I am finding that callout verification is not working. Support will tell me to upgrade to 9.705 first.
Side issue: Is 9.705 stable enough to justify upgrading?
Configuration:
- UTM running with SMTP Standard Mode proxy enabled
- Domain profile configured for Callout Verification
Failure scenario:
- Submitting node connects to UTM and attempts to deliver a message.
- UTM accepts the message whether or not the user exists in the mail system. (Callout verification not performed)
- Submitting system logs a successful delivery.
- When UTM tries to forward the mesage, it is rejected. Mail Manager SMTP Log reports bounce status and UTM attempts to send a non-delivery report (NDR).
The whole point of callout verification is to reject messages rather than doing accept-then-NDR.
What should happen:
- Submitting node connects to UTM and attempts to deliver a message.
- When UTM receives a recipient identifier, it initiates a test message to the target mail server, to verify that the user exists. (Whether or not the recipient is valid, the test message initiation connection is immediately closed, since the actual message body is not yet known.) Failed attempts cause the recipient to be rejected. The message body is not transmitted from the submitter to UTM until at least one valid recipient is provided.
- Submitting system logs a reject status for each rejected recipient.
Can anyone who is running 9.705 indicate whether callout verification is working correctly for you? Send a message from a remote server to a non-existent address on your server. If you get a non-delivery report from the the sending domain gateway, then sender verification worked. If you get a message from the recipient UTM address or no NDR message at all, then UTM is not doing callout verification correctly.
This thread was automatically locked due to age.
