SPF SOFTFAIL domain of transitioning [email protected] does not designate X.X.X.X as permitted sender)

[sz3jdii]

in my company I have the following error.

softfail (google.com: domain of transitioning [email protected] does not designate X.X.X.X as permitted sender) client-ip=X.X.X.X;

Let's say my mail.company.com server is Y.Y.Y.Y, every user connects to his/her mail account from Thunderbird, the SMTP/POP3/IMAP is served by DirectAdmin hosted on Y.Y.Y.Y domain. Some of users who uses GMail to download mails from external POP3 server (mail.company.com) are receiving the above error and email is in SPAM directory. The SPF record which I had was:

v=spf1 a mx ip4:Y.Y.Y.Y ~all
The problem is the designated IP X.X.X.X is client's ip not not SMTP server's ip Y.Y.Y.Y.

Thank you for any help.

 

[sysdev]

I think it's more this problem:

404 - Page not found

404: The page you requested could not be found.

www.digitalocean.com

 

[sz3jdii]

I think it's more this problem:

404 - Page not found

404: The page you requested could not be found.

www.digitalocean.com

I see that the problem described there is for forwarding emails, instead of that I download messages from DirectAdmin email account to gmail :/

 

[LawsHosting]

Why do people not want to use their actual domain to receive and send from via SMTP & POP3/IMAP..... Doesn't make sense to me

 

[sz3jdii]

I solved this by setting custom received header in exim config (/etc/exim.conf).
In above file I've added:

received_header_text = ${if def:authenticated_id {Received: from $primary_hostname ([X.X.X.X] helo=[s1.example.com]) by $primary_hostname with ESMTP\n\t(Exim $version_number)\n\t${if def:sender_address {(envelope-from <$sender_address>)\n\t}}id $message_exim_id${if def:received_for {\n\tfor $received_for}}\n\t}}Received: ${if def:sender_rcvhost {from $sender_rcvhost\n\t}{${if def:sender_ident {from ${quote_local_part:$sender_ident} }}${if def:sender_helo_name {(helo=$sender_helo_name)\n\t}}}}by $primary_hostname ${if def:received_protocol {with $received_protocol}} ${if def:tls_cipher {($tls_cipher)\n\t}}(Exim $version_number)\n\t${if def:sender_address {(envelope-from <$sender_address>)\n\t}}id $message_exim_id${if def:received_for {\n\tfor $received_for}}

where X.X.X.X is mail server IP and s1.example.com is mail server hostname or ip address.
I've put that after:

#EDIT#1:
# primary_hostname =
smtp_active_hostname = ${if exists{/etc/virtual/helo_data}{${lookup{$interface_address}iplsearch{/etc/virtual/helo_data}{$value}{$primary_hostname}}}{$primary_hostname}}

After that I've restarted exim:

service exim restart

And now Google is not failing spam checks due to SPF SOFTFAIL.