Retracing Sender's SMTP IP Address using MS Exchange 5.5
Dear Folks, We receive an e-mail that we want to reply back, but the sender's SMTP is NOT registered in DNS. Let's say the sender is who@xyz.com. Let's assume xyz.com is being resolve with its ISP DNS 150.150.150.1. But there is no MX for xyz.com in this DNS. Our e-mail is MS Exchange 5.5. Can we trace the sender's SMTP IP address? Is there better way than to peel off the original header packet to see the sender IP? Thanks, Audie Onibala ____________________________________________________________________ Get free email and a permanent address at http://www.netaddress.com/?N=1
Headers can be forged, if that is what you want to know. And tracing can get messy sometimes in attempting to track down the originator. Toplez Razer wrote:
Dear Folks, We receive an e-mail that we want to reply back, but the sender's SMTP is NOT registered in DNS. Let's say the sender is who@xyz.com.
Let's assume xyz.com is being resolve with its ISP DNS 150.150.150.1. But there is no MX for xyz.com in this DNS.
Our e-mail is MS Exchange 5.5. Can we trace the sender's SMTP IP address? Is there better way than to peel off the original header packet to see the sender IP?
Thanks, Audie Onibala
____________________________________________________________________ Get free email and a permanent address at http://www.netaddress.com/?N=1
-- Thank you; |--------------------------------------------| | Thinking is a learned process so is UNIX | |--------------------------------------------| Henry R. Linneweh
This is off-topic for the NANOG list. I tend to be pretty good at reading mail headers, so if you'd like to follow up by sending the headers to me to take a look at, I can. Alternatively, you might try SPAM-L. Subscribe, and post your question with a prefix of "HELP:" e.g. Subject: HELP: Please help me track the origin of this message http://www.claws-and-paws.com/spam-l/ has the FAQ, with lots of good info including how to subscribe. Toplez Razer wrote:
Dear Folks, We receive an e-mail that we want to reply back, but the sender's SMTP is NOT registered in DNS. Let's say the sender is who@xyz.com.
Let's assume xyz.com is being resolve with its ISP DNS 150.150.150.1. But there is no MX for xyz.com in this DNS.
Our e-mail is MS Exchange 5.5. Can we trace the sender's SMTP IP address? Is there better way than to peel off the original header packet to see the sender IP?
Thanks, Audie Onibala
____________________________________________________________________ Get free email and a permanent address at http://www.netaddress.com/?N=1
-- North Shore Technologies, Cleveland, OH http://NorthShoreTechnologies.net Steve Sobol, President, Chief Website Architect and Janitor sjsobol@NorthShoreTechnologies.net - 888.480.4NET - 216.619.2NET
participants (3)
-
Henry R. Linneweh
-
Steve Sobol
-
Toplez Razer