微軟黑名單申訴方法(550 SC-001) 解法 二
寄信至 Hotmail account,收到退信訊息
<Example@hotmail.com>: host mx2.hotmail.com[207.46.8.167] said: 550 SC-001
(BAY004-MC5F7) Unfortunately, messages from 1.2.3.4 weren't sent.
Please contact your Internet service provider since part of their network
is on our block list. You can also refer your provider to
http://mail.live.com/mail/troubleshooting.aspx#errors. (in reply to MAIL
FROM command) 』
先確認 SMTP 主機是否有符合微軟的安全性規範?
再確認
電子郵件伺服器必須具備有效的反向 DNS 記錄。
電子郵件伺服器必須具備有效的反向 DNS 記錄。
電子郵件伺服器必須具備有效的反向 DNS 記錄。
。
。
。
很重要 要講 n 次
最後 點這裡去申訴,依表格需求逐項確實填妥,很快的就會有相關技術人員跟您聯繫並告知處理進度與注意事項。
EXAMPLE:
Dear MIB Laboratory
We have completed reviewing the IP(s) you submitted. The following table contains the results of our investigation.
These IP(s) have been unblocked,........
..........Mitigation may take 24 - 48 hours to replicate completely throughout our system.
If you feel your issue is not yet resolved, please reply to this email and one of our support team members will contact you for further investigation.
當技術人員協助將SMTP 移除黑名單後,就可以正常寄信給 Hotmail。
檢視 微軟黑名單申訴方法(550 SC-001) 解法 一
2016-05-11
Blogger 切換自己的域名 (以BIND為例)
Blogger 切換自己的域名 (以BIND為例)
像把Blogger舊有的域名為 fuglemanpeter.blogspot.tw 更為 新的域名 psy.pengsme.com
Google 的Blogger 可以免費轉換一組自訂義的域名。
詳閱 如何在網誌上使用自訂網域名稱?
在 NAME SERVER 下加入
;GOOGLE;
@ 3600 IN A 216.239.32.21
@ 3600 IN A 216.239.34.21
@ 3600 IN A 216.239.36.21
@ 3600 IN A 216.239.38.21
psy 3600 IN CNAME ghs.google.com.
zsdsf4jr9ch4 3600 IN CNAME gv-czsgwq54qgh3csa.dv.googlehosted.com. (範例)
設定好後,reload NAME SERVER。並等候域名同步(約24-48hr)。
最後,一切都設置完成(包含 NAME SERVER 的同步),只要在網址列輸入新的域名 psy.pengsme.com 或是舊的域名 fuglemanpeter.blogspot.tw 都可以了。
像把Blogger舊有的域名為 fuglemanpeter.blogspot.tw 更為 新的域名 psy.pengsme.com
Google 的Blogger 可以免費轉換一組自訂義的域名。
詳閱 如何在網誌上使用自訂網域名稱?
在 NAME SERVER 下加入
;GOOGLE;
@ 3600 IN A 216.239.32.21
@ 3600 IN A 216.239.34.21
@ 3600 IN A 216.239.36.21
@ 3600 IN A 216.239.38.21
psy 3600 IN CNAME ghs.google.com.
zsdsf4jr9ch4 3600 IN CNAME gv-czsgwq54qgh3csa.dv.googlehosted.com. (範例)
設定好後,reload NAME SERVER。並等候域名同步(約24-48hr)。
最後,一切都設置完成(包含 NAME SERVER 的同步),只要在網址列輸入新的域名 psy.pengsme.com 或是舊的域名 fuglemanpeter.blogspot.tw 都可以了。
微軟黑名單申訴方法(550 SC-001) 解法 一
微軟黑名單申訴方法(550 SC-001) 解法 一
今天使用公司的郵件伺服器發送信件給客戶,結果被退信,退信內容如下:
This is a return mail sent by system automatically, please do not reply this mail.
Your mail can not be delivered successfully due to the reason below:
Response Message :
To: abc@hotmail.com
Subject: 550 SC-001
Remote host: 65.55.37.104
Detail: 550 SC-001 (COL004-MC3F35) Unfortunately, messages from ***.***.***.*** weren't sent. Please contact your Internet service provider since part of their network is on our block list. You can also refer your provider to http://mail.live.com/mail/troubleshooting.aspx#errors.
