Skip navigation
McAfee Secure sites help keep you safe from identity theft, credit card fraud, spyware, spam, viruses and online scams
1114 Views 9 Replies Latest reply: Mar 20, 2014 9:20 AM by mh5842 RSS
suraj.kumar Newcomer 2 posts since
Dec 5, 2013
Currently Being Moderated

Dec 5, 2013 8:48 AM

Mxlogic Rejecting my emails. Please help.

Technical details of permanent failure:

Google tried to deliver your message, but it was rejected by the server for the recipient domain michiganspineandpain.com by michiganspineandpain.com.inbound10.mxlogic.net. [208.65.145.2].

 

The error that the other server returned was:

554 Denied [59bff925.0.2285250.00-1450.3684210.p01c12m011.mxlogic.net] (Mode: normal)

 

----- Original message -----

 

DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;

        d=gmail.com; s=20120113;

        h=mime-version:in-reply-to:references:date:message-id:subject:from:to

         :content-type;

        bh=cKl/bfICOD1E2pLijt3jqPwC6+w6CLaZTSCuND7K8Rs=;

        b=AS9zcBI7/Kc/ymM6rLrHK8+sl9A73qRgr/FGW7l61+fxkytVS4MyF7gTxsixhWZB9o

         hd4vOp7kpUz6JdR9qoDfdQ9/v9YHG14Qp7UMcFedpEIZYfCj7DDY35uiSWbIgntAgv9H

         8661epClOIpIjf9hBQ8sYQI+Uig+fydTLYMCsAW3O3gBu6LUW7PkUaS5MpH58k0GRJiH

         seDFq2z51A55hj8KSrfPTG+oLkfa/b151UQXFjUW6fTqTw0HvhLbrwtp4YFK+jtjKk49

         A5TO7VFZ6jRNd0ZvqzEkvmPA3mt9SaHV9MX8k4VjMZNKYucLSO3JyDLwvJOlMVWcIc/2

         IBnA==

MIME-Version: 1.0

X-Received: by 10.50.66.180 with SMTP id g20mr4049681igt.29.1386216341232;

Wed, 04 Dec 2013 20:05:41 -0800 (PST)

Received: by 10.43.58.140 with HTTP; Wed, 4 Dec 2013 20:05:40 -0800 (PST)

In-Reply-To: <CAC7CW+oPKfFnC14ZPJSTQzo1Bkf_fF-xLfgXBUxqRADvSX1ymA@mail.gmail.com>

References: <CAC7CW+oPKfFnC14ZPJSTQzo1Bkf_fF-xLfgXBUxqRADvSX1ymA@mail.gmail.com>

Date: Thu, 5 Dec 2013 09:35:40 +0530

Message-ID: <CAC7CW+oG84B96ZjRGT5Lyu4a6L7us3iW9kLeYNo4kqCmrw-LJA@mail.gmail.com>

Subject: Fwd: Information

From: Suraj Kumar <suraj142003@gmail.com>

To: SPrice@MichiganSpineandPain.com, 9897736279@nextivafax.com

Content-Type: multipart/mixed; boundary=047d7bdc14e89ac0f104ecc1a436

  • frankm Apprentice 62 posts since
    Jan 10, 2013
    Currently Being Moderated
    1. Dec 9, 2013 4:29 PM (in response to suraj.kumar)
    Re: Mxlogic Rejecting my emails. Please help.

    When sending an email to a McAfee SaaS Email Protection client, the sender is receiving the bounce back message “554 Denied.”

    Cause - The error message “554 Denied” means that we have rejected the message as spam.  This is either due to the content of the message or the reputation of the sending IP address.

  • PhilM Champion 528 posts since
    Jan 7, 2010
    Currently Being Moderated
    2. Dec 10, 2013 8:31 AM (in response to suraj.kumar)
    Re: Mxlogic Rejecting my emails. Please help.

    I don't know if Google is a common factor here. But I too am suffering from 554 messages.

     

    In my case the domain protected by SaaS is not one which is used for day-to-day email (we maintain it so that we can assist customers with SaaS using our own account) so I am basically automatically forwarding a copy of each message I receive in my primary mailbox to an e-mail address in my SaaS. My primary e-mail domain is hosted by Google Apps. I find a number of messages (the Google Groups Spam digest message being one, and log/alert messages from a Firewall appliance) are rejected by SaaS and I end up with receiving a 554 failure in my Google mailbox.

     

    I tried submitting examples to saas-falsepositives@mcafeesubmissions.com, but these were rejected stating that there was information contained within which SaaS clearly considered to be Spam.

     

    You could try editing your inbound policy and adding either the sender e-mail address or server IP address to the white list and this should then force SaaS to accept these messages.

     

    So far, in my own experience this doesn't always appear to be the case and I am still receiving 554 failures for messages from e-mail addresses which I have now added to the white list in my inbound policy in SaaS.

     

    -Phil.

  • kwidhalm McAfee Mentor 21 posts since
    Nov 2, 2012
    Currently Being Moderated
    3. Jan 28, 2014 11:22 PM (in response to PhilM)
    Re: Mxlogic Rejecting my emails. Please help.

    Hello Phil,

     

    If you continue to see messages rejected with a 554 Denied error after adding the sender to your allow list, please contact support and provide the message details (To/From/Date/Subject) so we can research the issue further.  Also, we are happy to further research any false positive message that is less than 7 days old, even those that you have previously submitted to saas-falsepositives@mcafeesubmissions.com.

     

    Best Regards,

     

    Karen W.

