Back to Community Threads
1
Allowed IP blocked by "Block Authentication by Country"
Problem reported by BMark - 9/26/2024 at 7:21 AM
Submitted
Hi all,
I noticed (version 8930) that if a country is blocked via "General>Block Authentication by Country" and then activating a single IP of the blocked country in "Security>Whitelist", it still cannot connect.
From the logs it continues to be blocked "Authentication failed - blacklisted ip by country".
In the guide it is specified: "It's worth noting that if an entire country is blocked, but an IP within that country is added to the server's Whitelist, that IP will NOT be blocked as the Whitelist takes priority."
Do I need to set something else?

Thank you
Mark

5 Replies

Reply to Thread
0
Zach Sylvester Replied
9/26/2024 at 7:26 AM
Employee Post
Hey Mark, 

This issue was resolved in the July 24th update. It's possible that you are using an older version. I suggest updating to the latest version to see if the problem persists. 

Best regards,
Zach Sylvester Software Developer SmarterTools Inc. www.smartertools.com
0
BMark Replied
9/28/2024 at 1:12 PM
Hello Zach, 
sorry.. but even installing the latest version 9035 there seems to be the same problem, the IP inserted in the white list is not enabled (ByPass IP + ByPass Spam SMTP + SMTP) for sending if it refers to a country blocked by the general rule..
is it necessary to set some other parameters?

Best regards
Mark
0
BMark Replied
10/1/2024 at 10:16 AM
Hello,
here I give you an example of smtp log of the situation:
where first it actually indicates that the IP is in white list, but then it stops for authentication failure saying "Authentication failed - blacklisted ip by country".
I can't solve the problem, does it happen to anyone else?

..
[2024.10.01] 18:43:02.831 [**.**.**.**][56783053] rsp: 220 servermail
[2024.10.01] 18:43:02.831 [**.**.**.**][56783053] connected at 10/1/2024 6:43:02 PM
[2024.10.01] 18:43:02.831 [**.**.**.**][56783053] Country code: IE
[2024.10.01] 18:43:02.831 [**.**.**.**][56783053] IP in whitelist
[2024.10.01] 18:43:02.887 [**.**.**.**][56783053] cmd: EHLO mailer.domain.com
[2024.10.01] 18:43:02.889 [**.**.**.**][56783053] rsp: 250-servermail Hello [**.**.**.**]250-SIZE 136533333250-AUTH LOGIN CRAM-MD5250-8BITMIME250-SMTPUTF8250-DSN250 OK
[2024.10.01] 18:43:02.917 [**.**.**.**][56783053] cmd: AUTH CRAM-MD5
[2024.10.01] 18:43:02.922 [**.**.**.**][56783053] rsp: 334 PDE2MjYwNDQ5NjcuNjM4NjM0MDQ5ODI5MTc4Mjg4QHdlYm1haWwuYnVzaW5lc3M+
[2024.10.01] 18:43:02.951 [**.**.**.**][56783053] Authenticating as email@sender.com
[2024.10.01] 18:43:02.951 [**.**.**.**][56783053] Authentication failed - blacklisted ip by country
[2024.10.01] 18:43:02.951 [**.**.**.**][56783053] rsp: 535 Authentication failed
[2024.10.01] 18:43:02.980 [**.**.**.**][56783053] cmd: QUIT
[2024.10.01] 18:43:02.980 [**.**.**.**][56783053] rsp: 221 Service closing transmission channel
[2024.10.01] 18:43:02.980 [**.**.**.**][56783053] disconnected at 10/1/2024 6:43:02 PM
..
..
[2024.10.01] 19:00:25.978 [**.**.**.**][50838207] rsp: 220 servermail
[2024.10.01] 19:00:25.978 [**.**.**.**][50838207] connected at 10/1/2024 7:00:25 PM
[2024.10.01] 19:00:25.978 [**.**.**.**][50838207] Country code: DE
[2024.10.01] 19:00:25.978 [**.**.**.**][50838207] IP in whitelist
[2024.10.01] 19:00:25.979 [**.**.**.**][50838207] cmd: EHLO mailer.domain.com
[2024.10.01] 19:00:25.983 [**.**.**.**][50838207] rsp: 250-servermail Hello [**.**.**.**]250-SIZE 136533333250-AUTH LOGIN CRAM-MD5250-STARTTLS250-8BITMIME250-SMTPUTF8250-DSN250 OK
[2024.10.01] 19:00:25.984 [**.**.**.**][50838207] cmd: STARTTLS
[2024.10.01] 19:00:25.984 [**.**.**.**][50838207] rsp: 220 Start TLS negotiation
[2024.10.01] 19:00:26.003 [**.**.**.**][50838207] cmd: EHLO mailer.domain.com
[2024.10.01] 19:00:26.005 [**.**.**.**][50838207] rsp: 250-servermail Hello [**.**.**.**]250-SIZE 136533333250-AUTH LOGIN CRAM-MD5250-8BITMIME250-SMTPUTF8250-DSN250 OK
[2024.10.01] 19:00:26.006 [**.**.**.**][50838207] cmd: AUTH CRAM-MD5
[2024.10.01] 19:00:26.008 [**.**.**.**][50838207] rsp: 334 PDE1ODc1NTc4NTguNjM4NjM0MDYwMjYwMDY0NzY1QHdlYm1haWwuYnVzaW5lc3M+
[2024.10.01] 19:00:26.008 [**.**.**.**][50838207] Authenticating as email@sender.com
[2024.10.01] 19:00:26.008 [**.**.**.**][50838207] Authentication failed - blacklisted ip by country
[2024.10.01] 19:00:26.008 [**.**.**.**][50838207] rsp: 535 Authentication failed
[2024.10.01] 19:00:26.009 [**.**.**.**][50838207] disconnected at 10/1/2024 7:00:26 PM
..
0
Derek Curtis Replied
10/1/2024 at 10:20 AM
Employee Post
We will do some testing of this. If it IS still an issue, we'll get it sorted out. 
Derek Curtis COO SmarterTools Inc. www.smartertools.com
1
Derek Curtis Replied
10/1/2024 at 5:09 PM
Employee Post
Hey, BMark. I actually started a ticket for this. We've done some testing and can't replicate the issue, so we'll be reaching out for more specifics. 
Derek Curtis COO SmarterTools Inc. www.smartertools.com
Back to Community Threads

Reply to Thread

Related Knowledge Base Articles

Recommended SPAM SettingsSmarterMail > Antispam and Antivirus
Configure SmarterMail as a Free Gateway ServerSmarterMail > Server Configuration and Management
Cannot Send Email MessagesSmarterMail > Troubleshooting
Sender Verification Shield and Incoming GatewaysSmarterMail > Server Configuration and Management
Find a Compromised AccountSmarterMail > Troubleshooting