IP Address blocked by Proofpoint
Hi! My server's IP address, 172.105.5.32, has been blocked by Proofpoint for no apparent reason. I've ensured that the following has been implemented correctly:
- Reverse DNS
- MX record
- SPF record
- DMARC
- DKIM
- TLS
Using online testing tools, I can't find anything wrong with my server. Nevertheless, Proofpoint seems to have me blocked. It's not just my IP either; any IP in a decent range around mine seems to be blocked as well. Is there something I'm doing wrong?
Running Arch Linux with Postfix, OpenDMARC, and OpenDKIM. Domain name is leagueh.xyz, if it's useful.
5 Replies
@katp32 --
Welcome to the internet! The problem most likely doesn't have anything to do with your server. Proofpoint uses some proprietary "AI tools" (marketing-speak for "uninformed, heavy-handed, & arbitrary decision-making", IMHO) to assign your IP address a "reputation score" and then blocks email from your address if the score you get assigned isn't up to snuff. PP is a subscription service so your email is prevented from being delivered to all PP subscribers (although, I've heard that there are tiers to PPs service…and the lower tiers will let some low-risk, bad-rep email through).
You can contact them using their website and try to get them to rehabilitate your IP address manually. Good luck with that…
My guess is that your TLD (.xyz) probably has something to do with this but only PP knows for sure. Most likely, the block will disappear just as mysteriously after awhile. Until that happens, I'm afraid you are SOL.
-- sw
Many places block ip addresses associated with vps providers. Your configuration or domain won't matter. They'll just refuse the ip - end of story. Sometimes you can get the ip off the list, sometimes not. Getting a different ip may help but it's not very likely. Other providers generally are also in the same boat or worse.
Even ip's that you check and are clear of public block lists, are still blocked on other private ones. Apple, Comcast, ATT, and Microsoft all come to mind from my personal experience. I would recommend getting email accounts or test to friends on several providers and see if your email is getting delivered. Some will even just silently discard your email. It would be a small miracle to get an ip on a vps that didn't get refused in some places.
Also be careful about using the IPv6 address. That is even harder to get mail accepted with. Try to keep all mail routed on your IPv4 address. Some places will accept mail from your IPv4 but block it if you connect with the IPv6.
If you have just a volume of mail like under 100,000 a month, it may be easier and more time efficient to use an smtp provider for your email service.
One day I would hope blocklists would become a little more discerning than just blanket ip range banning regardless of what domain or sender is using it.
@workerbee --
You write:
Also be careful about using the IPv6 address. That is even harder to get mail accepted with. Try to keep all mail routed on your IPv4 address. Some places will accept mail from your IPv4 but block it if you connect with the IPv6.
Comcast is notorious for this.
-- sw
I'm in the same position as well. Mail message to my brother on icloud.com are blocked. It is a real pain. I've fill in the form but no joy so far.
It took two attempts though their reporting form but on the 3rd October the block on my IP address was lifted.