除了Hotmail外其他信箱接沒問題,遲遲無法排除,透過Google大神找了很久也沒具體的方法,終於讓我找到一個解決方式,在此提供給各位看官參考。
1.將退信內容轉寄至delist@messaging.microsoft.com
2.郵件內文前端補上以下範例:
Please Help me out to solve the below issue.
My Below IP Address are showing Blacklisted on belowdns address IP Address:IP *** . *** .*** .*** . Please Help me and remove my ipfrom black list
Thank you!
3.將上述***.***.***.***替換成您的外部IP再寄出等候消息,一般來說約10分鐘內會有郵件回覆,以下是收到回覆的內容:
Hello ,
Thank you for your delisting request SRX1332393068ID. Your ticket was received on (Mar 22 2016 07:57 AM UTC) and will be responded to within 24 hours.
Our team will investigate the address that you have requested to be removed from our blocklist. If for any reason we are not able to remove your address, one of our technical support representatives will respond to you with additional information.
Regards,
Technical Support
最後,等待24小時進行審核,如果沒有任何意外就會將IP從黑名單當中移除。
或是 微軟黑名單申訴方法(550 SC-001) 解法 二
今天使用公司的郵件伺服器發送信件給客戶,結果被退信,退信內容如下:
This is a return mail sent by system automatically, please do not reply this mail.
Your mail can not be delivered successfully due to the reason below:
Response Message :
To: abc@hotmail.com
Subject: 550 SC-001
Remote host: 65.55.37.104
Detail: 550 SC-001 (COL004-MC3F35) Unfortunately, messages from ***.***.***.*** weren't sent. Please contact your Internet service provider since part of their network is on our block list. You can also refer your provider to http://mail.live.com/mail/troubleshooting.aspx#errors.
除了Hotmail外其他信箱接沒問題,遲遲無法排除,透過Google大神找了很久也沒具體的方法,終於讓我找到一個解決方式,在此提供給各位看官參考。
1.將退信內容轉寄至delist@messaging.microsoft.com
2.郵件內文前端補上以下範例:
Please Help me out to solve the below issue.
My Below IP Address are showing Blacklisted on belowdns address IP Address:IP *** . *** .*** .*** . Please Help me and remove my ipfrom black list
Thank you!
3.將上述***.***.***.***替換成您的外部IP再寄出等候消息,一般來說約10分鐘內會有郵件回覆,以下是收到回覆的內容:
Hello ,
Thank you for your delisting request SRX1332393068ID. Your ticket was received on (Mar 22 2016 07:57 AM UTC) and will be responded to within 24 hours.
Our team will investigate the address that you have requested to be removed from our blocklist. If for any reason we are not able to remove your address, one of our technical support representatives will respond to you with additional information.
Regards,
Technical Support
最後,等待24小時進行審核,如果沒有任何意外就會將IP從黑名單當中移除。
或是 微軟黑名單申訴方法(550 SC-001) 解法 二
2016-05-06
How to install BIND on CentOS 7
How to install BIND on CentOS 7
安裝好 CentOS 7 後,確認一下版本
cat /etc/redhat-release
CentOS Linux release 7.1.1503 (Core)
初始初始設定 (依需求調整)
變更hotname
hostnamectl set-hostname BIND1
設定網卡
vi(vim) /etc/sysconfig/network-scripts/ifcfg-eth0(1)
TYPE="Ethernet"
BOOTPROTO="none"
DEFROUTE="yes"
IPV4_FAILURE_FATAL="no"
IPV6INIT="yes"
