One of my users sent an email and received the following back:
http://www.openspf.org/Why?s=helo;id=mxe.ci.juneau.ak.us;ip=192.245.44.15;r=smtp.itcanint.ca
I have published SPF records for that host (mxe) so was somewhat surprised to see it fail.
mxe IN A 192.245.44.15
IN TXT "v=spf1 -a a:mxe.ci.juneau.ak.us -all"
I also have an SPF TXT record for ci.juneau.ak.us which includes the ip adddress for the mail server.
I ran the tests at openspf.org, and got the following result:
spf-test@openspf.org
mailout02.controlledmail.com #550 5.7.1 <spf-test@openspf.org>: Recipient address rejected: SPF Tests: Mail-From Result="pass": Mail From="kevin_miller@ci.juneau.ak.us" HELO name="mxe.ci.juneau.ak.us" HELO Result="fail" Remote IP="192.245.44.15" ##
Note the HELO Resut="fail".
I fixed the problem, by removing the the following line from my DNS setup:
ci.juneau.ak.us IN A 204.238.24.10
1: Why would the HELO fail? The HELO name is being reported correctly as mxe.ci.juneau.ak.us.
2: On the "Why" page above, it suggests adding the following record:
v=spf1 -a a:mxe.ci.juneau.ak.us a:mxe.ci.juneau.ak.us -all
Why does it have "a:mxe.ci.juneau.ak.us" twice?
Also, what does the dash before the a (-a) do?
...Kevin
--
Kevin Miller Registered Linux User No: 307357
CBJ MIS Dept. Network Systems Admin., Mail Admin.
155 South Seward Street ph: (907) 586-0242
Juneau, Alaska 99801 fax: (907 586-4500
-------------------------------------------
Sender Policy Framework: http://www.openspf.org [http://www.openspf.org]
Modify Your Subscription: http://www.listbox.com/member/ [http://www.listbox.com/member/]
Archives: https://www.listbox.com/member/archive/1020/=now
RSS Feed: https://www.listbox.com/member/archive/rss/1020/
Powered by Listbox: http://www.listbox.com
http://www.openspf.org/Why?s=helo;id=mxe.ci.juneau.ak.us;ip=192.245.44.15;r=smtp.itcanint.ca
I have published SPF records for that host (mxe) so was somewhat surprised to see it fail.
mxe IN A 192.245.44.15
IN TXT "v=spf1 -a a:mxe.ci.juneau.ak.us -all"
I also have an SPF TXT record for ci.juneau.ak.us which includes the ip adddress for the mail server.
I ran the tests at openspf.org, and got the following result:
spf-test@openspf.org
mailout02.controlledmail.com #550 5.7.1 <spf-test@openspf.org>: Recipient address rejected: SPF Tests: Mail-From Result="pass": Mail From="kevin_miller@ci.juneau.ak.us" HELO name="mxe.ci.juneau.ak.us" HELO Result="fail" Remote IP="192.245.44.15" ##
Note the HELO Resut="fail".
I fixed the problem, by removing the the following line from my DNS setup:
ci.juneau.ak.us IN A 204.238.24.10
1: Why would the HELO fail? The HELO name is being reported correctly as mxe.ci.juneau.ak.us.
2: On the "Why" page above, it suggests adding the following record:
v=spf1 -a a:mxe.ci.juneau.ak.us a:mxe.ci.juneau.ak.us -all
Why does it have "a:mxe.ci.juneau.ak.us" twice?
Also, what does the dash before the a (-a) do?
...Kevin
--
Kevin Miller Registered Linux User No: 307357
CBJ MIS Dept. Network Systems Admin., Mail Admin.
155 South Seward Street ph: (907) 586-0242
Juneau, Alaska 99801 fax: (907 586-4500
-------------------------------------------
Sender Policy Framework: http://www.openspf.org [http://www.openspf.org]
Modify Your Subscription: http://www.listbox.com/member/ [http://www.listbox.com/member/]
Archives: https://www.listbox.com/member/archive/1020/=now
RSS Feed: https://www.listbox.com/member/archive/rss/1020/
Powered by Listbox: http://www.listbox.com