Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
jh0rv4t
New Contributor

check if sender MX points to bogon IP or hostname (localhost, 127.0.0.1, ::1)

Hi

 

Is there a check in FortiMail (like in http://www.postfix.com/postconf.5.html#smtpd_sender_restrictions) to reject/drop mails if senders domain MX points to bogon A/MX record:

 

check_sender_mx_access:

 

127.0.0.1 REJECT
localhost REJECT

...

 

 

 

4 REPLIES 4
AEK
SuperUser
SuperUser

Never seen such check on FortiMail.

AEK
AEK
jh0rv4t
New Contributor

>nslookup -type=mx dtcinfy.com 1.1.1.1

dtcinfy.com MX preference = 300, mail exchanger = localhost

 

so email (spam?) from @dtcinfy.com is then stuck in dead mail queue/loop....

 

it should never been accepted in the first place.

 

SAV (sender address verification) could help in this case. How is this done in FortiMail?

AEK

May be I missed something but I don't understand why an e-mail from a sender that has MX 127.0.0.1 should be considered as SPAM.

As far as I know when a mail is received then DNS records like PTR, SPF and DKIM are checked but not MX.

AEK
AEK
jh0rv4t
New Contributor

It should be considered as invalid or not rfc compliant atleast.

i see no sense in accepting email from domain that does "not want" to accept one itself.

Announcements

Select Forum Responses to become Knowledge Articles!

Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.

Labels
Top Kudoed Authors