If you need to know how DNS validation works with respect to Symantec messaging gateway
This is common for all versions of SMG
To Enable DNS Validation, go to (Protocols -> Settings -> SMTP)
Check any of the following options you wish to enable.
This option will perform reverse DNS validation and reject the connection if the connecting IP address has no reverse DNS record.
(Note: This feature does not reject connections from IP addresses in the internal mail hosts.)
This option will perform reverse DNS validation and reject the connection if both of the following statements are true:
(Note: This feature does not reject connections from IP addresses in the internal mail hosts.)
This option will perform DNS validation and reject the connection if the domain that is provided at HELO/EHLO has neither an 'A,' 'AAAA,' nor an 'MX' record in DNS.
This option will perform DNS validation and reject the connection if the domain that is provided at MAIL FROM has neither an 'A,' 'AAAA,' nor an 'MX' record in DNS.
(NOTE: Any of these options that fire on a message will reject the connection, there is no configuration available to change the action of this feature.)
You can customize the reject message that will appear in the NDR (dependent on the senders' MTA). We recommend that you configure each option with a unique reject message that identifies the type of DNS failure triggered to facilitate troubleshooting.
Suggested message text: