3 Replies Latest reply: Nov 11, 2013 10:22 AM by Brad McGarr RSS

    connect to ***.com.inbound15.mxlogic.net:25: Connection refused


      Hello!  We have inherited a small block of IPs that were previously dynamic IP addresses and, understandably, may have attained a less-than-stellar reputation in the past.


      That is, however, in the past.  Now the IPs are static, rDNS is set up properly for each, and secured servers are in place.  Our primary mail server is assigned the address, which already appears to have a clean reputation according to McAfee:




      However, all connections from our IP are completely refused.  There are no exceptions in the log for the past few months.


      We do business with a fairly substantial proportion of customers and vendors whose emails are processed by McAfee, and regrettably, few of them really understand why we can't email them back.  Even fewer seem to realize that McAfee is providing a service for them.  And the efforts of a knowledgable few to add our senders' domains to a whitelist, while appreciated, will never have an effect because connections from this IP are refused altogether.  So we end up relying on Yahoo! Mail, Gmail, Hotmail, and other '90s workarounds... not very professional at all.  It is worth mentioning that we only contact customers and clients who have asked us to or inquired and left their contact email address; we have never attempted to send UBE from this IP, and never will.


      Originally, we believed this was a reputation issue.  After emailing McAfee a total of approximately one dozen false positives (which were all we bothered to collect at that time), we got this response:


      Thank you for contacting McAfee Messaging Security.


      The error that you have reported is not one that can be resolved by the Messaging Security team. If you are a McAfee SaaS customer, please contact the group that provides the Technical Support for your Email Protection service.  If you are not a customer, please contact the recipient for further assistance with resolving the mail flow issue.  In some cases, the problem can be resolved by having the intended recipient add your sending domain to their Sender Allow list within our service.


      Technical Support can be reached at either https://support.mcafeesaas.com or 877/695-6442.


      Thank you,


      McAfee Labs

      Messaging Security


      Nice.  So basically, call the guy who has no idea what rDNS is, what an IP address is, or what an MX record is -- and let him report it to McAfee.  I'm sure that will do wonders.  After about three months of grappling with this, I'm starting to wonder if maybe this is somehow the goal?  Can anyone appease the monolith?  Why should I believe that registering and posting in this forum -- another hour wasted -- will resolve it?


      Let's hope there's still hope.