Ok so it would appear I tell fibs, looking further into the logs I have found another instance of a blockage it is not accompanied by a DNS TXT error, however it is the same IP being blocked.
Mar 12, 2010 12:58:35 PM NZDT |
|
Information |
NZSMTP01 |
Brightmail Engine |
A connection to the firewall from: <216.82.241.211> returned Disposition: <dns_deny> triggering filtering policy <static-deny-dns> with destination <<firewall_response message="You are not allowed to connect." type="reject"/>>.
|
Doing a reputation lookup the ip yeilds it it is happy with Symantec.
However looking online it appears to be on one of the Blacklists we use, Spamcannibal.org
Is there a nicer way of getting the logs to report which blacklist/method it uses to reject the ip?
By adding this to good senders, it will always send through regardless of status on Blacklists/etc ?