Solved

email to sms gateway issues

  • 12 January 2016
  • 54 replies
  • 1413 views


Show first post

54 replies

Userlevel 3
Badge +4

Hi.

Thanks for bringing this to my attention. Many legitimate services share ISP outbound email connections with spammers and unfortunately, perfora.net was used for mass phishing attack last year.  Perfora.net was intentionally blocked because there was a spam attack originating directly from perfora outbound SMTP servers. Normally I try to block specific sources but the attack was widespread across Perfora spamming tmomail.net recipients over 200k messages per day. The attack reluctantly required to block a large block of Perfora IP addresses in the 74.xxx range.

I have unblocked perfora.net, but if it occurs again, I will be forced to block any mass source of spam. Since spammers rely on this type of breach, they seek IPs that cannot be outright blocked that would impact legitimate traffic use.

Thanks. It works now.

Our SPF records are setup correctly

we are also seeing these 550 errors coming from ‘Exchange Online’.
Is there something they can do to let our traffic through? 

Userlevel 3
Badge +4

If you could please follow me on my profile, and I follow back in order to send me a PM so that you can provide me with specific message and header details. I can then take a look and determine the exact reason for rejection. I went ahead and followed you. Thanks, Sean.

Sorry to dogpile onto this thread — I too am experiencing a similar issue.

Here's the response I'm getting:

Original-Envelope-Id: <6f17c2bc-68cb-3cae-892c-5335052eff11@fused.com>

Reporting-MTA: dns;out-3.smtp.fused.com

Arrival-Date: Thu, 15 Mar 2018 08:40:21 -0500

Final-Recipient: rfc822;14236197147@tmomail.net

Action: failed

Remote-MTA: d79033b.ess.barracudanetworks.com

Diagnostic-Code: smtp;550 permanent failure for one or more recipients (1xxxxxxxx@tmomail.net:550 Sender IP reverse lookup rejected)


I'm sending from david@fused.com.
Mind sorting? Note that fused.com doesn't host any free email accounts or such, so whitelisting would be optimal 😊

Userlevel 3
Badge +4

Header as received:

Received: from out-3.smtp.fused.com (bb-3.out.fused.email [69.162.149.152]) by mx2003.ess.tym.cudaops.com (version=TLSv1.2 cipher=ECDHE-RSA-AES256-GCM-SHA384 bits=256 verify=NO); Thu, 15 Mar 2018 13:32:51 +0000

Received: (Haraka outbound) with LOCAL id BA44E6C7-8F46-4CA0-9408-3A6F2CD88073.1; Thu, 15 Mar 2018 08:32:50 -0500

Authentication-Results: out-3.smtp.fused.com; iprev=pass; auth=pass (plain)

Received: from users-MacBook-Pro.local (host-204-93-127-55.APIOLT4.epbfi.com [204.93.127.55])

by out-3.smtp.fused.com (Haraka/2.7.3) with ESMTPSA id BA44E6C7-8F46-4CA0-9408-3A6F2CD88073.1

envelope-from <dxxxx@fused.com> (authenticated bits=0);

Thu, 15 Mar 2018 08:32:49 -0500

To: xxx619xxxx@tmomail.net

From: "dxxxx@fused.com" <dxxxx@fused.com>

Sender IP: 69.162.149.152 (bb-3.out.fused.email)

$ host fused.com

fused.com has address 52.119.44.6

fused.com mail is handled by 10 mail.corp.fused.com.

$ dig -x 69.162.149.152

; <<>> DiG 9.8.2rc1-RedHat-9.8.2-0.62.rc1.el6_9.4 <<>> -x 69.162.149.152

;; global options: +cmd

;; Got answer:

;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 2373

;; flags: qr rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 0

;; QUESTION SECTION:

;152.149.162.69.in-addr.arpa.  IN      PTR

;; ANSWER SECTION:

152.149.162.69.in-addr.arpa. 86366 IN  PTR    bb-3.out.fused.email.

I cannot whitelist external SMTP clients when the root cause is invalid SMTP server banner mismatch. The outbound MTA for fused.com is not matching reverse DNS. The reject message "550 Sender IP reverse lookup rejected" is generated based on presented information from the connecting SMTP. Need to update MX records.

You would need to verify with Fused hosting as to the correct use of SMTP settings.

$ dig txt fused.com +short

"v=spf1 +ip4:52.119.44.4 +ip4:216.86.157.103 +a:srv3.fused.com +ip4:69.64.153.128/29 +include:_spf.fused.com +include:relay.mailchannels.net -all"

"google-site-verification=OXNsoL4aXmPmuRG_zvVn8lJ1gmWZ1gtMPWCoKYNVMMU"

Please visit this tutorial link to read up on why the rDNS is invalid. I dont know if you are using Fuse for hosting service or actually trying to send directly as a fused.com branded message or just need help with configuring the SMTP setup. But as configured, this setup is mismatched and will not be permitted by the hosts as per their MX setup.

SMTP      - SMTP Banner Check

SMTP Banner CheckReverse DNS does not match SMTP Banner

$ drill mx fused.com

;; ->>HEADER<<- opcode: QUERY, rcode: NOERROR, id: 61419

;; flags: qr rd ra ; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 0

;; QUESTION SECTION:

;; fused.com.  IN      MX

;; ANSWER SECTION:

fused.com.      7200    IN      MX      10 mail.corp.fused.com.

Hello, I need to connect you with the person who is the email

administrator. His email is gsellek@hycite.com Greg Sellek. can you

please contact him?

thank you,

Erika Ortiz

2018-03-14 15:14 GMT-05:00 srickar <no-reply@t-mobile.com>:

T-Mobile Support

email to sms gateway issues

reply from srickar

<https://support.t-mobile.com/people/srickar?et=watches.email.thread> in *Account

& services* - View the full discussion

<https://support.t-mobile.com/message/635592?et=watches.email.thread#635592>

Userlevel 5

@magenta4393668​ Hey there!

