Example Email to send to IThelpdesk:
Greetings, Customer claims to be not receiving our emails. May I please see an excerpt from the mail logs? Domain: CUSTOMERS_DOMAIN Email: CUSTOMERS_EMAIL Date(s): DATE RANGE IN QUESTION (e.g. Today, 1 January 1970) Approx Time (GMT): -- Any other details you would like to add --
Example output from NOC
2012-08-21 21:40:14.370536500 new msg 256116 2012-08-21 21:40:14.370572500 info msg 256116: bytes 6099 from <[email protected]> qp 12648 uid 1008 2012-08-21 21:40:14.742679500 starting delivery 221698: msg 256116 to remote [email protected] 2012-08-21 21:40:20.751046500 delivery 221698: success: 184.108.40.206_accepted_message./Remote_host_said:_250_ok:__Message_1875998702_accepted/ 2012-08-21 21:40:20.751555500 end msg 256116
Key Line: success: 220.127.116.11_accepted_message./Remote_host_said:_250_ok:__Message_1875998702_accepted/
Translation: This means the remote host 18.104.22.168 (customer's mail server's IP) has accepted the message (Remote_host_said:_250_ok). Its messageID on the customer's mail server is1875998702.
The opt out link on an email to a reseller will only disable the notifications for the one certificate/domain the email is referring to. The only way to stop renewal notifications to resellers is by hard coding an exception for them in the script.
For reference the opt out link on a renewal notification email to direct customers will stop all emails to them marketing and renewal notifications. The opt out link on a none renewal notification email to direct customers will stop only marketing emails, renewal notifications will still get sent.
Emails coming direct from SASP like DCV and Issuance are not affected by these opt outs.
~ $ host -t txt comodo.com
comodo.com descriptive text "v=spf1 mx include:comodo.od.ua include:blackberryv.comodo.com include:spf1.comodo.com include:spf2.comodo.com include:spf3.comodo.com include:spf4.comodo.com include:spf6.comodo.com -all"
~ $ host -t txt spf1.comodo.com
spf1.comodo.com descriptive text "v=spf1 ip4:22.214.171.124/24 ip4:126.96.36.199/24 ip6:2a02:1788::/32 -all"
As you can see, forward and reverse IPv4 & IPv6 DNS records for Comodo's mail servers.
RFC7208 is about SPF (not DKIM), and we comply completely.
We don't DKIM sign anything. In its current form, DKIM is useless.