Brightmail Message Filter - Problems receiving mail from gmail.com
Updated: 26 May 2010 | 7 comments
Hi
We're using Brightmail Message Filter 6.1.1.0 and we're having problems receiving mail from gmail.com. The weird thing is that 30-40% of e-mails sent from gmail.com arrives to the receiver, and the rest disappear.
As a temporary solution we have added gmail.com to the accepted senders list. This has of course resulted in a lot of spam, because a lot of spammer authenticate as gmail.com.
Any other domain works as expected as far as we're concern.
How can we troubleshoot this?
discussion Filed Under:
Comments
Disappear
Hi,
When you say disappear, what do you mean?
Are they given a spam verdict and are deleted or do they not even make it to your MTA?
//ian
I believe they are given a
I believe they are given a spam verdict and deleted, since everything works fine when adding gmail.com in accepted senders list. but I havent tested with Quarantine or delivery with spam subject appended.
OK
It's a little difficult to diagnose without being sure what verdict SBMF is applying.
Does your MTA provide any detail in its log that shows categorically that SBMF is returning a spam verdict for the messages?
Remember that SBMF doesn't actually take action on any messages, it "simply" tells the calling MTA what its opinion is of the message (spam/virus/legit).
A few further questions:
Are you using the Early Verdict functionality in SBMF?
Which MTA are you using with it?
Which AS ruleset are you using?
Although TBH, you may be better calling into support as effectiveness issues are tricky to diagnose online without divulging confidential information about your system. If you give them a call and make sure you have a Brightmail-Tracker value from one of the messages that are being marked false positives, they'll be able to help you out.
HTH,
//ian
..
We use Sendmail, and we don't use Early Verdict. How do I determin which rulset we're using?
PS. FAO Admins/Mods I think
PS. FAO Admins/Mods
I think this is somehow posted in the wrong forum.
It should be under Security (https://www-secure.symantec.com/connect/security/f...) and not Endpoint Management & Virtualisation. I'm not sure why or if it's even possible to cross post it to another forum area.
Sorry, but I posted it on
Sorry, but I posted it on both Brightmail Gateway and Endpoint Management & Virtualization since there was none specifically for Brightmail message filter
NP
No problems, I forgot there is no dedicated Symantec Brightmail Message Filter forum.
Would you like to reply?
Login or Register to post your comment.