Loading...
Loading...

Trustwave Knowledge Base

Home » Knowledgebase » Trustwave MailMarshal (SEG) » PRB: Spamhaus rules block all mail or nothing

PRB: Spamhaus rules block all mail or nothing

Expand / Collapse
Show/Hide Article Tools


This article applies to:

  • Trustwave MailMarshal/SEG
  • Spamhaus reputation service (DNS block list)

Symptoms:

  • Rules using the Spamhaus service block every message, even though the sources are not listed.
  • Rules using the Spamhaus service do not block any messages, but a manual lookup using the Spamhaus lookup tool shows the IP addresses of message sources are listed.

Causes:

  • Spamhaus lookups fail if you directly use a public DNS server such as Google (8.8.8.8) in MailMarshal.

Details:

See the Spamhaus FAQ page, and in particular note the following response:

Check what DNS resolvers you are using: If you are using a free "open DNS resolver" service such as the Google Public DNS or large cloud/outsourced public DNS servers, such as Level3's or Verizon's, to resolve your DNSBL requests, in most cases you will receive a "not listed" (NXDOMAIN) reply from Spamhaus' public DNSBL servers. We recommend using your own DNS servers when doing DNSBL queries to Spamhaus.

Resolution:

Configure MailMarshal/SEG to use a local DNS server.

  • Trustwave has always recommended use of a local DNS server as best practice for responsiveness in mail delivery and other lookups.

To contact Trustwave about this article or to request support:

Rate this Article:
     

Related Articles


Q12009 INFO: Do I need to pay to use Spamhaus with MailMarshal?
Q12010 HOWTO: Setting up a Spamhaus data feed for MailMarshal

Add Your Comments


Comment submission is disabled for anonymous users.
Please send feedback to Trustwave Technical Support or the Webmaster.


Execution: 0.031. 10 queries. Compression Disabled.
Powered by InstantKB.NET