IPV6_AUTOCONF="yes"
IPV6_DEFROUTE="yes"
IPV6_FAILURE_FATAL="no"
NAME="eth0"
UUID="c6892610-eg40-5423-9398-9e28660d4d82"
DEVICE="eth0"
ONBOOT="yes"
IPADDR="192.168.50.53"(內部IP) -- 調整符合現況的內部IP或是外部IP
PREFIX="24"
GATEWAY="192.168.50.254"(內部G/W)
※此部DNS如果要對外服務時,記得NAT要對應內部IP。
DNS1="168.95.1.1" -- 外部DNS(中華電信)
IPV6_PEERDNS="yes"
IPV6_PEERROUTES="yes"
IPV6_PRIVACY="no"
用不到的服務關閉
1. 關閉 SMTP
systemctl disable postfix
systemctl stop postfix
2.關閉防火牆 (若不需要,則關閉吧)
systemctl disable firewalld
systemctl stop firewalld
3.關閉 SELINUX(若不需要,則關閉吧)
vim /etc/sysconfig/selinux
SELINUX=disabled
4.關閉IPV6(若不需要,則關閉吧)
sysctl -w net.ipv6.conf.all.disable_ipv6=1
sysctl -w net.ipv6.conf.default.disable_ipv6=1
開始安裝 BIND
a). yum -y install bind bind-chroot
b). vi(vim) /etc/named.conf (修改這幾個地方)
allow-query { any; };
allow-transfer { none; };
recursion yes;
forward only;
forwarders {
168.95.1.1;
139.175.55.244;
};
dnssec-enable yes;
dnssec-validation yes;
ZONE 的設法
Step1 編輯/etc/named.conf
設定 # taiwanno1.com # <-----域名
-- 正解
zone "taiwanno1.com" IN {
type master;
file "/var/named/chroot/etc/named/taiwanno1.com"; (小編的設定檔存放路徑,讀者可以自行決定要放在哪個路徑下)
allow-update { none; };
};
-- 反解(假設IP為1.2.3.4)
zone "3.2.1.in-addr.arpa" IN {
type master;
file "/var/named/chroot/etc/named/taiwanno1.rev";
allow-update { none; };
};
SETP2 編輯 taiwanno1.com (正解設定檔 )
vim /var/named/chroot/etc/named/taiwanno1.com
範例如下:
$TTL 1D
@ IN SOA taiwanno1.com. root.taiwanno1.com. (
160324 ; serial
1D ; refresh
1H ; retry
1W ; expire
3H ) ; minimum
IN NS ns.taiwanno1.com.
;
;
ns IN A 1.2.3.4
mail IN A 1.2.3.4
www IN A 2.3.4.5
ftp IN A 2.3.4.5
;
taiwanno1.com. IN A 1.2.3.4
;
message IN CNAME mail
files IN CNAME ftp
webmail IN CNAME mail
;
@ IN MX 10 mail.taiwanno1.com.
@ IN MX 20 message.taiwanno1.com.
編輯 taiwanno1.rev (反解設定檔)
vi /var/named/chroot/etc/named/taiwanno1.rev
範例如下
$TTL 1D
@ IN SOA taiwanno1.com. root.taiwanno1.com. (
160324 ; serial
1D ; refresh
1H ; retry
1W ; expire
3H ) ; minimum
IN NS ns.taiwanno1.com.
;
ns IN A 1.2.3.4
taiwanno1.com. IN A 1.2.3.4
;
1.2.3.4 IN PTR ns.taiwanno1.com.
1.2.3.4 IN PTR taiwanno1.com.
1.2.3.4 IN PTR mail.taiwanno1.com.
2.3.4.5 IN PTR ftp.taiwanno1.com.
1.2.3.4 IN PTR www.taiwanno1.com.
systemctl restart named-chroot.service
netstat -ntlp
tcp 0 0 192.168.50.53:53 0.0.0.0:* LISTEN 3365/named
tcp 0 0 10.10.10.53:53 0.0.0.0:* LISTEN 3365/named
tcp 0 0 127.0.0.1:53 0.0.0.0:* LISTEN 3365/named
※ DNS 反解權目前都在ISP身上,也就是說,想將mail主機設反解,那就得向ISP申請反解,ISP收到通知並設定好反解後,還要通過全球各個DNS的同步(台灣預設24hr,全球約3天左右)才有效。除非公司本身掌握了整個class C 的外部網段,ISP才有可能將反解權下放給自己來做。
IPv4 反解設定
安裝好 CentOS 7 後,確認一下版本
cat /etc/redhat-release
CentOS Linux release 7.1.1503 (Core)
初始初始設定 (依需求調整)
變更hotname
hostnamectl set-hostname BIND1
設定網卡
vi(vim) /etc/sysconfig/network-scripts/ifcfg-eth0(1)
