Tanquen Posted April 11, 2007 Share Posted April 11, 2007 Spamcop info: 184.108.40.206 listed in bl.spamcop.net (127.0.0.2) If there are no reports of ongoing objectionable email from this system it will be delisted automatically in approximately 21 hours. Causes of listing System has sent mail to SpamCop spam traps in the past week (spam traps are secret, no reports or evidence are provided by SpamCop) SpamCop users have reported system as a source of spam less than 10 times in the past week Here is an email: -----Original Message----- From: CMCAdmin Sent: Tuesday, April 10, 2007 8:11 AM To: Jeihri Subject: Mail could not be delivered ****** Message from InterScan Messaging Security Suite ****** Sent <<< [session Initiation] Received >>> 554 service unavailable; client host [220.127.116.11] blocked using bl.spamcop.net; blocked - see http://www.spamcop.net/bl.shtml?18.104.22.168 Unable to deliver message to <badams[at]reverecontrol.com>. ************************ End of message ********************** We have been trying to get this fixed for a few days now. We have been listed two other times that I know of and that was because relaying was on in the Exchange sever. After we turned relaying off we were all good. This time we are having a real hard time finding the issue. We are getting spam traps and reports. Ive tried looking through the mail server logs and I set up the Syslog on our Kentrox firewall to log everything. Looking trough it in Excel Im not seeing the culprit. Im not sure what to look for. I see lots of line like this that look like the firewall is doing what it should be: Apr 10 14:21:26 NAPA: firewall | inform | Terminate session - normal: TCP, SRC=22.214.171.124:1372, DST=172.16.0.10:443, NAT=126.96.36.199:443 <ipwan> And one likes that look to be legitimate: Apr 10 14:21:28 NAPA: firewall | inform | Start session: TCP, SRC=188.8.131.52:55242, DST=172.16.0.20:25, NAT=184.108.40.206:25 <ipwan> And some like this that I dont know what it is: Apr 10 14:21:26 NAPA: firewall | inform | Start session: TCP, SRC=172.16.0.20:3993, DST=220.127.116.11:25, NAT=18.104.22.168:3993 <ipwan> Thanks for any help. -Richard Link to comment Share on other sites More sharing options...
This topic is now archived and is closed to further replies.