1 Topic by hits (edited by hits 2020-05-20 18:34:47)

  • hits
  • Member
  • Offline
  • Registered: 2020-04-27
  • Posts: 29

Topic: Recipient address rejected: Blacklisted

==== REQUIRED BASIC INFO OF YOUR IREDMAIL SERVER ====
- iRedMail version (check /etc/iredmail-release): 0.9.o
- Deployed with iRedMail Easy or the downloadable installer?downloadable installer
- Linux/BSD distribution name and version:  ubuntu 18
- Store mail accounts in which backend (LDAP/MySQL/PGSQL): mysql
- Web server (Apache or Nginx):Nginx
- Manage mail accounts with iRedAdmin-Pro?No
- [IMPORTANT] Related original log or error message is required if you're experiencing an issue.
====

Hello sir,

One of my vendor email are bouncing with the following reason.

May 20 14:04:44 mydomain-mail postfix/smtpd[19765]: NOQUEUE: reject: RCPT from static.250.39.130.94.clients.your-server.de[94.130.39.250]: 554 5.7.1 <hr@mydomain.in>: Recipient address rejected: Blacklisted; from=<tickets@spinesupport.in> to=<hr@mydomain.in> proto=ESMTP helo=<mail.spinesupport.in>

I have checked sending server ip, is not blacklisted, i am new on iredmail, not able to find exactly why it got bounces with  blacklisted error.

I have checked support forum of iredmail for this error, one of your forum link you suggest to check iredapd logs, but my log file are also showing empty.

Also I have whitelisted sender domain in greylisting, still it got bounced.

Please help me to resolve this error.

----

Spider Email Archiver: On-Premises, lightweight email archiving software developed by iRedMail team. Supports Amazon S3 compatible storage and custom branding.

2 Reply by ZhangHuangbin

  • ZhangHuangbin
  • ZhangHuangbin
  • iRedMail Developers
  • Offline
  • Registered: 2009-05-06
  • Posts: 30,770

Re: Recipient address rejected: Blacklisted

The blacklisting is handled by iRedAPD, check /var/log/iredapd/iredapd.log for some useful info. smile

3 Reply by hits

  • hits
  • Member
  • Offline
  • Registered: 2020-04-27
  • Posts: 29

Re: Recipient address rejected: Blacklisted

Thank you for reply..

/var/log/iredapd/iredapd.log file is showing empty, i have enabled log_file = "/var/log/iredapd/iredapd.log" in settings.py file, restarte iredap & syslog service..
still file is remained blank.

Not able to find the exact reason for the same.

Please help..

4 Reply by ZhangHuangbin

  • ZhangHuangbin
  • ZhangHuangbin
  • iRedMail Developers
  • Offline
  • Registered: 2009-05-06
  • Posts: 30,770

Re: Recipient address rejected: Blacklisted

Which version of iRedAPD are you running? Seems too old, latest is 3.6.
Check with command "ls -dl /opt/iredapd".

5 Reply by hits

  • hits
  • Member
  • Offline
  • Registered: 2020-04-27
  • Posts: 29

Re: Recipient address rejected: Blacklisted

Sorry for delay in repsonce..iredapd Version is 2.7..
Also My iredadmin version is 0.9.9

How can i upgrade that without desturbing my mail service.

6 Reply by ZhangHuangbin

  • ZhangHuangbin
  • ZhangHuangbin
  • iRedMail Developers
  • Offline
  • Registered: 2009-05-06
  • Posts: 30,770

Re: Recipient address rejected: Blacklisted

If you just want to figure out where it's blacklisted, please check SQL table "amavisd.wblist" and "amavisd.mailaddr".

7 Reply by hits (edited by hits 2020-06-17 13:42:15)

  • hits
  • Member
  • Offline
  • Registered: 2020-04-27
  • Posts: 29

Re: Recipient address rejected: Blacklisted

ZhangHuangbin wrote:

If you just want to figure out where it's blacklisted, please check SQL table "amavisd.wblist" and "amavisd.mailaddr".

Sorry for the delay in reponce, affected due to pandemic

I have whitelisted domain spinesupport.in as well as email id ickets@spinesupport.in.
getting below entry in mailaddr tables :
|  3 |        5 | @spinesupport.in           |
|  8 |       10 | tickets@spinesupport.in    |

and verify the wblist id 3 and 8 is W

mysql> select * from wblist;
+-----+-----+----+
| rid | sid | wb |
+-----+-----+----+
|   1 |   1 | W  |
|   1 |   2 | W  |
|   1 |   3 | W  |
|   1 |   4 | W  |
|   1 |   5 | W  |
|   1 |   6 | W  |
|   1 |   8 | W  |
|   1 |   9 | W  |
|   1 |  10 | B  |
|   1 |  11 | B  |
+-----+-----+----+
10 & 11 are different gmail id's i have added for testing.

Can you suggest what can be done now.

8 Reply by MuPp3t33r

  • MuPp3t33r
  • Member
  • Offline
  • Registered: 2017-01-17
  • Posts: 149

Re: Recipient address rejected: Blacklisted

Technically speaking, the reason that it is getting blacklisted in the first place is because the server admins at mail.spinesupport.in have not set up their DNS correctly. This can be resolved by them adding in the appropriate Reverse DNS for their server

as referenced in RFC 1912:

Make sure your PTR and A records match. For every IP address, there should be a matching PTR record in the in-addr.arpa domain. If a host is multi-homed, (more than one IP address) make sure that all IP addresses have a corresponding PTR record (not just the first one). Failure to have matching PTR and A records can cause loss of Internet services similar to not being registered in the DNS at all.
nslookup mail.spinesupport.in 1.1.1.1
Server:  one.one.one.one
Address:  1.1.1.1
Non-authoritative answer:
Name:    mail.spinesupport.in
Address:  94.130.39.250

nslookup 94.130.39.250 1.1.1.1
Server:  one.one.one.one
Address:  1.1.1.1
Name:    static.250.39.130.94.clients.your-server.de
Address:  94.130.39.250

As you can see above, the forward and reverse DNS names do not match

9 Reply by hits

  • hits
  • Member
  • Offline
  • Registered: 2020-04-27
  • Posts: 29

Re: Recipient address rejected: Blacklisted

Thank you...that must be the reason.

different mx and PTR hostname

In such cases still if i need to allow this emails, how can i allow the emails ?

I think i have to add sender email address in "ALLOWED_FORGED_SENDERS" in settings.py ?