sendmail 无法投递到 gmail - 不符合有关 PTR 记录的 IPv6 发送指南

Question

我无法从 ubuntu 14.04 上的全新 sendmail 安装向 google 发送邮件。DNS 记录似乎对 IP 没问题。一定是别的什么地方出了问题。

从命令行发送邮件：

sudo sendmail -v -Am -i myname@gmail.com;

详细输出：

myname@fx1:/etc/mail$ sudo sendmail -v -Am -i myname@gmail.com;
myname@gmail.com... Connecting to aspmx.l.google.com. via esmtp...
220 mx.google.com ESMTP v1si55415385wja.21 - gsmtp
>>> EHLO staging.mydomain.com
250-mx.google.com at your service, [2a01:4f8:212:27c8::2]
250-SIZE 35882577
250-8BITMIME
250-STARTTLS
250-ENHANCEDSTATUSCODES
250-PIPELINING
250-CHUNKING
250 SMTPUTF8
>>> STARTTLS
220 2.0.0 Ready to start TLS
>>> EHLO staging.mydomain.com
250-mx.google.com at your service, [2a01:4f8:212:27c8::2]
250-SIZE 35882577
250-8BITMIME
250-ENHANCEDSTATUSCODES
250-PIPELINING
250-CHUNKING
250 SMTPUTF8
>>> MAIL From:<myname@staging.mydomain.com>
250 2.1.0 OK v1si55415385wja.21 - gsmtp
>>> RCPT To:<myname@gmail.com>
>>> DATA
250 2.1.5 OK v1si55415385wja.21 - gsmtp
354  Go ahead v1si55415385wja.21 - gsmtp
>>> .
550-5.7.1 [2a01:4f8:212:27c8::2] Our system has detected that this message does
550-5.7.1 not meet IPv6 sending guidelines regarding PTR records and
550-5.7.1 authentication. Please review
550-5.7.1  https://support.google.com/mail/?p=ipv6_authentication_error for more
550 5.7.1 information. v1si55415385wja.21 - gsmtp
myname... Connecting to local...
myname... Sent

任何帮助都非常感谢。先感谢您。

Answer 1

1. 检查当前协议：

   postconf inet_protocols

   net_protocols = 全部

2. 如果返回，请编辑 cf 文件 all

   grep 'inet_protocols' /etc/postfix/main.cf

   inet_protocols = ipv4

3. 重新开始

   service postfix restart

4. 再检查一下

   postconf inet_protocols

   inet_protocols = ipv4

Answer 2

从谷歌的角度来看，他们正试图验证IP地址连接到他们的身份，所以他们会尝试来查找PTR备案2a01:4f8:212:27c8::2。

当他们staging.findix.com将其解析为 时，他们将尝试检查此解析是否返回到2a01:4f8:212:27c8::2- 事实并非如此 - 请参阅此查找结果。

反向（PTR 记录）查找

cwatson@thor:~$ nslookup 31.220.4.52
Server:     127.0.0.1
Address:    127.0.0.1#53

Non-authoritative answer:
52.4.220.31.in-addr.arpa    name = tyr.vikingserv.net.

正向（A 记录）查找

cwatson@thor:~$ nslookup tyr.vikingserv.net
Server:     127.0.0.1
Address:    127.0.0.1#53

Non-authoritative answer:
Name:   tyr.vikingserv.net
Address: 31.220.4.52