Skip to main content

SMTP and Spamhaus blocking. What I learned today.

I was setting up a new client with an Exchange Server, and we discovered that we could not send email to any Microsoft Hosted email addresses.  Basically, to a subdomain of Outlook.com.

All office 365 hosted email domain are subdomains of this address. 

The issue was discovered when we tried to send an email manually using a text based email tool.
The dialog looks like this (note that the unique data has been modified for privacy):

blat.exe -body "this is a test" -to someone@o365hosted.ca -server o365hosted.mail.protection.outlook.com -f me@legit.ca -s "Test of SMTP" -debug
Blat v3.1.1 (build : Feb 27 2013 20:04:23)
32-bit Windows, Full, Unicode

<<6:46 +0000
>>>putline>>> EHLO lab1-exch2013
<<<<... Text removed for clarity

<<Sending stdin.txt to someone@o365hosted.ca
Subject: Test of SMTP
Login name is
Me@legit.ca
>>>putline>>> MAIL FROM:<Me@legit.ca>
<<>>>putline>>> RCPT TO:<someone@o365hosted.ca
>
<<http://www.spamhaus.org/lookup.lasso
*** Warning ***  The SMTP server does not like the name someone@o365hosted.ca.
*** Warning ***  Have you set the 'To:' field correctly, or do you need authorization (-u/-pw) ?
*** Warning ***  The SMTP server response was -> 550 5.7.1 Service unavailable; Client host [123.45.67.89] blocked using Spamhaus; To request removal from this list see
http://www.spamhaus.org/lookup.lasso
>>>putline>>> QUIT
<<


The IP address (not shown) was a static IP assigned to a Telus.Net client.

A quick check at MXToolbox.com revealed that blocked at Spamhaus, and SORBS, but no others.
Next, a check at Spamhaus indicated that the IP Address is listed in the PBL.   What is the PBL you say?  It is a list of addresses that require Authentication or discrete PTR records in order to be trusted.
See https://www.spamhaus.org/lookup/ and enter your IP address for a lookup.
In my case is says:
          

By default, this assumes that the IP is a Dynamically Assigned IP.  In our case of course, from Telus.

There are 2 solutions for our problem of being able to send to any email domain by MX record.
  1. We could go to Telus and request a discrete PTR record, or
  2. we can simple configure the Exchange Send Connector to use the SMTP Smart host of smtp.telus.net.
Update: For Hosted Exchange Hybrid, the above 2 are not options.  Working on a solution..


Comments

Popular posts from this blog

"Blinky" TDOA RDF Detector

Our local Amateur Radio club is building a Radio Direction Finding TDOA (Time Difference of Arrival) detector that has LED's to indicate the direction (Left or right) of the fox.  Here are the build instructions.   (Note: this project was originally presented by NZ1J.  See his video:   https://www.youtube.com/watch?v=mNqUKYkifOo&t=68s   ) Here is the completed project: We start with the schematic:   Note that you either install PIN Diode pairs s D3 and D2, or Diodes pair D1 and D4.   The difference between these is the packaging.  If you are ok with Surface mount, then install D1/D4.  If you want discrete components use D3/D2. Next is the PCB.   The PCB can be ordered using the GRBR files available from the author.  The BOM for the electronic parts is as such: Doppler Direction Finder Bill of Materials   11/12/2021        Qty Part Digi-key Part Numbe...

Radio Direction Finding - TDOA

This article describes a few projects that I built from plans for Amateur Radio Fox Hunting. Basically, the hobby/sport is for someone to hide a few low power "Foxes", which are small transmitters that beep or send Morse Code, and then have a bunch of HAM's try to find them. The first project that I built was a Yagi Antenna (Directional receiver) and a 4MHZ Offset Attenuator.  The attenuator is needed when you get close to the fox and you need to reduce the power of the received signal.  I struggled with this setup because, on my first 2 fox hunts, there was too much reflection and multi-path interference.  This causes false direction detection and if you are not mentally prepared for this, you want to throw all of your equipment into a garbage can and take up a different hobby.   There are some truly strange individuals who find this frustration fun and enjoy making other people suffer, but I will leave that discussion for another day.  Anyw...

Wireless device monitoring with wavemon

Wireless device monitoring with wavemon wavemon is a wireless device monitoring software that allows you to watch signal and noise levels, packet statistics, device configuration, and network parameters of your wireless network hardware. It was written by Jan Morgenstern and is regularly maintained. It allows you to display your WiFi signal strength in realtime. Installation and start You install wavemon with sudo apt install wavemon -y And start it with wavemon and a dashboard appears. If you can’t see the function keys at the bottom, you need to make your Terminal window larger. What the information means Let’s quickly run through the data points that you want to look at to understand better the WiFi quality that your digital picture frame enjoys. Signal strength Basically, the higher the signal strength, the more reliable the connection and higher speeds are possible. The signal strength is specified as -dBm (decibels related to one ...