Skip to main content

Fun with Mail and Symantec Premium Anti-Spam

Today we finally resolved our problem getting emails from one of our major contacts. The problem had been going on for most of February, but had generally been unnoticed.

The Symptoms
There generally were no symptoms, people from Company X would send us emails and they wouldn't arrive. There was no mention in the Notes Logs about the emails and there was nothing in the Symantec Anti-Virus software to indicate that there was an issue.

The company had recently changed their domain name from x1.com.au to x2.com.au (all domain names changed to protect the innocent) and we had, relatively recently upgraded to Domino 7.0, so there was much finger-pointing in both directions.

Steps Taken
The first thing I did was look through our firewall logs, but I quickly gave up - they were too difficult because of the sheer number of entries. I tried several methods of dumping the files, but they weren't readable and I couldn't see any filtering options.


My first mistake was to not spend enough time checking these logs, it could have saved a lot of time. The answer to filtering the logs turned out to be a tiny icon that I thought was merely screen decoration. The icon did not popup any 'hover text' which really is a must if you're going to have tiny icons.


So, what did I do?
Well... ...these were over a couple of weeks, not all at once...

  1. Added the new domain to our Symantec MailSecurity Whitelists

  2. Added the new domain to our Domino DNS Whitelists

  3. Reinstalled Symantec Mail Security 4.x - In case something was overwritten in the 6.5.4 to 7.0.0 upgrade.

  4. Upgraded to Domino 7.0.1 - To fix the security issues blogged about earlier

  5. Installed Symantec Mail Security 5.0 - Because it was supposed to be more ND7 Compatible

  6. Re-Signed the Databases using an Admin ID instead of the Server.id

  7. Replaced the Design of the Symantec Databases and ran fixup for good measure



Nothing worked.

What did work was to completely disable the Symantec MailSecurity Application but for obvious reasons we didn't want to do that.


Tracking the Problem
The Firewall logs reported the mail as incoming.
From the firewall, the mail goes straight to Symantec MailSecurity on Port 25.

Once MailSecurity has finished it's work, the messages should be forwarded to the Domino server on Port 26. Unfortunately, MailSecurity was simply killing/losing the message, and thus there was nothing in the Notes log to indicate that a message had been received.

Eventually, we disabled just the Premium Anti-spam.
The result was a server crash (ouch).

I had to kill the server task using

NSD.EXE -KILL

When the server came back up, it was able to receive mail from the affected domain.

Hypothesis
The problem seems to be that when they changed domain name, they also changed their email disclaimers. Something in their disclaimers was upsetting the Premium Anti-Spam component of Symantec MailSecurity.


Moving Forward...
Once Premium Anti-Spam was disabled all went well.

I've lost a lot of respect for this utility since it is the second time that it has been responsible for major Domino issues and only the first time in 5.5 years that our server has had a serious crash.

Amusingly, one of the reasons for my intense dislike of this component is that it requires Microsoft SMTP. Funny that having a small Microsoft Mail facility on the server should cause major issues twice in about 6 months, yet Domino itself has not.

The software is disabled and will stay that way unless we get overwhelmed with Spam.
We will not be renewing that license.

(We will renew the Symantec MailSecurity licence, just not the Premium Anti-Spam component).

Comments

Popular posts from this blog

How to Change Your Notification Options for New Lotus Notes Mail in version 8.x

Don't worry, I'm not patronizing you (my readers), I just decided to re-document this for one of our internal users and thought you might want to be able to use it in your own user documentation. WHAT IS THIS DOCUMENT ABOUT? Some people who don't get a lot of mail, like to be notified when such an event occurs. Notification can be; via a sound via a pop-up box via the system tray (where the computer clock is) The pop up box looks like this; Other people, who like myself, get too much mail would rather not be notified. The aim of this document is to tell you how (and where) to turn these options on and off. CHANGING YOUR SETTINGS To change your settings from the Notes 8.x client; On the Menu, click File , then Preferences... On the left hand side , click on the little plus sign to the left of Mail to expand the options. Click on the option marked Sending and Receiving . In the middle section, under receiving, you can control your notifications. If you untick the box mark

How to Create an Auto-Response Mail Message in Lotus Notes 8.5.3+

Why would you do this? Suppose that you have an externally accessible generic email address for your company; support@mycompany.com or info@mycompany.com. You might expose this to the web and allow people to send messages to you. Setting up an auto-response email will tell the senders that their message reached its destination and that it will be dealt with accordingly.  It's also good practice to include links to FAQs or other useful information. Why 8.5.3 The techniques we'll be using here work in older versions of Notes but some of the options seem to have moved around in 8.5.3.  I figured it was a good time to show you where they've moved to. The Procedure Start Domino Designer and open the Mail file to be modified.  A really quick way to do this is to right-click on the application tab and choose "Open in Designer". In the Left hand panel of designer, expand Code and then double-click Agents.  A new window should appear. Click the action

How to Do a Mail Merge to Email using Lotus Notes

Why do one? In today's "green" world, it makes much better sense to send out emails than letters but you still want to personalize them. Sadly, by itself Lotus Notes doesn't support mail merge to email. Of course, we know that outlook does (but then it lets anyone and anything send emails for you - even when you don't want them to). So, how to do it in Notes? OpenNTF The first port of call is OpenNTF ( http://www.openntf.org/ ). This place is full of great things but most of them are really badly documented. Still, these guys give things away for free and they develop in their spare time, so we should be grateful for what we get. There's a great little project there called MailMerge Excel to Notes . Go there, click on releases and download the ZIP file. Getting to the Code The installation is tricky though I've noted that since I asked the author about the install, it's been updated (so maybe these steps are less necessary). Unzip the files to somewher