TYPE="Ethernet"
BOOTPROTO="none"
DEFROUTE="yes"
IPV4_FAILURE_FATAL="no"
IPV6INIT="yes"
IPV6_AUTOCONF="yes"
IPV6_DEFROUTE="yes"
IPV6_FAILURE_FATAL="no"
NAME="eth0"
UUID="c6892610-eg40-5423-9398-9e28660d4d82"
DEVICE="eth0"
ONBOOT="yes"
IPADDR="192.168.50.53"(內部IP) -- 調整符合現況的內部IP或是外部IP
PREFIX="24"
GATEWAY="192.168.50.254"(內部G/W)
※此部DNS如果要對外服務時,記得NAT要對應內部IP。
DNS1="168.95.1.1" -- 外部DNS(中華電信)
IPV6_PEERDNS="yes"
IPV6_PEERROUTES="yes"
IPV6_PRIVACY="no"
用不到的服務關閉
1. 關閉 SMTP
systemctl disable postfix
systemctl stop postfix
2.關閉防火牆 (若不需要,則關閉吧)
systemctl disable firewalld
systemctl stop firewalld
3.關閉 SELINUX(若不需要,則關閉吧)
vim /etc/sysconfig/selinux
SELINUX=disabled
4.關閉IPV6(若不需要,則關閉吧)
sysctl -w net.ipv6.conf.all.disable_ipv6=1
sysctl -w net.ipv6.conf.default.disable_ipv6=1
開始安裝 BIND
a). yum -y install bind bind-chroot
b). vi(vim) /etc/named.conf (修改這幾個地方)
allow-query { any; };
allow-transfer { none; };
recursion yes;
forward only;
forwarders {
168.95.1.1;
139.175.55.244;
};
dnssec-enable yes;
dnssec-validation yes;
ZONE 的設法
Step1 編輯/etc/named.conf
設定 # taiwanno1.com # <-----域名
-- 正解
zone "taiwanno1.com" IN {
type master;
file "/var/named/chroot/etc/named/taiwanno1.com"; (小編的設定檔存放路徑,讀者可以自行決定要放在哪個路徑下)
allow-update { none; };
};
-- 反解(假設IP為1.2.3.4)
zone "3.2.1.in-addr.arpa" IN {
type master;
file "/var/named/chroot/etc/named/taiwanno1.rev";
allow-update { none; };
};
SETP2 編輯 taiwanno1.com (正解設定檔 )
vim /var/named/chroot/etc/named/taiwanno1.com
範例如下:
$TTL 1D
@ IN SOA taiwanno1.com. root.taiwanno1.com. (
160324 ; serial
1D ; refresh
1H ; retry
1W ; expire
3H ) ; minimum
IN NS ns.taiwanno1.com.
;
;
ns IN A 1.2.3.4
mail IN A 1.2.3.4
www IN A 2.3.4.5
ftp IN A 2.3.4.5
;
taiwanno1.com. IN A 1.2.3.4
;
message IN CNAME mail
files IN CNAME ftp
webmail IN CNAME mail
;
@ IN MX 10 mail.taiwanno1.com.
@ IN MX 20 message.taiwanno1.com.
編輯 taiwanno1.rev (反解設定檔)
vi /var/named/chroot/etc/named/taiwanno1.rev
範例如下
$TTL 1D
@ IN SOA taiwanno1.com. root.taiwanno1.com. (
160324 ; serial
1D ; refresh
1H ; retry
1W ; expire
3H ) ; minimum
IN NS ns.taiwanno1.com.
;
ns IN A 1.2.3.4
taiwanno1.com. IN A 1.2.3.4
;
1.2.3.4 IN PTR ns.taiwanno1.com.
1.2.3.4 IN PTR taiwanno1.com.
1.2.3.4 IN PTR mail.taiwanno1.com.
2.3.4.5 IN PTR ftp.taiwanno1.com.
1.2.3.4 IN PTR www.taiwanno1.com.
STEP3 將named服務重啟
systemctl enable named-chroot.servicesystemctl restart named-chroot.service
netstat -ntlp
tcp 0 0 192.168.50.53:53 0.0.0.0:* LISTEN 3365/named
tcp 0 0 10.10.10.53:53 0.0.0.0:* LISTEN 3365/named
tcp 0 0 127.0.0.1:53 0.0.0.0:* LISTEN 3365/named
※ DNS 反解權目前都在ISP身上,也就是說,想將mail主機設反解,那就得向ISP申請反解,ISP收到通知並設定好反解後,還要通過全球各個DNS的同步(台灣預設24hr,全球約3天左右)才有效。除非公司本身掌握了整個class C 的外部網段,ISP才有可能將反解權下放給自己來做。
IPv4 反解設定
訂閱:
文章 (Atom)