General eFa discussion
Post Reply
Posts: 286
Joined: 23 Apr 2015 09:45

Post by nicola.piazzi » 04 Jul 2019 15:00

My mailserver ip is blacklisted by this site,
They ask me money for immediate delisting and there is no way to contact them

I have efa configured to accept our domain only and it check in ldap for recipent at smtp level
when is not present it give reject immediately and have no bounces

I watch log at time they specified and there is no messages outgoing

what do you think about this site ?

Cattura.PNG (43.29 KiB) Viewed 6283 times

Posts: 463
Joined: 14 Dec 2015 22:16
Location: Netherlands


Post by henk » 04 Jul 2019 17:47

Hi Nicola,

Check again ;) ... n=toolpage

Are you sure Efa is the only system that can send outbound -NDR-mail?
To be sure add some firewall smtp / smtp ports rules on mail traffic and activate logging on these rules.

Posts: 286
Joined: 23 Apr 2015 09:45


Post by nicola.piazzi » 05 Jul 2019 07:11

Hi henk
only efa can send mail using that ip address, it have its dedicate ip with nat 1 to 1

User avatar
Posts: 3120
Joined: 13 Jan 2014 23:30
Location: Indianapolis, Indiana USA


Post by shawniverson » 06 Jul 2019 14:36

Be sure to check that the ip range that eFa is not sending out bad smtp traffic as well, and make sure Notify Senders is off in MailScanner or set to only notify on your local domains with a ruleset.
Version eFa 4.0.2 now available!

Posts: 286
Joined: 23 Apr 2015 09:45


Post by nicola.piazzi » 09 Jul 2019 14:40

Hi Shawn & henk
I found problem

efa query ldap and reject at conversation level so is impossible that it accept for other domains

impossible ? yes but ldap query returns also AD contacts recipients !!!

So if you have some contacts defined in ad that have other domains ldap query consider it valid
and it they bounces is a backscatter

so is not a good thing
I think that is needed a directive in to filter contacts

or can be done adding domain to this filter

query_filter = (|(proxyAddresses=smtp:%s) (proxyAddresses=SMTP:%s))

Posts: 286
Joined: 23 Apr 2015 09:45


Post by nicola.piazzi » 10 Jul 2019 07:58

When i create an AD CONTACT there is a creation rule that create also an address with principal domain

4 example suppose that i need to crete a contact named John Red that belong to

I create a contact that have
But Exchange rule add also

When someone send a message to Postfix accept it because is principal domain then Exchange try to send this email to principal reject this mail as spam and then Exchange generate an NDR directed to the sender that is a spoofed sender and backscatterer mark me

Problem is that Exchange create by default a duplicate of each contact that have same name but master domain

Post Reply