[Postfix] Sender address rejected: Domain not found
Code:
telnet [remoteip] 25 Searcing for the cause, I suspect it' caused by them having reject_unknown_sender_domain enabled in their postfix config. Postfix page says it's either because I might have missing A or MX records, or a malformed MX. I checked, and dns seems to be fine. Emails work ok with every other domain out there that we tried. Any suggestions greatly appreciated. Thank You |
Quote:
a public DNS server resolves [mydomain.net] with a good A and MX record? the A record matches the static IP you are sending from? and also your reverse dns maps the IP to the name? |
Yep,"reject_unknown_sender_domain" can cause a lot of false positives, but it does cut down on the spam.
As has been suggested make certain your SMTP server has a VALID "A" record, "MX" record and "Reverse" record on the internet. If you don't have those records, or can't get the reverse DNS changed, simply set up your transport maps to forward the mail through your ISP's SMTP servers. Over the last few years I have had to do that for about 4 - 5 domains that do not like my servers for various un-explained reason, but they will gladly accept the same mail when forwarded through the ISP. It's just easier to forward it through my ISP than try to get a hold of some administrator want-a-be that has decided to become a mail Nazi. Don't get me wrong, I have really tight spam filtering, but it is done in a way that prevents almost all false positives, and almost never causes problems for the sending systems IT Dept and still discards or filters over 90% of incoming mail. |
Thank you for your answers,
Here is an output of dig when I query the public 4.2.2.2 DNS Server. [domain].com is my domain that is getting rejected. [domain].com and mail.[domain].com both have the same external IP, but are nat'd to different internal servers. [domain].com has an A and MX, while mail.[domain].com only has an A. Reverse dig on the IP returns mail.[domain].com Anything out of the ordinary that I might have missed in the below output? Code:
[root@vps ~]#dig [domain].com any |
Fixed:
Problem was the SOA record, that was pointing to a non-existing subdomain. I had changed that yesterday but didn't try since then. Above output shows the already corrected version. I am able to send OK now to the domain that was causing issues. |
Quote:
We missed the obvious "Has anything changed recently?" question. |
All times are GMT -5. The time now is 05:16 AM. |