What IP address did the message come from?
To: Dan_Mitton@???
cc: exim-users@???
Subject: Re: [exim] Help to install exim with SPF
LSN: Not Relevant
User Filed as: Not a Record
On Fri, 11 Jul 2008 07:46:42 -0700, Dan_Mitton wrote
> What is the exact FROM address as seen by Exim?
The exact FROM address seen by exim is: sam@???
Please see the debug log below
10:43:00 7091 result: annuaire.trstech.net ESMTP Exim 4.68 Fri, 11 Jul
2008
10:43:00 +0000
10:43:00 7091 SMTP>> 220 annuaire.trstech.net ESMTP Exim 4.68 Fri, 11 Jul
2008
10:43:00 +0000
10:43:00 7091 Process 7091 is ready for new message
10:43:00 7091 smtp_setup_msg entered
10:43:17 7091 SMTP<< mail from: sam@???
10:43:17 7091 SMTP>> 250 OK
10:43:30 7091 SMTP<< rcpt to: geek@???
10:43:30 7091 using ACL "acl_check_rcpt"
10:43:30 7091 processing "accept"
10:43:30 7091 check hosts = :
10:43:30 7091 host in ":"? no (end of list)
10:43:30 7091 accept: condition test failed
10:43:30 7091 processing "deny"
10:43:30 7091 check domains = +local_domains
10:43:30 7091 annuaire.trstech.net in "annuaire.trstech.net"? yes
(matched "ann
uaire.trstech.net")
10:43:30 7091 annuaire.trstech.net in "+local_domains"? yes
(matched "+local_do
mains")
10:43:30 7091 check local_parts = ^[.] : ^.*[@%!/|]
10:43:30 7091 geek in "^[.] : ^.*[@%!/|]"? no (end of list)
10:43:30 7091 deny: condition test failed
10:43:30 7091 processing "deny"
10:43:30 7091 check domains = !+local_domains
10:43:30 7091 cached yes match for +local_domains
10:43:30 7091 cached lookup data = NULL
10:43:30 7091 annuaire.trstech.net in "!+local_domains"? no (matched "!
+local_d
omains" - cached)
10:43:30 7091 deny: condition test failed
10:43:30 7091 processing "accept"
10:43:30 7091 check local_parts = postmaster
10:43:30 7091 geek in "postmaster"? no (end of list)
10:43:30 7091 accept: condition test failed
10:43:30 7091 processing "require"
10:43:30 7091 check verify = sender
10:43:30 7091 >>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>
10:43:30 7091 Verifying sam@???
10:43:30 7091 >>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>
10:43:30 7091 Considering sam@???
10:43:30 7091 >>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>
10:43:30 7091 routing sam@???
10:43:30 7091 --------> dnslookup router <--------
10:43:30 7091 local_part=sam domain=aol.com
10:43:30 7091 checking domains
10:43:30 7091 aol.com in "annuaire.trstech.net"? no (end of list)
10:43:30 7091 aol.com in "! +local_domains"? yes (end of list)
10:43:30 7091 calling dnslookup router
10:43:30 7091 dnslookup router called for sam@???
10:43:30 7091 domain = aol.com
10:43:30 7091 DNS lookup of aol.com (MX) succeeded
10:43:30 7091 DNS lookup of mailin-01.mx.aol.com (A) succeeded
10:43:30 7091 64.12.139.249 in "0.0.0.0 : 127.0.0.0/8"? no (end of list)
10:43:30 7091 205.188.156.248 in "0.0.0.0 : 127.0.0.0/8"? no (end of
list)
10:43:30 7091 205.188.159.57 in "0.0.0.0 : 127.0.0.0/8"? no (end of list)
10:43:31 7091 DNS lookup of mailin-04.mx.aol.com (A) succeeded
10:43:31 7091 64.12.138.57 in "0.0.0.0 : 127.0.0.0/8"? no (end of list)
10:43:31 7091 64.12.138.88 in "0.0.0.0 : 127.0.0.0/8"? no (end of list)
10:43:31 7091 205.188.159.216 in "0.0.0.0 : 127.0.0.0/8"? no (end of
list)
10:43:31 7091 DNS lookup of mailin-02.mx.aol.com (A) succeeded
10:43:31 7091 64.12.137.89 in "0.0.0.0 : 127.0.0.0/8"? no (end of list)
10:43:31 7091 64.12.138.120 in "0.0.0.0 : 127.0.0.0/8"? no (end of list)
10:43:31 7091 205.188.249.91 in "0.0.0.0 : 127.0.0.0/8"? no (end of list)
10:43:31 7091 DNS lookup of mailin-03.mx.aol.com (A) succeeded
10:43:31 7091 205.188.252.17 in "0.0.0.0 : 127.0.0.0/8"? no (end of list)
10:43:31 7091 64.12.138.153 in "0.0.0.0 : 127.0.0.0/8"? no (end of list)
10:43:31 7091 205.188.109.56 in "0.0.0.0 : 127.0.0.0/8"? no (end of list)
10:43:31 7091 Actual local interface address is 127.0.0.1 (lo)
10:43:31 7091 Actual local interface address is 192.168.1.10 (eth0)
10:43:31 7091 Actual local interface address is 62.56.186.210 (eth0:0)
10:43:31 7091 fully qualified name = aol.com
10:43:31 7091 host_find_bydns yield = HOST_FOUND (2); returned hosts:
10:43:31 7091 mailin-01.mx.aol.com 205.188.156.248 MX=15
10:43:31 7091 mailin-01.mx.aol.com 205.188.159.57 MX=15
10:43:31 7091 mailin-01.mx.aol.com 64.12.139.249 MX=15
10:43:31 7091 mailin-04.mx.aol.com 64.12.138.57 MX=15
10:43:31 7091 mailin-04.mx.aol.com 205.188.159.216 MX=15
10:43:31 7091 mailin-04.mx.aol.com 64.12.138.88 MX=15
10:43:31 7091 mailin-02.mx.aol.com 64.12.137.89 MX=15
10:43:31 7091 mailin-02.mx.aol.com 205.188.249.91 MX=15
10:43:31 7091 mailin-02.mx.aol.com 64.12.138.120 MX=15
10:43:31 7091 mailin-03.mx.aol.com 205.188.109.56 MX=15
10:43:31 7091 mailin-03.mx.aol.com 64.12.138.153 MX=15
10:43:31 7091 mailin-03.mx.aol.com 205.188.252.17 MX=15
10:43:31 7091 set transport remote_smtp
10:43:31 7091 queued for remote_smtp transport: local_part = sam
10:43:31 7091 domain = aol.com
10:43:31 7091 errors_to=NULL
10:43:31 7091 domain_data=NULL localpart_data=NULL
10:43:31 7091 routed by dnslookup router
10:43:31 7091 envelope to: sam@???
