today a colleague was unable to receive mail from account-security-noreply@accountprotection.microsoft.com. Except another obvious spam address any other domains is working fine.
I was getting a NDN:
Code: Select all
553 5.1.8 <account-security-noreply@accountprotection.microsoft.com>... Domain of sender address account-security-noreply@accountprotection.microsoft.com does not exist
Action: failed
Status: 5.3.0
x-scalix-Reason-Code: 5
i used check_mail within sendmail:
Code: Select all
mailserver:~ # echo "check_mail account-security-noreply@accountprotection.microsoft.com" | sendmail -d8.20 -bt
ADDRESS TEST MODE (ruleset 3 NOT automatically invoked)
Enter <ruleset> <address>
> check_mail input: account-security-noreply @ accountprotection . microsoft . com
Basic_check_mail input: account-security-noreply @ accountprotection . microsoft . com
tls_client input: $| MAIL
TLS_connection input:
TLS_connection returns:
tls_client returns:
CanonAddr input: < account-security-noreply @ accountprotection . microsoft . com >
canonify input: < account-security-noreply @ accountprotection . microsoft . com >
Canonify2 input: account-security-noreply < @ accountprotection . microsoft . com >
dns_getcanonname(accountprotection.microsoft.com, trymx=1)
dns_getcanonname: trying accountprotection.microsoft.com. (A)
YES
dns_getcanonname: trying mail.msa.msidentity.com. (A)
NO: errno=0, h_errno=1
dns_getcanonname: trying mail.msa.msidentity.com. (A)
NO: errno=0, h_errno=1
Canonify2 returns: account-security-noreply < @ accountprotection . microsoft . com >
canonify returns: account-security-noreply < @ accountprotection . microsoft . com >
Parse0 input: account-security-noreply < @ accountprotection . microsoft . com >
Parse0 returns: account-security-noreply < @ accountprotection . microsoft . com >
CanonAddr returns: account-security-noreply < @ accountprotection . microsoft . com >
Basic_check_mail returns: $# error $@ 5 . 1 . 8 $: "553 Domain of sender address " " does not exist"
check_mail returns: $# error $@ 5 . 1 . 8 $: "553 Domain of sender address " " does not exist"and doublechecked with a random known domain, which was successful.
Tried dig and nslookup:
Code: Select all
mailserver:~ # dig accountprotection.microsoft.com
; <<>> DiG 9.9.6-P1 <<>> accountprotection.microsoft.com
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 11181
;; flags: qr rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4000
;; QUESTION SECTION:
;accountprotection.microsoft.com. IN A
;; ANSWER SECTION:
accountprotection.microsoft.com. 2347 IN CNAME mail.msa.msidentity.com.
;; Query time: 19 msec
;; SERVER: 192.168.2.50#53(192.168.2.50)
;; WHEN: Thu Feb 15 12:52:11 CET 2018
;; MSG SIZE rcvd: 94
mailserver:~ # nslookup -querytype=mx accountprotection.microsoft.com
Server: 192.168.2.50
Address: 192.168.2.50#53
Non-authoritative answer:
accountprotection.microsoft.com canonical name = mail.msa.msidentity.com.
mail.msa.msidentity.com mail exchanger = 5 mx1.hotmail.com.
mail.msa.msidentity.com mail exchanger = 5 mx2.hotmail.com.
mail.msa.msidentity.com mail exchanger = 5 mx3.hotmail.com.
mail.msa.msidentity.com mail exchanger = 5 mx4.hotmail.com.
mail.msa.msidentity.com mail exchanger = 10 accountprotection-microsoft-com.mail.protection.outlook.com.
Authoritative answers can be found from:
mx1.hotmail.com internet address = 65.55.92.184
mx1.hotmail.com internet address = 65.55.92.136mxtoolbox.com doesn't show any, in my opinion relevant error for the domain accountprotection.microsoft.com.
Does someone know, what is going wrong?
regards
Hannes
