some Users are unable to send E-mails to us.
They are getting
Remote Server returned '554 5.0.0 <utm.acme.at #5.0.0 smtp; 550 Error: open resolver; https://www.spamhaus.org/returnc/pub/126.96.36.199>'
if I klick on the Link Spamhaus tells me that the Problem is on the receiving side.
I do'nt know where the IP is from.
I've read the Spamhaus Page but can't figure out what's wrong.
The Count of Emails getting blocked are rising every day and i have to solve the problem.
I've googled the problem but there are no evidences :-(
would be lucky if someone could help
The IP you see is from sending mail server.Your server don't accept the mails. The spamhaus link suggest a blacklist-entry ... But spamhaus say "it is n't".I don't understand the "open resolver" context. Is your UTM unable to resolve some addresses ... has it detected an "open resolver" for the sending server? Which DNS-Server do you use at the UTM?I would try to change them temporary to 188.8.131.52 and 184.108.40.206 ...
Systema Gesellschaft für angewandte Datentechnik mbH // Sophos Platinum PartnerSophos Solution Partner since 2003 If a post solves your question, click the 'Verify Answer' link at this post.
seems you can't use spamhaus RBL from public / open DNS-resolvers.
Disable the RBL or try a provider-DNS.
"Queries cannot successfully be made to the Spamhaus free infrastructure via public/open resolvers. This is to protect ...."
"FAIR USE PRINCIPLES – You are not automatically entitled to the use of Spamhaus’ DNSBL Public Mirrors. Use of the DNSBL Public Mirrors via DNS queries to our public DNSBL servers is free of charge provided you meet all of the following criteria:
"If an IP address regularly exceeds the above criteria, it is suggested the user pays to use the commercial DNSBL Data Query Service (DQS)."
Thank you Dirk!!
after reading the artikle for the 46th? time but now under the context that "open resolver" means "public DNS" everything makes sense suddenly ;-)
Changed to provider-DNS and everything is working fine now.
But how do they know that i used a public DNS to resolve?
Didn't know that something like that is possible.
as DNS owner you can forward different entries for a host to different sub-DNS-servers.
So you access a "blocked" spamhaus-server with these DNS-Answer.
... only one option ... don't know the real way.