| Linode Forum https://forum.linode.com/ |
|
| Hotmail trying to send mail to my node https://forum.linode.com/viewtopic.php?f=11&t=9173 |
Page 1 of 1 |
| Author: | bjl [ Sat Jul 21, 2012 11:39 am ] |
| Post subject: | Hotmail trying to send mail to my node |
Occasionally, when my wife sends me an email from her hotmail account she gets a bounce message saying the message was undeliverable. This is the correct response, since I use google apps for my email. My DNS configuration appears to be correct. I think postfix is doing what it's supposed too, but I've included a log snippet below from yesterday when she tried to send a couple emails. Is there anything I can do to stop hotmail from trying to deliver to my node? The domain in question is brianlance.com, and my node has never been responsible for accepting mail for this domain. Although it does accept mail for others. Code: Jul 20 09:26:06 wallace postfix/smtpd[18853]: connect from snt0-omc4-s23.snt0.hotmail.com[65.55.90.226] |
|
| Author: | Vance [ Sat Jul 21, 2012 9:54 pm ] |
| Post subject: | Re: Hotmail trying to send mail to my node |
Code: $ dig brianlance.com mx Looks like your MX records are set to use Google for incoming mail. Unless Hotmail is somehow getting a different DNS response, it should never look at the A record (which points to your Linode) as a place to deliver mail. Postfix is doing the right thing by returning a 5xx (permanent) error code - does Hotmail send a bounce message to your wife? Since Postfix needs to accept mail for other domains, you can't just firewall it off from the outside world. The only other option I can think of would be to have Postfix return a different error code to tell Hotmail to stop doing this, but I don't think there's one more appropriate. |
|
| Author: | hoopycat [ Sun Jul 22, 2012 7:01 am ] |
| Post subject: | Re: Hotmail trying to send mail to my node |
I concur: it is absolutely a Hotmail problem, as they are ignoring the MX records. You might have some luck getting in touch with Hotmail Postmaster. |
|
| Author: | Erasmus Darwin [ Mon Jul 23, 2012 12:50 pm ] |
| Post subject: | Re: Hotmail trying to send mail to my node |
Apparently this has been going on for a couple years. Here's a serverfault post from someone having the problem in 2010 (with some replies from earlier this year). Since this appears to be going on for so long, I suspect waiting for Hotmail to fix it may be futile. I think Vance might be on the right path with the notion of providing a non-5xx error. Try sending a 4xx error code for any brianlance.com mail instead (which tells the sender there's a temporary error and it should try again later). It's possible that this will cause Hotmail to try your MX servers and deliver the mail properly. |
|
| Author: | Stever [ Mon Jul 23, 2012 3:29 pm ] |
| Post subject: | Re: Hotmail trying to send mail to my node |
As much as I like to bash hotmail, it seems like a little bit of this sort of thing is inevitable when your MX points somewhere different than the A record for the domain. A temporary failure on the MX lookup is likely to cause a sending server to fall back to the A record. One answer would be to accept the mail and just forward it yourself. I agree though that sending a 4xx response might help, especially with your 5 minute DNS TTL setting. That of course is assuming hotmail honors the TTL 
|
|
| Author: | bjl [ Mon Jul 23, 2012 6:02 pm ] |
| Post subject: | Re: Hotmail trying to send mail to my node |
Thanks for the input everyone. Is falling back to the A record in cases of MX lookup failures a standard behavior? What 4xx code should I send (and how do I do that)? I've thought about just relaying the messages, but I'm not sure where that would be configured. I should probably increase that TTL.  Set it to that when I was testing something a long time ago and forgot set it back.
|
|
| Author: | sweh [ Mon Jul 23, 2012 7:41 pm ] |
| Post subject: | Re: Hotmail trying to send mail to my node |
Stever wrote: As much as I like to bash hotmail, it seems like a little bit of this sort of thing is inevitable when your MX points somewhere different than the A record for the domain. This is, in fact, the RFC-correct way of doing things. Trying all MX records and then failing back to A record is... wrong. Definitively. Quote: One answer would be to accept the mail and just forward it yourself. I agree though that sending a 4xx response might help, especially with your 5 minute DNS TTL setting. That of course is assuming hotmail honors the TTL DNS TTLs are irrelevant to SMTP retry timings. |
|
| Author: | sweh [ Mon Jul 23, 2012 7:44 pm ] |
| Post subject: | Re: Hotmail trying to send mail to my node |
bjl wrote: Thanks for the input everyone. Is falling back to the A record in cases of MX lookup failures a standard behavior? It's a not-unheard-of broken behaviour. It's not standard and it's wrong. But it's not unheard of. Quote: I've thought about just relaying the messages, but I'm not sure where that would be configured. Be careful about relaying; if google rejects your mail as spam at SMTP time then you'll either need to blackhole the message or will act as a back-scatter spam source in your own right. |
|
| Page 1 of 1 | All times are UTC-04:00 |
| Powered by phpBB® Forum Software © phpBB Group http://www.phpbb.com/ |
|