HI there,
Starting from a few weeks ago we have had issues with the Shaw mail server not delivering some of our newsletter emails. All our newsletter recipients have signed up and confirmed their email addresses, and we also have a unsubscribe link at the bottom if they wish to be removed.
The response from the shaw mail server has changed through the weeks. The following are the messages we had :
- Remote server replied: 554 mi07.dcs.int.inet cmsmtp Connection refused - 199.167.17.132
This is the message that started it all. We made changes to our MX records thinking this would possibly fix this issue.
- Remote server replied: 554 mi04.dcs.int.inet cmsmtp Connection refused. 199.167.17.132 is temporarily blacklisted for abuse.
This issue started last week and appears after went send out around 100 emails to shaw recipients.
- Remote server replied: 552 5.2.0 PqN8lVl0CTml9PqNAlZegI Compromised:domain
This is the last reply and a worrying one. We are working on confirming all our mail records are correct. But there does not appear to be any issues with our MX records for infotel.ca.
We would like to get this resolved as our Shaw customers are expecting there weekly newsletters and are not receiving them.
Thank you for your time!
@jasonkezama -- your MX-records are only used when people are sending E-mail "into" your network:
infotel.ca MX preference = 0, mail exchanger = infotel-ca.mail.protection.outlook.com
When you are sending E-mail, you probably are using other servers:
Name: mail2.qlogics.com
Address: 199.167.17.132
Name: mail.qlogics.com
Address: 199.167.17.131
> Connection refused. 199.167.17.132 is temporarily blacklisted for abuse.
> Remote server replied: 552 5.2.0 PqN8lVl0CTml9PqNAlZegI Compromised:domain
Is your company the ONLY company that routes its outgoing E-mail through those SMTP-servers AT QLOGICS ? QLOGICS needs to check their log-files for their SMTP-servers, to check for unauthorized usage, such as authentication abusing some compromised ID/password, and then sending to Shaw through their servers. Is it possible that the compromised ID/password is within your network?
Is it possible that one of the computers in your network has been compromised, and has been "hijacked" to send a lot of E-mail?
Finally, this is a user-to-user discussion forum, not a path to Shaw Support.
I recommend that you contact Shaw ( www.shaw.ca/chat) or 1-888-472-2222 to make your report.
@jasonkezama -- our Shaw customers are expecting [their] weekly newsletters and are not receiving them.
Can you create a GMAIL ID, and use that ID to send your messages to those subscribers?