One specific email can’t be delivered

#1
Hi there,

I have a load of mailmaps set up for my account, including one for SurveyMonkey emails. I can get all normal emails from SurveyMonkey fine, but recently I got locked out of my account and for some reason the “Reset password” email is not being delivered. I’ve checked everything I can think of on the Gmail side that receives the emails, so I think it must be dropped by ZoneEdit without being forwarded. I can’t work out why this would be happening, though.

The sending email address is surveymonkey@t.outbound.surveymonkey.com
The subject is “You requested a new SurveyMonkey password”

Other emails from SurveyMonkey come from a different subdomain, go.surveymonkey.com. I wonder if there is something about this “outbound” subdomain that is triggering a spam protection feature?

Thanks,
Matt
 

El.

Administrator
Staff member
#2
Hello. We've gone through our mail logs, and email from surveymonkey@t.outbound.surveymonkey.com has been forwarded to the destination email address specified on the account. If you have an email at a different provider, please update the mailmap to use that address, and see if this helps.
 
#6
I'm experiencing the exact same problem. Strange, no?
Do you mean it’s an email from SurveyMonkey that you’re not getting either?
According to ZoneEdit support, there’s no record of this email even *trying* to be delivered, it doesn’t register anything on their servers at all.
I talked with SurveyMonkey support, and they said the only thing they could do is to change the email address on the account.
 
#7
no. To be more clear, password reset messages from at least two other sources, one is meetup.com, which I tried a few times yesterday are being eaten by the mail forwarder. I've tried re-directing to a different account. No change. All other email comes through. Password resets are eaten.
 

sandy neal

Administrator
Staff member
#8
messages from meetup.com will not pass through as that domain name has a malformed SPF record:
The maximum allowed DNS queries was exceeded. The maximum allowed queries for SPF is 10 according to the RFC standard (RFC4408). However the domain configuration needed 11 queries.
meetup.com will want to fix this as I would imagine there are many other mail servers that will also not allow mail to pass through

thanks.
 

sandy neal

Administrator
Staff member
#10
hmm.. i am surprised by the result: but i have seen a few very large companies in the past also have bad SPF...

The maximum allowed DNS queries was exceeded. The maximum allowed queries for SPF is 10 according to the RFC standard (RFC4408). However the domain configuration needed 12 queries.
 
#11
I see that called out in section 10.1. I’d wager that there’s a chance that a mailer’s SPF section could have inadvertently and organically grown as IPv6 services were added and other changes made. This seemed to be driven by a concern for processing capacity. Given the increased computing power available, a looser implementation might be reasonable, yes?
 

sandy neal

Administrator
Staff member
#12
with SPF IPs and net blocks do not count as DNS queries but all A MX and Includes do as well as any SPF records inside the Include hosts:

"v=spf1 mx ip4:63.87.106.154 ip4:68.233.76.14 ip4:192.157.75.232 ip4:12.18.76.135 ip4:12.18.76.138 ip4:208.86.168.7 ip4:66.179.50.77 ip4:66.179.50.78 ip4:66.179.50.72 ip4:66.179.50.69 ip4:204.152.235.220 ip4:204.152.239.220" " include:spf.protection.outlook.com include:mail.zendesk.com include:convergys.com include:sendgrid.net -all"

as example.. include:convergys.com itself contains 5 DNS queries...
 
#13
I will note that I’m able to receive other email from meetup.com. If what you suggest above is correct, would that not kill off all email from that domain?
 

Chris Cherry

Mr. Happy To Help You.
#14
Yes, it should not allow meetup.com as well. Unless the email is from a sub-domain like @mail.meetup.com or some other variable. If the email address originated from the ROOT domain example: @meetup.com or @starbucks.com - it will be rejected.

Both Starbucks.com and Meetup.com have broken SPF records.

Found v=spf1 record for starbucks.com:
v=spf1 mx ip4:63.87.106.154 ip4:68.233.76.14 ip4:192.157.75.232 ip4:12.18.76.135 ip4:12.18.76.138 ip4:208.86.168.7 ip4:66.179.50.77 ip4:66.179.50.78 ip4:66.179.50.72 ip4:66.179.50.69 ip4:204.152.235.220 ip4:204.152.239.220 include:spf.protection.outlook.com include:mail.zendesk.com include:convergys.com include:sendgrid.net -all

evaluating...
Results - PermError SPF Permanent Error: Too many DNS lookups
===

Found v=spf1 record for meetup.com:
v=spf1 ip4:38.125.127.130/32 ip4:34.200.178.5/32 ip4:34.200.169.172/32 ip4:192.237.158.85 ip4:23.253.182.234 ip4:146.20.191.233 ip4:23.253.183.250 ip4:50.23.218.215 ip4:209.61.151.128 ip4:104.130.122.229 ip4:209.61.151.40 include:_spf.google.com include:mailgun.org ip4:38.86.183.130/32 include:amazonses.com include:app.sgizmo.com include:spf.mail.intercom.io include:mail.zendesk.com ~all

evaluating...
Results - PermError SPF Permanent Error: Too many DNS lookups
===


Note: we have tweeted to both of the above organisations informing them of their SPF issue. I believe we only received a response from Meetup that they'd look into it.
 
Top