I'm having an issue as of beginning of January of this year.
X-SPAM-LEVEL: Spam detection results: 0
AWL -0.031 Adjusted score from AWL reputation of From: address
BAYES_00 -1.9 Bayes spam probability is 0 to 1%
DKIMWL_WL_HIGH -0.001 DKIMwl.org - High trust sender
DKIM_SIGNED 0.1 Message has a DKIM or DK signature, not necessarily valid
DKIM_VALID -0.1 Message has at least one valid DKIM or DK signature
DKIM_VALID_AU -0.1 Message has a valid DKIM or DK signature from author's domain
DKIM_VALID_EF -0.1 Message has a valid DKIM or DK signature from envelope-from domain
HTML_MESSAGE 0.001 HTML included in message
RCVD_IN_DNSWL_MED -2.3 Sender listed at https://www.dnswl.org/, medium trust
RCVD_IN_MSPIKE_H2 -0.001 Average reputation (+2)
SPF_HELO_PASS -0.001 SPF: HELO matches SPF record
SPF_PASS -0.001 SPF: sender matches SPF record
From what I can tell, DNSWL is blocking legitimate emails from a Bloomberg email coming in for a customer.
In configuration --> Mail Proxy --> Whitelist I've added Bloomberg.net as an allowed domain.
However emails still get blocked.
The in configuration --> Spam Detector --> Custom Scores, I've added
RCVD_IN_DNSWL_MED with a score of 0
After that, when they send in a test email, I get the following:
X-SPAM-LEVEL: Spam detection results: 0
AWL -1.270 Adjusted score from AWL reputation of From: address
BAYES_00 -1.9 Bayes spam probability is 0 to 1%
DKIMWL_WL_HIGH -0.001 DKIMwl.org - High trust sender
DKIM_SIGNED 0.1 Message has a DKIM or DK signature, not necessarily valid
DKIM_VALID -0.1 Message has at least one valid DKIM or DK signature
DKIM_VALID_AU -0.1 Message has a valid DKIM or DK signature from author's domain
DKIM_VALID_EF -0.1 Message has a valid DKIM or DK signature from envelope-from domain
HTML_MESSAGE 0.001 HTML included in message
RCVD_IN_MSPIKE_H2 -0.001 Average reputation (+2)
SPF_HELO_PASS -0.001 SPF: HELO matches SPF record
SPF_PASS -0.001 SPF: sender matches SPF record
So the DNSWL is gone, but the messages are still getting sent to quarantine. This is proving to be quite the problem for them and I don't know how to resolve it as everything I've tried doesn't seem to work, so I'm asking here in hopes that more sets of eyes and bigger brains can help me get this resolved.
Thank you.
X-SPAM-LEVEL: Spam detection results: 0
AWL -0.031 Adjusted score from AWL reputation of From: address
BAYES_00 -1.9 Bayes spam probability is 0 to 1%
DKIMWL_WL_HIGH -0.001 DKIMwl.org - High trust sender
DKIM_SIGNED 0.1 Message has a DKIM or DK signature, not necessarily valid
DKIM_VALID -0.1 Message has at least one valid DKIM or DK signature
DKIM_VALID_AU -0.1 Message has a valid DKIM or DK signature from author's domain
DKIM_VALID_EF -0.1 Message has a valid DKIM or DK signature from envelope-from domain
HTML_MESSAGE 0.001 HTML included in message
RCVD_IN_DNSWL_MED -2.3 Sender listed at https://www.dnswl.org/, medium trust
RCVD_IN_MSPIKE_H2 -0.001 Average reputation (+2)
SPF_HELO_PASS -0.001 SPF: HELO matches SPF record
SPF_PASS -0.001 SPF: sender matches SPF record
From what I can tell, DNSWL is blocking legitimate emails from a Bloomberg email coming in for a customer.
In configuration --> Mail Proxy --> Whitelist I've added Bloomberg.net as an allowed domain.
However emails still get blocked.
The in configuration --> Spam Detector --> Custom Scores, I've added
RCVD_IN_DNSWL_MED with a score of 0
After that, when they send in a test email, I get the following:
X-SPAM-LEVEL: Spam detection results: 0
AWL -1.270 Adjusted score from AWL reputation of From: address
BAYES_00 -1.9 Bayes spam probability is 0 to 1%
DKIMWL_WL_HIGH -0.001 DKIMwl.org - High trust sender
DKIM_SIGNED 0.1 Message has a DKIM or DK signature, not necessarily valid
DKIM_VALID -0.1 Message has at least one valid DKIM or DK signature
DKIM_VALID_AU -0.1 Message has a valid DKIM or DK signature from author's domain
DKIM_VALID_EF -0.1 Message has a valid DKIM or DK signature from envelope-from domain
HTML_MESSAGE 0.001 HTML included in message
RCVD_IN_MSPIKE_H2 -0.001 Average reputation (+2)
SPF_HELO_PASS -0.001 SPF: HELO matches SPF record
SPF_PASS -0.001 SPF: sender matches SPF record
So the DNSWL is gone, but the messages are still getting sent to quarantine. This is proving to be quite the problem for them and I don't know how to resolve it as everything I've tried doesn't seem to work, so I'm asking here in hopes that more sets of eyes and bigger brains can help me get this resolved.
Thank you.