10:43:31 7091 transport: remote_smtp
10:43:31 7091 host mailin-01.mx.aol.com [205.188.156.248] MX=15
10:43:31 7091 host mailin-01.mx.aol.com [205.188.159.57] MX=15
10:43:31 7091 host mailin-01.mx.aol.com [64.12.139.249] MX=15
10:43:31 7091 host mailin-04.mx.aol.com [64.12.138.57] MX=15
10:43:31 7091 host mailin-04.mx.aol.com [205.188.159.216] MX=15
10:43:31 7091 host mailin-04.mx.aol.com [64.12.138.88] MX=15
10:43:31 7091 host mailin-02.mx.aol.com [64.12.137.89] MX=15
10:43:31 7091 host mailin-02.mx.aol.com [205.188.249.91] MX=15
10:43:31 7091 host mailin-02.mx.aol.com [64.12.138.120] MX=15
10:43:31 7091 host mailin-03.mx.aol.com [205.188.109.56] MX=15
10:43:31 7091 host mailin-03.mx.aol.com [64.12.138.153] MX=15
10:43:31 7091 host mailin-03.mx.aol.com [205.188.252.17] MX=15
10:43:31 7091 ----------- end verify ------------
10:43:31 7091 sender sam@??? verified ok
10:43:31 7091 require: condition test succeeded
10:43:31 7091 processing "accept"
10:43:31 7091 check hosts = +relay_from_hosts
10:43:31 7091 host in "127.0.0.1"? no (end of list)
10:43:31 7091 host in "+relay_from_hosts"? no (end of list)
10:43:31 7091 accept: condition test failed
10:43:31 7091 processing "accept"
10:43:31 7091 check authenticated = *
>
> Can you do an 'nslookup -query=txt aol.com' or a 'dig txt aol.com' and
> include those results?
The result of 'dig txt aol.com' request is
annuaire ~]$ dig txt aol.com
;; Truncated, retrying in TCP mode.
; <<>> DiG 9.5.0a6 <<>> txt aol.com
;; global options: printcmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 33477
;; flags: qr rd ra; QUERY: 1, ANSWER: 2, AUTHORITY: 4, ADDITIONAL: 0
;; QUESTION SECTION:
;aol.com. IN TXT
;; ANSWER SECTION:
aol.com. 299 IN TXT "spf2.0/pra
ip4:152.163.225.0/24
ip4:205.188.139.0/24 ip4:205.188.144.0/24 ip4:205.188.156.0/23
ip4:205.188.159.0/24
ip4:64.12.136.0/23 ip4:64.12.138.0/24 ip4:64.12.143.99/32
ip4:64.12.143.100/32
ip4:64.12.143.101/32 ptr:mx.aol.com ?all"
aol.com. 299 IN TXT "v=spf1
ip4:152.163.225.0/24
ip4:205.188.139.0/24 ip4:205.188.144.0/24 ip4:205.188.156.0/23
ip4:205.188.159.0/24
ip4:64.12.136.0/23 ip4:64.12.138.0/24 ip4:64.12.143.99/32
ip4:64.12.143.100/32
ip4:64.12.143.101/32 ptr:mx.aol.com ?all"
;; AUTHORITY SECTION:
aol.com. 1227 IN NS dns-07.ns.aol.com.
aol.com. 1227 IN NS dns-01.ns.aol.com.
aol.com. 1227 IN NS dns-02.ns.aol.com.
aol.com. 1227 IN NS dns-06.ns.aol.com.
;; Query time: 581 msec
;; SERVER: 41.207.177.17#53(41.207.177.17)
;; WHEN: Fri Jul 11 14:59:16 2008
;; MSG SIZE rcvd: 604
--sam
--
TRS - Technologies Reseaux & Solutions (
http://www.trstech.net)