    System Support Specialist

    McAfee SaaS Email and Web Protection Technical Support


    Karen Widhalm

    System Support Specialist

    SaaS Email and Web Security
    McAfee.Part of Intel Security.





  • mh5842 Newcomer 6 posts since
    Mar 18, 2014
    Currently Being Moderated
    4. Mar 18, 2014 7:17 PM (in response to suraj.kumar)
    Re: Mxlogic Rejecting my emails. Please help.

    We are have a very simular problem were all emails being sent to mxlogic customers are being rejected with 554 Denied messages coming back to the sender. We had to change the IP address of our Exchange server and it appears that the reputation of the sending IP address is in question based on the information I'm finding on the Threat Center website. There appears to be no reason for this other than McAfee hasn't seen our new IP address before and is therefore dening us. Our previous IP address worked just fine but there is no going back. I've submitted requests to have this issue addressed from the Threat Feedback web page but so far it shows my IP address as High Risk for email. It does not provide a reason it's just high risk. We've has at least 50 messages rejected today.

     

    I received the message below from SaaS_falsepositives@mcafeesubmissions.com a little while ago. Based on the response below all I have to do is contact all the people we have attempted to send emails to today and have them white list us and our problem will be solved. Why didn't I think of that?

     

    Seriously, how do you fix this issue when the McAfee Threat Center has maked your mail server IP address as high risk for email? Submitting two requests to have it removed (last night and again this morning) has not helped as it still shows high risk.

     

    Thank you for your submission to McAfee.

     

     

    Messaging Security is currently experiencing longer than normal processing times for our Global Threat Intelligence updates. In the interim, please consider adding the sender to your allow list to ensure email delivery in the near future. We are working diligently to resolve this issue and apologize for the inconvenience.

     

     

    McAfee Labs

     

    Messaging Security

  • frankm Apprentice 62 posts since
    Jan 10, 2013
    Currently Being Moderated
    5. Mar 19, 2014 4:20 PM (in response to mh5842)
    Re: Mxlogic Rejecting my emails. Please help.

    How do you know McAfee has not seen your IP before? If its a new IP, do you know its historical use?

  • mh5842 Newcomer 6 posts since
    Mar 18, 2014
    Currently Being Moderated
    6. Mar 19, 2014 4:31 PM (in response to frankm)
    Re: Mxlogic Rejecting my emails. Please help.

    I don't know for sure but I do know the internet service provider fairly well and believe they make very attempt to prevent such behavior.

     

    I spoke with McAfee this morning about this. Below is the email they send me after the phone call.

     

     

    Good morning again,

     

    Thank you for taking the time to speak with me. I can appreciate your frustration, and assure you that we are working to resolve both the greater issue and yours as quickly as we can.

     

    As we discussed, due to an issue in our Global Threat Intelligence systems, we are unable to update the IP reputation of your sending IP. It has been submitted, so is in a list of IP's that will be reviewed as soon as possible when the issue is resolved.

     

    This does unfortunately mean that until the issue is fixed, the only method for delivery of your emails is for the recipient that is using the McAfee SaaS service to add your sender or domain to an allow list.

     

    Thank you again for your patience.

     

    McAfee Labs

    Messaging Security

  • frankm Apprentice 62 posts since
    Jan 10, 2013
    Currently Being Moderated
    7. Mar 19, 2014 4:48 PM (in response to mh5842)
    Re: Mxlogic Rejecting my emails. Please help.

    It would be nice if McAfee put this information on their Service Alerts, as it currently says There are no service impacting events at this time.

     

    As for the historical use of the IP, when it comes to use with email, that is different when the IP reputation is from a website.

     

    Make sure the IP is not listed in any RBL lists, use a SPF record and make sure your IP has reverse DNS (rDNS) set up and not just from the provider. rDNS should have your mail server hostname listed. Notwithstanding the IP's reputation, by not protecting your IP using the best practices of SPF and rDNS use, you can still be blocked not only from McAfee but from any mail server.

  • mh5842 Newcomer 6 posts since
    Mar 18, 2014
    Currently Being Moderated
    8. Mar 19, 2014 5:15 PM (in response to frankm)
    Re: Mxlogic Rejecting my emails. Please help.

    I've been using MXToolbox.com to work through these issues to make sure everything is correct. I've alway's maintained reverse lookup on our mail servers. Reverse lookup on the new IP address for this mail server were in place a week ahead of the change.

     

    We were not maintaining SPF records prior to this but took the suggestions by MXToolbox.com and others and they are now in place. I used another source to check these records and they should now be correct.

     

    I do not see where our IP address has been blacklisted. I'm using MXToolBox.com to check this.

  • mh5842 Newcomer 6 posts since
    Mar 18, 2014
    Currently Being Moderated
    9. Mar 20, 2014 9:20 AM (in response to mh5842)
    Re: Mxlogic Rejecting my emails. Please help.

    From: SaaS_falsepositives@mcafeesubmissions.com [mailto:SaaS_falsepositives@mcafeesubmissions.com]
    Sent: Thursday, March 20, 2014 6:57 AM
    To: mh5842
    Subject: RE:Emails being blocked

     

    Thank you for contacting McAfee Messaging Security.

     

    The Threat Center webpage is currently experiencing issues and does not accurately reflect the current reputation returned by McAfee Global Threat Intelligence servers.  This is a known issue and is on the product roadmap to be addressed.

     

    We apologize for this inconvenience.

     

    McAfee Labs

    Messaging Security

More Like This

  • Retrieving data ...

Bookmarked By (0)

Legend

  • Correct Answers - 5 points
  • Helpful Answers - 3 points