SFDB incorrectly blocking email? |
Post Reply 
|
| Author | ||||||||||||
lyndonje 
Senior Member 
Joined: 31 January 2006 Location: United Kingdom Status: Offline Points: 192 |
 Post Options
 Thanks(0)
 Quote Reply
 Topic: SFDB incorrectly blocking email?Posted: 20 April 2006 at 10:43am |
|||||||||||
|
Hi All, A customer has ask us if we can whitelist an email and on checking looks as though it was blocked by SFDB. In the logs is states the following: 04/20/06 10:31:22:904 -- (3064) Connection from: 193.252.22.157 - Originating country : France Indicating to me that the SFDB matches based on filter 3. If I'm correct, filter 3 is reverse DNS, however the IP address 193.252.22.157 does have a reverse DNS entry. I'm wondering what may have caused this? Could this be due to other SF users having a DNS problem in not being able to resolve reverse DNS entries, and therefore reporting the IP to SFDB? |
||||||||||||
 |
||||||||||||
|
lyndonje
Senior Member
Joined: 31 January 2006 Location: United Kingdom Status: Offline Points: 192 |
Post Options
Thanks(0)
Quote Reply
Posted: 20 April 2006 at 11:00am |
|||||||||||
|
Just read another post relating to the SFDB IP lookup in the registered area, checked the IP and seen the following:
In which case, why does my log show relevance:3? Does something start counting at 0 therefore nocking out the numbers by 1?? Urm... just wondered something else, if my network reliability is set to 3, yet above the maximum number of referals is 2, so why was this email blocked at all? |
||||||||||||
|
||||||||||||
|
Desperado
Senior Member
Joined: 27 January 2005 Location: United States Status: Offline Points: 1143 |
Post Options
Thanks(0)
Quote Reply
Posted: 20 April 2006 at 11:26am |
|||||||||||
|
Actually, the number of referals above is 5. There is a custom setup for which referals you wish to accept that may help you. I have found that some users are more agressive than I want to be so I have the following settings:
SFDB_URL=http://sfdb.logsat.com/SFDBUpload/ SFDB_NetworkReliability=4 SFDB_FiltersAll=0 SFDB_FiltersList=2,3,10,11,12,16,19 |
||||||||||||
|
The Desperado
Dan Seligmann. Work: http://www.mags.net Personal: http://www.desperado.com |
||||||||||||
|
||||||||||||
|
lyndonje
Senior Member
Joined: 31 January 2006 Location: United Kingdom Status: Offline Points: 192 |
Post Options
Thanks(0)
Quote Reply
Posted: 20 April 2006 at 11:36am |
|||||||||||
|
Hi D, OK, well I think that answers my second question, which is Network Reliability is per IP, rather than per IP per filter. My reliability is set to 3, and as you say the TOTAL above is 5. What I was looking at is no individual filter was above 3. My first question remains unanswered, log shows relevance:3, yet on the lookup filter ID 3 is not present. My filter list is: SFDB_FiltersList=1,2,3,5,6,7,9,10,11,12,13,14,15,16,18,19,21 . So 10 & 19 would have matched? If you get me? |
||||||||||||
|
||||||||||||
|
Desperado
Senior Member
Joined: 27 January 2005 Location: United States Status: Offline Points: 1143 |
Post Options
Thanks(0)
Quote Reply
Posted: 20 April 2006 at 12:17pm |
|||||||||||
|
lyndonje, The relevance is not the filter number ... At lease, I do not think it is and actually, I do not know *what* it refers to so I will leave that up to Roberto to answer. |
||||||||||||
|
The Desperado
Dan Seligmann. Work: http://www.mags.net Personal: http://www.desperado.com |
||||||||||||
|
||||||||||||
|
LogSat
Admin Group 
Joined: 25 January 2005 Location: United States Status: Offline Points: 4105 |
Post Options
Thanks(0)
Quote Reply
Posted: 20 April 2006 at 1:55pm |
|||||||||||
|
I'll try to clear things up. The network reliabilty in the settings indicates how many different users (or IPs) must reject an IP address before triggering the filter on your end. The relevance in the logfile indicates the number of separate users who have reported that IP address.
Please note that multiple users can report the same IP multiple times for different filters , but they will still count as one user on a query. |
||||||||||||
|
||||||||||||
|
lyndonje
Senior Member
Joined: 31 January 2006 Location: United Kingdom Status: Offline Points: 192 |
Post Options
Thanks(0)
Quote Reply
Posted: 20 April 2006 at 3:17pm |
|||||||||||
|
OK.... I think get you now. So if I wanted to find out which filter ID within SFDB actually caused the block, I'd have to check the SFDB query? So in this scenario, we blocked the IP in question because there were 5, or at the time 3 (relavance 3) which was => our Network Reliability setting, and as I have filter ID's 10 & 19 enabled the email was blocked? |
||||||||||||
|
||||||||||||
Topic Options|
Post Reply
|
|
Tweet
|
| Forum Jump | Forum Permissions You cannot post new topics in this forum You cannot reply to topics in this forum You cannot delete your posts in this forum You cannot edit your posts in this forum You cannot create polls in this forum You cannot vote in polls in this forum |
This page was generated in 0.141 seconds.