nanog mailing list archives

Re: gmail.com - 550 error for ipv6/PTR ?

From: Laurent GUERBY <laurent () guerby net>
Date: Wed, 15 Jan 2014 08:09:01 +0100

On Tue, 2014-01-14 at 19:06 -0500, Brandon Applegate wrote:

Just saw this in a message tonight.  No idea if this is a transient error 
or not.


Got one too for AS197422 at "Tue, 14 Jan 2014 23:59:01 +0100", resent
the mail at "Wed, 15 Jan 2014 00:03:12 +0100" and it worked so probably
transient.

Laurent

host
    gmail-smtp-in.l.google.com[2a00:1450:400c:c05::1a] said: 550-5.7.1
    [2a01:6600:80xxx] Our system has detected that this message
    550-5.7.1 does not meet IPv6 sending guidelines regarding PTR
records and
    550-5.7.1 authentication. Please review 550-5.7.1
    https://support.google.com/mail/?p=ipv6_authentication_error for
more 550
    5.7.1 information. hg12si1854476wib.39 - gsmtp (in reply to end of
DATA
    command)

Arrival-Date: Tue, 14 Jan 2014 22:59:01 +0000 (UTC)
Date: Tue, 14 Jan 2014 23:59:01 +0100

---
host gmail-smtp-in.l.google.com 
[gmail-smtp-in.l.google.com][2607:f8b0:4002:c01::1a]
   said: 550-5.7.1 [2607:ff70:11::11] Our system has detected that this
   message does not 550-5.7.1 meet IPv6 sending guidelines regarding PTR
   records and authentication 550-5.7.1 . Please review 550-5.7.1
   https://support.google.com/mail/?p=ipv6_authentication_error 
[support.google.com] for more 550
   5.7.1 information. t26si2290895yhl.255 - gsmtp (in reply to end of DATA
   command) 
---
That URL's relevant section says:

Additional guidelines for IPv6

The sending IP must have a PTR record (i.e., a reverse DNS of the sending 
IP) and it should match the IP obtained via the forward DNS resolution of 
the hostname specified in the PTR record. Otherwise, mail will be marked 
as spam or possibly rejected.

The sending domain should pass either SPF check or DKIM check. Otherwise, 
mail might be marked as spam.
---

I have both of these (PTR's RR has matching AAAA, and I have SPF (but not 
DKIM)).

I'm guessing that something on google's side is misinterpreting some data 
or other busted logic.  I meet all the requirements laid out, and have 
been sending mail to gmail addresses (via ipv6) since $forever.

Off-list replies are fine to minimize noise, and if there is an answer or 
any meaningful correlation I will reply on-list.  Thanks in advance for 
any info/feedback.

--
Brandon Applegate - CCIE 10273
PGP Key fingerprint:
830B 4802 1DD4 F4F9 63FE  B966 C0A7 189E 9EC0 3A74
"SH1-0151.  This is the serial number, of our orbital gun."

Current thread:

gmail.com - 550 error for ipv6/PTR ? Brandon Applegate (Jan 14)
- Re: gmail.com - 550 error for ipv6/PTR ? John Levine (Jan 14)
- Re: gmail.com - 550 error for ipv6/PTR ? Ted Cooper (Jan 14)
  - Re: gmail.com - 550 error for ipv6/PTR ? Christopher Morrow (Jan 14)
    - Re: gmail.com - 550 error for ipv6/PTR ? Blair Trosper (Jan 14)
  - Re: gmail.com - 550 error for ipv6/PTR ? Blair Trosper (Jan 14)
- Re: gmail.com - 550 error for ipv6/PTR ? Laurent GUERBY (Jan 14)
- Re: gmail.com - 550 error for ipv6/PTR ? Darren Pilgrim (Jan 15)
  - Re: gmail.com - 550 error for ipv6/PTR ? Franck Martin (Jan 15)
    - Re: gmail.com - 550 error for ipv6/PTR ? Darren Pilgrim (Jan 15)
    - Re: gmail.com - 550 error for ipv6/PTR ? Franck Martin (Jan 15)
    - Re: gmail.com - 550 error for ipv6/PTR ? Owen DeLong (Jan 15)
  - Re: gmail.com - 550 error for ipv6/PTR ? Jimmy Hess (Jan 15)
- Re: gmail.com - 550 error for ipv6/PTR ? Franck Martin (Jan 15)
  - Re: gmail.com - 550 error for ipv6/PTR ? John Levine (Jan 15)