Request your assistance please. We added the following SPF records for
the domain ibn2.com to our DNS servers and all mail to the is being
blocked -- not our intent. We are unable to find the error that is
causing this problem. We have RTFM's but can't locate the cause of the
problem.
-----------------------------------------------------------------------------------------------------------------------------------------------------
;
; SENDER POLICY FRAMEWORK (SPF) RECORDS
;
;
ibn2.com. IN TXT "v=spf1 ip4:67.116.23.194
ip4:67.116.20.66 ip4:69.3.29.34 -all"
ibn2.com. IN SPF "v=spf1 ip4:67.116.23.194
ip4:67.116.20.66 ip4:69.3.29.34 -all"
;
mail.ibn2.com. IN TXT "v=spf1 ip4:67.116.23.194
ip4:67.116.20.66 ip4:69.3.29.34 -all"
mail.ibn2.com. IN SPF "v=spf1 ip4:67.116.23.194
ip4:67.116.20.66 ip4:69.3.29.34 -all"
;
mail.ibn2.com. IN TXT "v=spf1 ip4:67.116.23.210
ip4:67.116.20.70 ip4:69.3.27.37 -all"
mail.ibn2.com. IN SPF "v=spf1 ip4:67.116.23.210
ip4:67.116.20.70 ip4:69.3.27.37 -all"
;
;
;
-----------------------------------------------------------------------------------------------------------------------------------------------------
All mail from ibn2.com is sent from one mailserver mail-1.theibn.com.
The mailserver is on a private network 192.168.20.4 which NAT's to a
multi-honed public network addresses 67.116.23.194 67.116.20.66 and
69.3.29.34.
The domain has the following A records;
;
mail.ibn2.com. IN A 69.3.27.37
mail.ibn2.com. IN A 67.116.20.70
mail.ibn2.com. IN A 67.116.23.210
;
mail.ibn2.com has two sets of IP addresses. One for outbound mail which
are the same as the mailserver, the other set are listed in the DNS A
record for connecting to the server via other ports, such as for Webmail
etc.
The MX records point to a spam appliance cuda-1.theibn.com
67.116.23.204, 67.116.20.76 and 69.3.29.41and cuda-2.ibnto.com
67.116.23.205, 67.116.20.77 and 69.3.29.42. These addresses NAT to
cuda-1 192.168.20.8 and cuda-2 192.168.20.16 and they forward traffic
that clears the spam filters to the mailserver 192.168.20.4.
We have obviously missed something in our setup. We would appreciate you
pointing out the problem to us.
Thank you,
Kenn
-------------------------------------------
Sender Policy Framework: http://www.openspf.org
Modify Your Subscription: http://www.listbox.com/member/
Archives: https://www.listbox.com/member/archive/1020/=now
RSS Feed: https://www.listbox.com/member/archive/rss/1020/
Powered by Listbox: http://www.listbox.com
the domain ibn2.com to our DNS servers and all mail to the is being
blocked -- not our intent. We are unable to find the error that is
causing this problem. We have RTFM's but can't locate the cause of the
problem.
-----------------------------------------------------------------------------------------------------------------------------------------------------
;
; SENDER POLICY FRAMEWORK (SPF) RECORDS
;
;
ibn2.com. IN TXT "v=spf1 ip4:67.116.23.194
ip4:67.116.20.66 ip4:69.3.29.34 -all"
ibn2.com. IN SPF "v=spf1 ip4:67.116.23.194
ip4:67.116.20.66 ip4:69.3.29.34 -all"
;
mail.ibn2.com. IN TXT "v=spf1 ip4:67.116.23.194
ip4:67.116.20.66 ip4:69.3.29.34 -all"
mail.ibn2.com. IN SPF "v=spf1 ip4:67.116.23.194
ip4:67.116.20.66 ip4:69.3.29.34 -all"
;
mail.ibn2.com. IN TXT "v=spf1 ip4:67.116.23.210
ip4:67.116.20.70 ip4:69.3.27.37 -all"
mail.ibn2.com. IN SPF "v=spf1 ip4:67.116.23.210
ip4:67.116.20.70 ip4:69.3.27.37 -all"
;
;
;
-----------------------------------------------------------------------------------------------------------------------------------------------------
All mail from ibn2.com is sent from one mailserver mail-1.theibn.com.
The mailserver is on a private network 192.168.20.4 which NAT's to a
multi-honed public network addresses 67.116.23.194 67.116.20.66 and
69.3.29.34.
The domain has the following A records;
;
mail.ibn2.com. IN A 69.3.27.37
mail.ibn2.com. IN A 67.116.20.70
mail.ibn2.com. IN A 67.116.23.210
;
mail.ibn2.com has two sets of IP addresses. One for outbound mail which
are the same as the mailserver, the other set are listed in the DNS A
record for connecting to the server via other ports, such as for Webmail
etc.
The MX records point to a spam appliance cuda-1.theibn.com
67.116.23.204, 67.116.20.76 and 69.3.29.41and cuda-2.ibnto.com
67.116.23.205, 67.116.20.77 and 69.3.29.42. These addresses NAT to
cuda-1 192.168.20.8 and cuda-2 192.168.20.16 and they forward traffic
that clears the spam filters to the mailserver 192.168.20.4.
We have obviously missed something in our setup. We would appreciate you
pointing out the problem to us.
Thank you,
Kenn
-------------------------------------------
Sender Policy Framework: http://www.openspf.org
Modify Your Subscription: http://www.listbox.com/member/
Archives: https://www.listbox.com/member/archive/1020/=now
RSS Feed: https://www.listbox.com/member/archive/rss/1020/
Powered by Listbox: http://www.listbox.com