Results 1 to 8 of 8
  1. #1

    clients IP keep getting black list - please help

    Hello every one,

    I have 20 clients who are on different networks and countries but all of the sudden their IP's are keep getting black list in spamhause, CBL, dsbl etc and they can not send email i am so very tired of this, please please help me!!!!!!!!!!!!!!!! where is the real problem? how can i solve it?


    Waiting for your reply.


    Thanks.

  2. #2
    Are you sure that it is your clients' IP that are being blocked and not your mail server's IP itself?

  3. #3
    I am 100% sure my mail server is all clean i check it but when i checked their network IP's it was black listed?

    I have just 20 customers and all are complaining how do those big companies like hostgator and howay handling this issue? I had to take off all of the CBL,SPAMHAUSE etc DNS from my mail server so they can still send email till i find solution.

    Please help me.

  4. #4
    Join Date
    Jan 2004
    Location
    South East U.K.
    Posts
    1,295
    I find it hard to believe that 20 clients, each on different networks, would all have their IP's blocked at the same time.

    I'm assuming they use your mail server for sending email, are you sure it's not your mail server's IP that's blocked, what checks have you made?

  5. #5
    Join Date
    Mar 2009
    Location
    Austin Tx
    Posts
    2,001
    Quote Originally Posted by triple View Post
    I am 100% sure my mail server is all clean i check it but when i checked their network IP's it was black listed?

    I have just 20 customers and all are complaining how do those big companies like hostgator and howay handling this issue? I had to take off all of the CBL,SPAMHAUSE etc DNS from my mail server so they can still send email till i find solution.

    Please help me.
    Spam isn't the only thing that can get you blacklisted. No reverse dns, or mismatched, or a bad HELO domain used by your SMTP server (if you machine is Linux, is the host name set correctly?), and different technical reasons can land you on block lists also. You mentioned CBL, and they list just for these reasons, especially the bad HELO domain.


    Can you list some of the evidence the sites should have listed against you? Most do.
    This is the best signature in the world....Tribute!
    (It is not the best signature in the world, no. This is just a tribute)

  6. #6
    Join Date
    May 2005
    Location
    New York
    Posts
    736
    indeed - if they are using your systems for that mail - sounds like it is your IPs being blacklisted. if sending mail via your systems, only your outgoing/internet facing IP will end up being checked by the target systems generaly.

    Might be worth letting us know the mailserver IP (in private if you prefer naturally) so people can do a quick check. It highly improbable that your client's IP blocks would actually get listed in spamhaus repeatedly
    Last edited by jNive; 06-17-2009 at 05:17 AM.
    Perigee Global Corporation
    Design, Development and Hosting Solutions
    Dedicated Servers, CDN, Hosted E-Mail, Web Hosting, VPS & Cloud Servers
    1.212.400-7632 www.perigeeglobal.com

  7. #7
    Join Date
    Nov 2001
    Location
    Vancouver
    Posts
    2,416
    Folks: Unless I am mistaken this person's server isn't blacklisted; his server is blocking retail ISP clients from sending SMTP mail via his server. A common configuration I might add.

    Quote Originally Posted by triple View Post
    I am 100% sure my mail server is all clean i check it but when i checked their network IP's it was black listed?
    Lets take a step back here. It sounds like these are their ISP's IP's you are talking about, not yours. Correct?

    I have just 20 customers and all are complaining how do those big companies like hostgator and howay handling this issue? I had to take off all of the CBL,SPAMHAUSE etc DNS from my mail server so they can still send email till i find solution.
    (Emphasis mine)

    It appears as if you are permitting them to send mail *through* your server via SMTP. Not a problem, but if you are subscribing to certain RBL's you are bound to have at least one in there which checks the sender's IP against known retail ISP dynamic IP blocks.

    Since a ton of spam originates from compromised machines sitting on ISP networks, it makes sense to block mail from a dialup or cable / dsl retail ISP block. That is what appears to be your issue - clients around the world are trying to send SMTP mail to you directly from their desktops rather than via their ISP's mail server. Have one of them change their email client software to route their mail via their ISP to confirm.

    If indeed you have clients that need or must for some vanity reason send mail through your server directly, then you'll have to set up SMTP authentication (either pop/imap before SMTP or proper SMTP auth) which allows your clients to bypass the RBL check, and/or simply whitelist the IPs. The latter is not such a good idea because a) dynamic IPs change and b) spoofing an IP remains a possibility for spammers to get through your server's defences. B is probably less of an issue in reality but A is definitely an ongoing management headache.
    Last edited by mwatkins; 06-17-2009 at 12:38 PM.
    “Even those who arrange and design shrubberies are under
    considerable economic stress at this period in history.”

  8. #8
    Join Date
    Mar 2009
    Location
    Austin Tx
    Posts
    2,001
    Quote Originally Posted by mwatkins View Post
    Folks: Unless I am mistaken this person's server isn't blacklisted; his server is blocking retail ISP clients from sending SMTP mail via his server. A common configuration I might add.



    Lets take a step back here. It sounds like these are their ISP's IP's you are talking about, not yours. Correct?



    (Emphasis mine)

    It appears as if you are permitting them to send mail *through* your server via SMTP. Not a problem, but if you are subscribing to certain RBL's you are bound to have at least one in there which checks the sender's IP against known retail ISP dynamic IP blocks.

    Since a ton of spam originates from compromised machines sitting on ISP networks, it makes sense to block mail from a dialup or cable / dsl retail ISP block. That is what appears to be your issue - clients around the world are trying to send SMTP mail to you directly from their desktops rather than via their ISP's mail server. Have one of them change their email client software to route their mail via their ISP to confirm.

    If indeed you have clients that need or must for some vanity reason send mail through your server directly, then you'll have to set up SMTP authentication (either pop/imap before SMTP or proper SMTP auth) which allows your clients to bypass the RBL check, and/or simply whitelist the IPs. The latter is not such a good idea because a) dynamic IPs change and b) spoofing an IP remains a possibility for spammers to get through your server's defences. B is probably less of an issue in reality but A is definitely an ongoing management headache.
    He has been listed on CBL, and this is an "smtp misconfiguration" list.
    I don' think it's spam related, I think his issue is CON-figuration of his smtp server, and possibly his IP-based stuff...rDNS, etc.
    CBL most commonly lists for invalid "HELO" domains (ie - they have left their Linux mail server running sendmail's hostnmae as "localhost").

    Probably other issues, but it you are truley listed on CBL, this IS and issue.
    Period.
    This is the best signature in the world....Tribute!
    (It is not the best signature in the world, no. This is just a tribute)

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •