rszkutak
Verified User
ok here's the lowdown... Not sure if it is DNS or E-mail, i think DNS. Basically e-mail is going to the wrong device, any thoughts why ?
Since this is a dual fold problem and I am not sure where to put it i am putttin this into e-mail & DNS.
I have a Barracuda, and a DA server. The Barracuda and the DA server are both on the same IP segment running public IP addresses.
98 - 99% of all mail is being directed as it should to the barracuda which is filtering the mail as designed, however i am getting some that are "slipping through" and going direct to the DA server in which it should not...
First the headers of the one that got throguh without the barracuda, and second a genaric mail header that goes throught the barracuda.
Now in defense I did realize that last week ( tuesday ) their were 2 MX records there, one was the barracuda, and the other was the server itself. I deleted the record for the server itself, and just left the barracuda's as the only active MX record. In the folliowing hours i notice the mail traffic increased about 8 - 10 % which indicated that 8-10% was going around the barracuda, and no longer was...
Now I get and occasional BLITZ at random time of the day where mail does not hit the barraucda, and get's totally around it !
Here are the headers of one that got through without going through the Barracuda.
------------------------- WITHOUT BARRACUDA -----------------------
Return-path: <[email protected]>
Envelope-to: @la-z-boyaz.com
Delivery-date: Sun, 04 Dec 2005 11:11:53 -0700
Received: from pool-71-114-180-87.trrhin.dsl-w.verizon.net ([71.114.180.87] helo=cableone.net.mail5.psmtp.com)
by server.lzbaz.com with esmtp (Exim 4.50)
id 1EiyL3-0001A4-5W; Sun, 04 Dec 2005 11:11:53 -0700
from: "Kelley" <[email protected]>
To: <@la-z-boyaz.com>
Subject: re: goodrates:
Date: Sun, 04 Dec 2005 12:11:57 -0600
Message-ID: <[email protected]>
MIME-Version: 1.0
Content-Type: multipart/alternative;
boundary="----253752121829986562"
X-Mailer: Microsoft Office Outlook 11
Thread-Index: AcXpUSzEikv/4jmjSuuTgbzPOCKt1A==
X-MimeOLE: Produced By Microsoft MimeOLE V6.00.3790.1830
Here are the headers of one that got through without going through the Barracuda.
--------------------- WITH BARRACUDA ----------------------------
Return-path: <[email protected]>
Envelope-to: [email protected]
Delivery-date: Thu, 01 Dec 2005 03:24:26 -0700
Received: from 216-207-122-2.dia.cust.qwest.net ([216.207.122.2] helo=barracuda.lzbaz.com)
by server.lzbaz.com with esmtp (Exim 4.50)
id 1Ehlc2-0007s1-OT
for [email protected]; Thu, 01 Dec 2005 03:24:26 -0700
X-ASG-Debug-ID: 1133432661-16701-10-0
X-Barracuda-URL: http://216.207.122.2:2222/cgi-bin/mark.cgi
Received: from hd-t2323cn (ip-209-172-56-57.reverse.privatedns.com [209.172.56.57])
by barracuda.lzbaz.com (Spam Firewall) with ESMTP id 6E7E6943B
for <[email protected]>; Thu, 1 Dec 2005 03:24:21 -0700 (MST)
Received: from mail pickup service by hd-t2323cn with Microsoft SMTPSVC;
Thu, 1 Dec 2005 10:24:19 +0000
thread-index: AcX2YWO1fI1cQpxyQNifbdyGUZh79A==
Thread-Topic: Thank you for allowing me one minute of your precious time
From: <[email protected]>
To: <[email protected]>
X-ASG-Orig-Subj: Thank you for allowing me one minute of your precious time
Subject: =?ascii?B?eyA+IFBvU3NJYkxlLVNwQW0gfSAg?= =?ascii?B?VGhhbmsgeW91IGZvciBhbGxvd2lu?= =?ascii?B?ZyBtZSBvbmUgbWludXRlIG9mIHlv?= =?ascii?B?dXIgcHJlY2lvdXMgdGltZQ==?=
Date: Thu, 1 Dec 2005 10:24:19 -0000
Message-ID: <ca2701c5f661$63b5b300$0201a8c0@hdt2323cn>
MIME-Version: 1.0
Content-Type: text/plain;
charset="utf-8"
X-Mailer: Microsoft CDO for Windows 2000
Content-Class: urn:content-classes:message
Importance: normal
Priority: normal
X-MimeOLE: Produced By Microsoft MimeOLE V6.00.3790.1830
X-OriginalArrivalTime: 01 Dec 2005 10:24:19.0520 (UTC) FILETIME=[63B82400:01C5F661]
X-Virus-Scanned: by Barracuda Spam Firewall at lzbaz.com
X-Barracuda-Bayes: INNOCENT GLOBAL 0.5054 1.0000 0.0000
X-Barracuda-Spam-Score: 1.72
X-Barracuda-Spam-Status: Yes, SCORE=1.72 using global scores of TAG_LEVEL=1.7 QUARANTINE_LEVEL=1.9 KILL_LEVEL=2.3 tests=BIZ_TLD, NO_REAL_NAME
X-Barracuda-Spam-Report: Code version 3.02, rules version 3.0.5751
Rule breakdown below pts rule name description
---- ---------------------- --------------------------------------------------
0.55 NO_REAL_NAME From: does not include a real name
1.17 BIZ_TLD URI: Contains an URL in the BIZ top-level domain
X-Priority: 5 (Lowest)
X-MSMail-Priority: Low
Importance: Low
X-Barracuda-Spam-Flag: YES
Content-Transfer-Encoding: quoted-printable
----------------------------------------
Since this is a dual fold problem and I am not sure where to put it i am putttin this into e-mail & DNS.
I have a Barracuda, and a DA server. The Barracuda and the DA server are both on the same IP segment running public IP addresses.
98 - 99% of all mail is being directed as it should to the barracuda which is filtering the mail as designed, however i am getting some that are "slipping through" and going direct to the DA server in which it should not...
First the headers of the one that got throguh without the barracuda, and second a genaric mail header that goes throught the barracuda.
Now in defense I did realize that last week ( tuesday ) their were 2 MX records there, one was the barracuda, and the other was the server itself. I deleted the record for the server itself, and just left the barracuda's as the only active MX record. In the folliowing hours i notice the mail traffic increased about 8 - 10 % which indicated that 8-10% was going around the barracuda, and no longer was...
Now I get and occasional BLITZ at random time of the day where mail does not hit the barraucda, and get's totally around it !
Here are the headers of one that got through without going through the Barracuda.
------------------------- WITHOUT BARRACUDA -----------------------
Return-path: <[email protected]>
Envelope-to: @la-z-boyaz.com
Delivery-date: Sun, 04 Dec 2005 11:11:53 -0700
Received: from pool-71-114-180-87.trrhin.dsl-w.verizon.net ([71.114.180.87] helo=cableone.net.mail5.psmtp.com)
by server.lzbaz.com with esmtp (Exim 4.50)
id 1EiyL3-0001A4-5W; Sun, 04 Dec 2005 11:11:53 -0700
from: "Kelley" <[email protected]>
To: <@la-z-boyaz.com>
Subject: re: goodrates:
Date: Sun, 04 Dec 2005 12:11:57 -0600
Message-ID: <[email protected]>
MIME-Version: 1.0
Content-Type: multipart/alternative;
boundary="----253752121829986562"
X-Mailer: Microsoft Office Outlook 11
Thread-Index: AcXpUSzEikv/4jmjSuuTgbzPOCKt1A==
X-MimeOLE: Produced By Microsoft MimeOLE V6.00.3790.1830
Here are the headers of one that got through without going through the Barracuda.
--------------------- WITH BARRACUDA ----------------------------
Return-path: <[email protected]>
Envelope-to: [email protected]
Delivery-date: Thu, 01 Dec 2005 03:24:26 -0700
Received: from 216-207-122-2.dia.cust.qwest.net ([216.207.122.2] helo=barracuda.lzbaz.com)
by server.lzbaz.com with esmtp (Exim 4.50)
id 1Ehlc2-0007s1-OT
for [email protected]; Thu, 01 Dec 2005 03:24:26 -0700
X-ASG-Debug-ID: 1133432661-16701-10-0
X-Barracuda-URL: http://216.207.122.2:2222/cgi-bin/mark.cgi
Received: from hd-t2323cn (ip-209-172-56-57.reverse.privatedns.com [209.172.56.57])
by barracuda.lzbaz.com (Spam Firewall) with ESMTP id 6E7E6943B
for <[email protected]>; Thu, 1 Dec 2005 03:24:21 -0700 (MST)
Received: from mail pickup service by hd-t2323cn with Microsoft SMTPSVC;
Thu, 1 Dec 2005 10:24:19 +0000
thread-index: AcX2YWO1fI1cQpxyQNifbdyGUZh79A==
Thread-Topic: Thank you for allowing me one minute of your precious time
From: <[email protected]>
To: <[email protected]>
X-ASG-Orig-Subj: Thank you for allowing me one minute of your precious time
Subject: =?ascii?B?eyA+IFBvU3NJYkxlLVNwQW0gfSAg?= =?ascii?B?VGhhbmsgeW91IGZvciBhbGxvd2lu?= =?ascii?B?ZyBtZSBvbmUgbWludXRlIG9mIHlv?= =?ascii?B?dXIgcHJlY2lvdXMgdGltZQ==?=
Date: Thu, 1 Dec 2005 10:24:19 -0000
Message-ID: <ca2701c5f661$63b5b300$0201a8c0@hdt2323cn>
MIME-Version: 1.0
Content-Type: text/plain;
charset="utf-8"
X-Mailer: Microsoft CDO for Windows 2000
Content-Class: urn:content-classes:message
Importance: normal
Priority: normal
X-MimeOLE: Produced By Microsoft MimeOLE V6.00.3790.1830
X-OriginalArrivalTime: 01 Dec 2005 10:24:19.0520 (UTC) FILETIME=[63B82400:01C5F661]
X-Virus-Scanned: by Barracuda Spam Firewall at lzbaz.com
X-Barracuda-Bayes: INNOCENT GLOBAL 0.5054 1.0000 0.0000
X-Barracuda-Spam-Score: 1.72
X-Barracuda-Spam-Status: Yes, SCORE=1.72 using global scores of TAG_LEVEL=1.7 QUARANTINE_LEVEL=1.9 KILL_LEVEL=2.3 tests=BIZ_TLD, NO_REAL_NAME
X-Barracuda-Spam-Report: Code version 3.02, rules version 3.0.5751
Rule breakdown below pts rule name description
---- ---------------------- --------------------------------------------------
0.55 NO_REAL_NAME From: does not include a real name
1.17 BIZ_TLD URI: Contains an URL in the BIZ top-level domain
X-Priority: 5 (Lowest)
X-MSMail-Priority: Low
Importance: Low
X-Barracuda-Spam-Flag: YES
Content-Transfer-Encoding: quoted-printable
----------------------------------------