Hi Ian,
Not sure if my reply went through to you or not.
The originating main originating IP is 59.100.194.166 but there will be a few different IPs due to staff using Office 365 from different locations such as their homes.
Below is a copy of the bounceback image which contains all of the needed information. It is the same error every time when sending to anyone who is using the symantec cloud system.
From: Microsoft Outlook
Sent: Thursday, 13 July 2017 9:35 AM
To: Steeve Mackay
Subject: Undeliverable: Attention to Shannon Wells
|
Your message to ecsadmin@employsure.com.au couldn't be delivered.
|
When Office 365 tried to send your message, the receiving email server outside Office 365 reported an error.
|
steeve
|
Office 365
|
ecsadmin
|
Sender
|
|
Action Required
|
|
|
|
Policy violation or system error
|
|
How to Fix It
|
Check the "Reported Error" from the "Error Details" section shown below for more information about the problem. The error might tell you what went wrong and how to fix it. For example, if the error states that the message was blocked due to a potential virus or because the message was too large, try sending the message again without attachments.
|
If you're not able to fix the problem, it's likely that only the recipient's email admin can fix it. Contact the recipient by some other means (by phone, for example) and ask them to tell their email admin about the problem. Give them the "Reported Error" from the "Error Details" section below.
|
|
Was this helpful? Send feedback to Microsoft.
|
|
More Info for Email Admins
|
Status code: 550 5.0.350
The error reported by the receiving server wasn't specific enough to determine the exact nature of the problem. These errors often indicate the message violates a security or policy setting configured on the recipient's email servers.
If the sender is unable to fix the problem by modifying their message, then it's likely a problem that only the recipient's email admin can fix. Try the following:
Check the error for information about the problem - The "Reported Error" returned by the external email server can be found in the "Error Details" section below. This error might tell you what went wrong and provide clues for how to fix it. For example, if the error states the message was rejected due a Sender Policy Framework (SPF) issue, then you'll have to work with your domain registrar to correctly configure your domain's SPF records.
Check the error for information about where the problem is happening - For example, look for a domain name like contoso.com. A domain name in the error might suggest who is responsible for the error. It could be the recipient's email server, or it could be a third-party service that your organization or the recipient's organization is using to process or filter email messages.
If you can't fix the problem, contact the responsible party's email admin - Give them the error code and error message from this non-delivery report (NDR) to help them troubleshoot the issue. For security or policy violation issues, it might be sufficient for them to just add your sending IP addresses or domain to their allowed senders list.
It's likely that only the recipient's email admin can fix the problem. Unfortunately, it's unlikely Office 365 Support will be able to help with these kinds of externally reported errors.
|
Original Message Details
|
|
Error Details
|
Reported error:
|
550 5.0.350 Remote server returned an error -> 553 Message filtered. Refer to the Troubleshooting page at;http://www.symanteccloud.com/troubleshooting for more;information. (#5.7.1)
|
DSN generated by:
|
SG2PR01MB0848.apcprd01.prod.exchangelabs.com
|
Remote server:
|
server-15.tower-44.messagelabs.com
|
|
Message Hops
|
HOP
|
TIME (UTC)
|
FROM
|
TO
|
WITH
|
RELAY TIME
|
1
|
12/07/2017
23:35:12
|
SG2PR01MB0332.apcprd01.prod.exchangelabs.com
|
SG2PR01MB0332.apcprd01.prod.exchangelabs.com
|
mapi
|
*
|
2
|
12/07/2017
23:35:13
|
SG2PR01MB0332.apcprd01.prod.exchangelabs.com
|
SG2PR01MB0848.apcprd01.prod.exchangelabs.com
|
Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256_P256)
|
1 sec
|
Original Message Headers
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
d=ColdXpress.onmicrosoft.com; s=selector1-coldxpress-com-au;
h=From:Date:Subject:Message-ID:Content-Type:MIME-Version;
bh=t4QXbyZ6lYEyyr6kV/RMJE4g3U1YhT89RQaKOdnZ8Nk=;
b=jputp4KdlE8pOEa1KE/zzLNse0qhy8UdaKpUWb3GFFmm9O9Z1rfj4z4OQEBpRI8hfzE/j60GvDlGY8Y1if63zcEOI9db4LoldEiE8BvVvaryjOkVDWo4zKdup6RBmxn/iUx43biwQKzuQZF50uDCVpLLTg7yeIM8Yf6D4D/GNiA=
Received: from SG2PR01MB0332.apcprd01.prod.exchangelabs.com (10.161.11.151) by
SG2PR01MB0848.apcprd01.prod.exchangelabs.com (10.169.52.146) with Microsoft
SMTP Server (version=TLS1_2,
cipher=TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256_P256) id 15.1.1261.13; Wed, 12
Jul 2017 23:35:13 +0000
Received: from SG2PR01MB0332.apcprd01.prod.exchangelabs.com
([fe80::50a4:940e:73e5:fbbc]) by SG2PR01MB0332.apcprd01.prod.exchangelabs.com
([fe80::50a4:940e:73e5:fbbc%17]) with mapi id 15.01.1261.015; Wed, 12 Jul
2017 23:35:12 +0000
From: Steeve Mackay <steeve@coldxpress.com.au>
To: "ecsadmin@employsure.com.au" <ecsadmin@employsure.com.au>
CC: Jack Di Losa <jack@coldxpress.com.au>, Marie Di Losa
<marie@coldxpress.com.au>
Subject: Attention to Shannon Wells
Thread-Topic: Attention to Shannon Wells
Thread-Index: AdL7ZwFdE5kDN2k7S6eCtce2KD/A/g==
Date: Wed, 12 Jul 2017 23:35:12 +0000
Message-ID: <SG2PR01MB033253E1952C18DB7FDDCB0180AF0@SG2PR01MB0332.apcprd01.prod.exchangelabs.com>
Accept-Language: en-GB, en-US
Content-Language: en-US
X-MS-Has-Attach: yes
X-MS-TNEF-Correlator:
authentication-results: employsure.com.au; dkim=none (message not signed)
header.d=none;employsure.com.au; dmarc=none action=none
header.from=coldxpress.com.au;
x-originating-ip: [59.100.194.166]
x-ms-publictraffictype: Email
x-microsoft-exchange-diagnostics: 1;SG2PR01MB0848;7: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
x-forefront-antispam-report: SFV:SKI;SCL:-1SFV:NSPM;SFS:(10019020)(39400400002)(39410400002)(39830400002)(39450400003)(68736007)(345774005)(42882006)(6916009)(74316002)(3480700004)(9326002)(99936001)(3660700001)(7736002)(5250100002)(2501003)(50986999)(54356999)(3280700002)(5890100001)(5660300001)(7696004)(478600001)(8936002)(86362001)(861006)(2906002)(14454004)(966005)(8676002)(1730700003)(81166006)(38730400002)(110136004)(107886003)(25786009)(4326008)(5640700003)(606006)(189998001)(54896002)(54556002)(99286003)(6306002)(54906002)(6506006)(53936002)(2900100001)(9686003)(236005)(33656002)(55016002)(2351001)(6436002)(733005)(66066001)(790700001)(6116002)(102836003)(3846002)(74482002)(227093001);DIR:OUT;SFP:1102;SCL:1;SRVR:SG2PR01MB0848;H:SG2PR01MB0332.apcprd01.prod.exchangelabs.com;FPR:;SPF:None;MLV:ovrnspm;PTR:InfoNoRecords;LANG:en;
x-ms-office365-filtering-correlation-id: 87990fcc-8eb8-4134-49e0-08d4c97ea468
x-microsoft-antispam: UriScan:;BCL:0;PCL:0;RULEID:(300000500095)(300135000095)(300000501095)(300135300095)(22001)(300000502095)(300135100095)(2017030254075)(300000503095)(300135400095)(2017052603031)(49563074)(201703131423075)(201703031133081)(300000504095)(300135200095)(300000505095)(300135600095)(300000506095)(300135500095);SRVR:SG2PR01MB0848;
x-ms-traffictypediagnostic: SG2PR01MB0848:
x-exchange-antispam-report-test: UriScan:(151999592597050)(26388249023172)(236129657087228)(48057245064654)(86561027422486)(46150409022019)(21748063052155)(64217206974132)(209349559609743);
x-microsoft-antispam-prvs: <SG2PR01MB08483E72E764ECD82EB5544C80AF0@SG2PR01MB0848.apcprd01.prod.exchangelabs.com>
x-exchange-antispam-report-cfa-test: BCL:0;PCL:0;RULEID:(100000700101)(100105000095)(100000701101)(100105300095)(100000702101)(100105100095)(102415395)(6040450)(601004)(2401047)(2017060910075)(5005006)(8121501046)(100000703101)(100105400095)(3002001)(10201501046)(93006095)(93001095)(6041248)(20161123555025)(20161123560025)(20161123564025)(201703131423075)(201702281528075)(201703061421075)(201703061406153)(20161123558100)(20161123562025)(6072148)(100000704101)(100105200095)(100000705101)(100105500095);SRVR:SG2PR01MB0848;BCL:0;PCL:0;RULEID:(100000800101)(100110000095)(100000801101)(100110300095)(100000802101)(100110100095)(100000803101)(100110400095)(100000804101)(100110200095)(100000805101)(100110500095);SRVR:SG2PR01MB0848;
x-forefront-prvs: 036614DD9C
spamdiagnosticoutput: 1:99
spamdiagnosticmetadata: NSPM
Content-Type: multipart/mixed;
boundary="_009_SG2PR01MB033253E1952C18DB7FDDCB0180AF0SG2PR01MB0332apcp_"
MIME-Version: 1.0
X-OriginatorOrg: coldxpress.com.au
X-MS-Exchange-CrossTenant-originalarrivaltime: 12 Jul 2017 23:35:12.6661
(UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 47f6bd29-f40c-43df-ae95-6c9905c7f0be
X-MS-Exchange-Transport-CrossTenantHeadersStamped: SG2PR01MB0848