Greylist vs EFA vs spf.protection.outlook.com

General eFa discussion
Post Reply
bostjanc
Posts: 99
Joined: 01 Jun 2016 17:18

Greylist vs EFA vs spf.protection.outlook.com

Post by bostjanc » 01 Jul 2019 19:49

Dear EFA members and crew!

we are trying to figure it out how to deal with false-positive greylist from sender which is hosted on O365.

we are on EFA version 3.0.2.6
We had to debug a mail flow where customer hosted on O365 (customer's domain isn't outlook.com) tried to deliver us message, but Efa kept bouncing back with message: Recipient address rejected: Greylisted for 5 minutes

The problem was that sender was sending from different outlook mail servers, for example:
NAM01-SN1-obe.outbound.protection.outlook.com
40.107.82(40.107.82.101)
NAM05-CO1-obe.outbound.protection.outlook.com
40.107.72(40.107.72.125)

After about 5 hours and a half EFA gaved up with: sqlgrey: grey: reconnect ok

How do you deal with this senders in your EFA environment? do you simply turn off greylist to avoid this kind of problems?
Please advise.
with best regards

User avatar
shawniverson
Posts: 2804
Joined: 13 Jan 2014 23:30
Location: Rushville, Indiana, USA
Contact:

Re: Greylist vs EFA vs spf.protection.outlook.com

Post by shawniverson » 01 Jul 2019 20:32

In the /etc/sqlgrey folder are the following files:

Code: Select all

clients_fqdn_whitelist.local
clients_ip_whitelist.local
Add protection.outlook.com to the clients_fqdn_whitelist.local and then run update_sqlgrey_config
Version eFa 4.0.0 RC3 now available in testing repo. Come join us in advancing eFa!

bostjanc
Posts: 99
Joined: 01 Jun 2016 17:18

Re: Greylist vs EFA vs spf.protection.outlook.com

Post by bostjanc » 01 Jul 2019 20:41

@shawniverson thank you for quick reply.
I have followed your instructions and this is the output I got.
does this look ok?

https://drive.google.com/file/d/1tYRPYq ... sp=sharing

jamerson
Posts: 123
Joined: 19 Aug 2017 18:57
Location: kaaskop

Re: Greylist vs EFA vs spf.protection.outlook.com

Post by jamerson » 02 Jul 2019 14:29

shawniverson wrote:
01 Jul 2019 20:32
In the /etc/sqlgrey folder are the following files:

Code: Select all

clients_fqdn_whitelist.local
clients_ip_whitelist.local
Add protection.outlook.com to the clients_fqdn_whitelist.local and then run update_sqlgrey_config
is this secure to do ? even add google servers there ?
Version eFa 4.0.0 RC1 now available in testing repo. Come join us in advancing eFa!

Post Reply