From Newsgroup: comp.mail.sendmail

I'm sorry that this is off subject and do not have anything thing to do
with sendmail specifically, but more of a general question as I have
noticed that I do not get mail from all domains, looking at the firewall
logs, I can say the remote side do not even try to connect to the server.

I have done all I know of, SPF, DMARC, DKIM, but is there something new
that is required nowadays?
--
//Aho
--- Synchronet 3.21a-Linux NewsLink 1.2

From Newsgroup: comp.mail.sendmail

On 18.11.2025 10:07 Uhr J.O. Aho wrote:

I'm sorry that this is off subject and do not have anything thing to
do with sendmail specifically, but more of a general question as I
have noticed that I do not get mail from all domains, looking at the
firewall logs, I can say the remote side do not even try to connect
to the server.

Does it affect only special sites?
Can you reach the sending server using ping etc.?

Make sure networking works. If the AS includes a RIPE Atlas probe, try
this to check if that can reach your mailserver.

I have done all I know of, SPF, DMARC, DKIM, but is there something
new that is required nowadays?

For a sender, your DNS SPF/DMARC/DKIM records are irrelevant.
They try to send you the mail and unless you reject it, they are done.
--
kind regards
Marco

Send spam to 1763456871muell@stinkedores.dorfdsl.de

--- Synchronet 3.21a-Linux NewsLink 1.2

From Newsgroup: comp.mail.sendmail

On 18/11/2025 11.04, Marco Moock wrote:

On 18.11.2025 10:07 Uhr J.O. Aho wrote:

I'm sorry that this is off subject and do not have anything thing to
do with sendmail specifically, but more of a general question as I
have noticed that I do not get mail from all domains, looking at the
firewall logs, I can say the remote side do not even try to connect
to the server.

Does it affect only special sites?

It seems to affect some domains, not all, for example general gmail
works fine, while I have encountered issues with hosted domain, but the
issue may not be on the google part as they also have a bunch of
ip-numbers from where they can send too.

Can you reach the sending server using ping etc.?

I have tried some of the ip's for a domain and there is a SMTP
responding, so don't seem to be connectivity issue. None of the
ip-ranges been blocked in my firewall (at the moment it's quite empty as
I originally suspected it to be the issue).

Make sure networking works. If the AS includes a RIPE Atlas probe, try
this to check if that can reach your mailserver.

I did create an account and run a traceroute test, 98 failed and 2
wasn't run, all seems to end at the same server on Austria, the route
back from my mail server do take another path. I didn't try ping as by
default the setup do not respond on ping.

for me it looked like many of the sources that RIPE uses seems to be in
the same ip-range and same gateway, of course I haven't checked every instance, but I was trying to check a handful from different countries.

I have done all I know of, SPF, DMARC, DKIM, but is there something
new that is required nowadays?

For a sender, your DNS SPF/DMARC/DKIM records are irrelevant.
They try to send you the mail and unless you reject it, they are done.

Yeah, you are right about that, was just thinking is there suddenly had appeared a reverse mechanism, just been a bit "disconnected" lately.
--
//Aho

--- Synchronet 3.21a-Linux NewsLink 1.2

From Newsgroup: comp.mail.sendmail

On 18.11.2025 14:46 Uhr J.O. Aho wrote:

I did create an account and run a traceroute test, 98 failed and 2
wasn't run, all seems to end at the same server on Austria, the route
back from my mail server do take another path. I didn't try ping as
by default the setup do not respond on ping.

You can use bgp.he.net super traceroute.

Please let us know which probes you used and what your IP is.

Be aware that the probes send UDP packets to a high port, so a firewall
can block them while TCP port 25 is not being blocked.

for me it looked like many of the sources that RIPE uses seems to be
in the same ip-range and same gateway, of course I haven't checked
every instance, but I was trying to check a handful from different
countries.

Use HE supertraceroute, you can select countries and ISPs here.
--
kind regards
Marco

Send spam to 1763473608muell@stinkedores.dorfdsl.de

--- Synchronet 3.21a-Linux NewsLink 1.2

From Newsgroup: comp.mail.sendmail

On 18/11/2025 16.22, Marco Moock wrote:

On 18.11.2025 14:46 Uhr J.O. Aho wrote:

I did create an account and run a traceroute test, 98 failed and 2
wasn't run, all seems to end at the same server on Austria, the route
back from my mail server do take another path. I didn't try ping as
by default the setup do not respond on ping.

You can use bgp.he.net super traceroute.

Please let us know which probes you used and what your IP is.

Be aware that the probes send UDP packets to a high port, so a firewall
can block them while TCP port 25 is not being blocked.

for me it looked like many of the sources that RIPE uses seems to be
in the same ip-range and same gateway, of course I haven't checked
every instance, but I was trying to check a handful from different
countries.

Use HE supertraceroute, you can select countries and ISPs here.

Thanks for the help, turns out stopping the firewall didn't clean out
banned ip's and ranges and the main issue seems to have been that
sendgrid.net had been banned due of specious looking connections from an
ip and a whole large range had then been banned.
--
//Aho
--- Synchronet 3.21a-Linux NewsLink 1.2

From Newsgroup: comp.mail.sendmail

On 17.12.2025 11:29 Uhr J.O. Aho wrote:

sendgrid.net had been banned due of specious looking connections from
an ip and a whole large range had then been banned.

They have a huge amount of abusers and their abuse desk is simply
ignorant. BTDT.

Have a look at http://www.uceprotect.net/de/rblcheck.php?asn=11377

Many of their customers send mail to the spamtraps - and they don't
seem to stop them.
--
kind regards
Marco

Send spam to 1765967383muell@stinkedores.dorfdsl.de

--- Synchronet 3.21a-Linux NewsLink 1.2