Message would sit in spooler for days until finally bounced.
So today I checked the logs and it seems that cognizant.com is located in either Isreal or India (depending on what geoip service i use) and was blocked by the GEOIP filter.
SMTP Log snip:
2013-11-20 13:38:00 mail7.cognizant.com [203.99.193.12]:25 Connection refused
2013-11-20 13:38:00 mail8.cognizant.com [203.99.196.252]:25 Connection refused
2013-11-20 13:38:00 mailchn.cognizant.com [203.99.193.93]:25 Connection refused
2013-11-20 13:38:00 njymail1.cognizant.com [116.66.145.16]:25 Connection refused
Firewall log snip:
/var/log/packetfilter/2013/11/packetfilter-2013-11-20.log.gz:2013:11:20-13:38:01 gateway ulogd[4586]: id="2021" severity="info" sys="SecureNet" sub="packetfilter" name="Packet dropped (GEOIP)" action="drop" fwrule="60019" outitf="eth1" srcmac="0:1e:67:24:b1:4c" srcip="10.1.10.108" dstip="203.99.193.12" proto="6" length="56" tos="0x00" prec="0x00" ttl="64" srcport="33655" dstport="25" tcpflags="SYN"
Ok, no big deal, I figure I will just create an GEOIP filter exception for SMTP.
So I created a broad rule allowing SMPT traffic to the WAN for All Countries.
skip blocking of these countries: ALL
for traffic coming from these source networks: Internal (Network).
Using these services: Any
But now the mail is returned right away with the following reason:
retry time not reached for any host after a long failure period
Is there someway that I can reset this time out / retry time?
I tried flushing the DNS cache, but that did not help.
Anything else I can try?
I am using ASG v9.1 all the latest and greatest.
This thread was automatically locked due to age.
