Note: Domains and IPs obfuscated for security.
We have an internal web application that sends e-mail reports out to various vendors. Our primary exchange server (domain name co.XXX.YY.ZZ) does not relay mail, so one of our web servers (Windows Server 2003) is setup with the basic SMTP server to do mail relaying (domain name ABABA.net).
We have about 300 vendors on file and the application works fine. However, one vendor has reported not getting the e-mails sent to them. We've verified the e-mail goes out through our own server logs:
12.34.567.8, ntintwebp, 4/23/2009, 9:47:02, SMTPSVC1, NTINTWEBP, 12.34.567.8, 0, 36, 49, 250, 0, MAIL, -, FROM:<[email protected]>,
12.34.567.8, ntintwebp, 4/23/2009, 9:47:02, SMTPSVC1, NTINTWEBP, 12.34.567.8, 0, 25, 28, 250, 0, RCPT, -, TO:<[email protected]>,
12.34.567.8, ntintwebp, 4/23/2009, 9:47:02, SMTPSVC1, NTINTWEBP, 12.34.567.8, 0, 81154, 132, 250, 0, DATA, -, <[email protected]>,
98.765.432.100, OutboundConnectionResponse, 4/23/2009, 9:47:02, SMTPSVC1, NTINTWEBP, -, 47, 0, 114, 0, 0, -, -, 220 mail.schmoe.org Microsoft ESMTP MAIL Service, Version: 5.0.2195.6713 ready at Mon, 29 Dec 2008 09:47:41 -0700 ,
98.765.432.100, OutboundConnectionCommand, 4/23/2009, 9:47:02, SMTPSVC1, NTINTWEBP, -, 47, 0, 4, 0, 0, EHLO, -, ntintwebp.ABABA.net,
98.765.432.100, OutboundConnectionResponse, 4/23/2009, 9:47:02, SMTPSVC1, NTINTWEBP, -, 109, 0, 40, 0, 0, -, -, 250-mail.schmoe.org Hello [11.222.333.44],
98.765.432.100, OutboundConnectionCommand, 4/23/2009, 9:47:02, SMTPSVC1, NTINTWEBP, -, 109, 0, 4, 0, 0, MAIL, -, FROM:<[email protected]>,
98.765.432.100, OutboundConnectionResponse, 4/23/2009, 9:47:02, SMTPSVC1, NTINTWEBP, -, 140, 0, 47, 0, 0, -, -, 250 2.1.0 [email protected] OK,
98.765.432.100, OutboundConnectionCommand, 4/23/2009, 9:47:02, SMTPSVC1, NTINTWEBP, -, 140, 0, 4, 0, 0, RCPT, -, TO:<[email protected]>,
98.765.432.100, OutboundConnectionResponse, 4/23/2009, 9:47:02, SMTPSVC1, NTINTWEBP, -, 187, 0, 26, 0, 0, -, -, 250 2.1.5 [email protected] ,
98.765.432.100, OutboundConnectionCommand, 4/23/2009, 9:47:02, SMTPSVC1, NTINTWEBP, -, 187, 0, 4, 0, 0, BDAT, -, 81476 LAST,
98.765.432.100, OutboundConnectionResponse, 4/23/2009, 9:47:02, SMTPSVC1, NTINTWEBP, -, 718, 0, 85, 0, 0, -, -, 250 2.6.0 <[email protected]> Queued mail for delivery,
98.765.432.100, OutboundConnectionCommand, 4/23/2009, 9:47:02, SMTPSVC1, NTINTWEBP, -, 718, 0, 4, 0, 0, QUIT, -, -,
98.765.432.100, OutboundConnectionResponse, 4/23/2009, 9:47:02, SMTPSVC1, NTINTWEBP, -, 750, 0, 61, 0, 0, -, -, 221 2.0.0 mail.schmoe.org Service closing transmission channel,
The IT department for the vendor did some research on their end and indicated that the ABABA.net DNS records were not valid and that the [email protected] address was an invalid e-mail address (even through the FROM field is using our valid [email protected] address. In addition they said that the [email protected] address fails the syntax, DNS, and SMTP checks.
We've had a couple of other vendors reporting issues, but having them white list the yavco.net domain has resolved those issues, since I believe they were spam related, and not delivery related.
Any ideas on how to resolve this server issue?
This probably has to do with not having public reverse DNS records set up for the server sending the mail.
Check that you have set up a reverse DNS record for your server, and that the address it reports to send from (after any SNATting, etc) can be resolved and reports the correct domain of the sending server.
My guess is their server is looking at your REPLY-TO address, which is not the same as your FROM address. If you can add an explicit REPLY-TO header on the outgoing message, with the same value as the FROM, that may resolve the issue.