We don't offer support directly through email, but you are welcome to either file a ticket with a Support representative for the issue you are having, or have your administrator contact us through here. 😊 A T-Mobile account is not required to create a Support account!

-Lauren

Userlevel 3
Badge +4

Are messages originating from hycite.com? That domain is blocked back in February for spamming T-Mobile. Can you clarify if your messages originate from this domain?

Userlevel 3
Badge +4

Circling back to send a reminder. I wanted to try and get this taken care of for you. Thanks.

Same issue here, sending SMS notifications through a small business software.

SMTP

d79033a.ess.barracudanetworks.com [64.235.154.105]

550 permanent failure for one or more recipients (<number>@tmomail.net:blocked)

Starting January 23rd, 2019, there has been a large increase in blocked SMS messages; primarily seeing @gmail.com domain as the blocked sender, but there are many others too.  I don't see a way to add SPF for Gmail.  We are not encountering this issue with any other carrier.

Please advise, as this is extremely urgent. 

@tmo_lauren@srickar

Userlevel 3
Badge +4

Sent you a follow request. Just a heads up, Gmail definitely will not permit another entity to alter the reply-to address while using gmail controlled email servers. Its to prevent spoofing and that's why DMARC/SPF hard/soft fail is common RFC email standard to prevent spoofing of another managed domain entity.

Thank you for your quick reply!

We had Gmail working just fine through January 22nd.  All messages were being successfully delivered.  Starting January 23rd is when all gmail messages began getting blocked.

Userlevel 3
Badge +4

I followed you and through inbox but I cannot send you a message until you follow me or try sending me a PM. Send me the details such as email headers and source email and I will take a look ASAP.

I am having a similar issue where messages are being blocked

Could you help me fix this issue,  I have requested to follow you and am awaiting your aporoval

Thank. You

srickar, can you help me with this exact issue?

Userlevel 3
Badge +4

Followed.

Userlevel 3
Badge +4

Yes, definitely. I sent you a follow request earlier this morning. Please follow back through inbox and you can send me a message. Thanks!

Help and thanks for following, what do you need to help me with this issue

Thanks have the rejected email, should I i m forward that to you?

We are a police department with paging system that all of a sudden stopped sending texts to t mobile officers so it's kind of a pressinf issue for us

Thank you

Dennis kitsos

Easton Police Department

Get Outlook for Android

Here is one of the rejected messages. Our paging system was sending the messages directly but they advised us to have us relay from our internal mail server which has correct spf records setup. We have since set it to relay from the email server instead of sending out directly to tmomail.net.

Here is the rejected message:

Delivery has failed to these recipients or groups:

7742195090@tmomail.net<mailto:7742195090@tmomail.net>

A problem occurred while delivering this message to this email address. Try sending this message again. If the problem continues, please contact your helpdesk.

The following organization rejected your message: d79033a.ess.barracudanetworks.com (64.235.150.252).

Diagnostic information for administrators:

Generating server: emailsecurity.townhall.easton.ma.us

7742195090@tmomail.net<mailto:7742195090@tmomail.net>

d79033a.ess.barracudanetworks.com (64.235.150.252)

Remote Server returned '<d79033a.ess.barracudanetworks.com (64.235.150.252) #5.0.0 smtp;550 permanent failure for one or more recipients (7742195090@tmomail.net:blocked<mailto:7742195090@tmomail.net:blocked>)>'

Original message headers:

Received: from emailsecurity.townhall.easton.ma.us (127.0.0.1) id hcems60171s4 for <7742195090@tmomail.net<mailto:7742195090@tmomail.net>>; Wed, 13 Feb 2019 00:40:12 -0500 (envelope-from <DKitsos@easton.ma.us<mailto:DKitsos@easton.ma.us>>)

Received: from TH-EXCH1.townhall.easton.ma.us ()

by emailsecurity.townhall.easton.ma.us () (SonicWALL 9.0.5.2075 )

with ESMTPS (version=TLSv1.2 cipher=ECDHE-RSA-AES256-SHA384 bits=256/256)

id o201902130540110039204-21; Wed, 13 Feb 2019 00:40:11 -0500

Received: from TH-EXCH1.townhall.easton.ma.us (192.168.1.2) by

TH-EXCH1.townhall.easton.ma.us (192.168.1.2) with Microsoft SMTP Server (TLS)

id 15.0.1320.4; Wed, 13 Feb 2019 00:40:11 -0500

Received: from TH-EXCH1.townhall.easton.ma.us () by

TH-EXCH1.townhall.easton.ma.us () with mapi id

15.00.1320.000; Wed, 13 Feb 2019 00:40:11 -0500

follow request sent. We are experiencing the same issue.

@srickar​ I am having the same email to SMS gateway blocking issue.  T-Mobile is the only carrier that we have this problem with.  We've done just about everything imaginable on our end to make sure that we have no configuration issues on our end.  Can you please help with the process within T-Mobile to get this resolved?

Userlevel 3
Badge +4

Please send me a P.M. and I can investigate. Thanks.

@srickar​ My company has a system that has been sending email to SMS for years. Recently our T-Mobile users have been reporting that they have stopped receiving their messages. After reading through several forums now, I believe that our domain has been blacklisted. I was wondering if you could help. I followed you earlier, but I am not able to send you a P.M.

Please email me my monthly statement at @magenta9739608.

Thanks,

Castalia Haynes

Reply