4 IP, /30) get flagged when the never are used to carry my data? (ok, the Gateway carries them…).

   Also, and that is my main concern, Brightmail sees my IP 64.15.67.118 as having no reverse DNS. But that is something you should be able to guide me thru as it is a very technical issue. 

   I just you to be a good «email server citizen», can you please help me, at least for the Rev/Fwd DNS?

Regards,

   Antoine