Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 1 reply
  • Subscribers 2 subscribers
  • Views 5587 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

rejected RCPT - reason="rbl"

Mohamed Hassan

Hello everyone, so I've setup MailEnable mail server, really straightforward with one mailbox.

 

I managed to setup smart host on the UTM which now sending emails out from the UTM for outbound emails and domain routing with my domain name which I believe for my inbound emails. I can see emails hitting the UTM in and out and antivirus/spam work right.

 

But I have a problem :(

 

If I tick "Use recommended RBLs" under Antivirus tab which is the most important method of protection I don't get any email. Emails coming from Hotmail or Gmail or anything else hit my UTM and get rejected because of rbl..How come when they are not listed defiantly??? For example:

 

2017:04:28-00:25:41 sukafun-utm exim-in[5304]: 2017-04-28 00:25:41 SMTP connection from [40.92.253.98]:41941 (TCP/IP connection count = 1)
2017:04:28-00:25:43 sukafun-utm exim-in[29965]: 2017-04-28 00:25:43 H=mail-oln040092253098.outbound.protection.outlook.com (APC01-SG2-obe.outbound.protection.outlook.com) [40.92.253.98]:41941 Warning: sukafun.com profile excludes greylisting: Skipping greylisting for this message
2017:04:28-00:25:43 sukafun-utm exim-in[29965]: 2017-04-28 00:25:43 H=mail-oln040092253098.outbound.protection.outlook.com (APC01-SG2-obe.outbound.protection.outlook.com) [40.92.253.98]:41941 Warning: sukafun.com profile excludes SANDBOX scan
2017:04:28-00:25:44 sukafun-utm exim-in[29965]: 2017-04-28 00:25:44 id="1003" severity="info" sys="SecureMail" sub="smtp" name="email rejected" srcip="40.92.253.98" from="sukafun@hotmail.com" to="sukafun@sukafun.com" size="9424" reason="rbl" extra="cbl.abuseat.org"
2017:04:28-00:25:44 sukafun-utm exim-in[29965]: 2017-04-28 00:25:44 H=mail-oln040092253098.outbound.protection.outlook.com (APC01-SG2-obe.outbound.protection.outlook.com) [40.92.253.98]:41941 F=<sukafun@hotmail.com> rejected RCPT <sukafun@sukafun.com>
2017:04:28-00:25:44 sukafun-utm exim-in[29965]: 2017-04-28 00:25:44 SMTP connection from mail-oln040092253098.outbound.protection.outlook.com (APC01-SG2-obe.outbound.protection.outlook.com) [40.92.253.98]:41941 closed by DROP in ACL
 
 
If I uncheck the "Use recommended RBLs" option I receive emails fine but I need to use RBL. Even if I use one single spam provider UTM still rejects it.
 
Why emails won't pass through if there is rbl check??
 
 
Hope someone can help me...
 
Thank you.


This thread was automatically locked due to age.
  • 0

    40.92.253.98 is on a blacklist, whether it is still on "cbl.abuseat.org" or not, I don't know.  Instead of the recommended RBLs, you might want to use bl.spamcop.net, zen.spamhaus.org and xyz.bl.yodbl.net.

    UPDATE 2019-06-07: Yesterday, xyz.bl.yodbl.net was apparently hacked as many IPs were added to it that are NOT spam IPs.  Outlook.com?  Ridiculous.  Remove it if you have it.

    Cheers - Bob

     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
Unfiltered HTML