We use cookies on our website to ensure we provide you with the best experience on our website. By using our website, you agree to the use of cookies for analytics and personalized content.This website uses cookies. More Information
It seems like your browser didn't download the required fonts. Please revise your security settings and try again.

Barracuda Email Security Gateway

Why isn't my Remove All Invalid Accounts button working on my Barracuda Spam Firewall?

  • Type: Knowledgebase
  • Date changed: 2 years ago
Solution #00002412

Scope:
Barracuda Spam & Virus Firewall models 300 and above, all versions of firmware

Answer:
If you are not using LDAP verification for all of your domains and you have per-user quarantine boxes enabled, quarantined mail addressed to nonexistent recipients may be stored in quarantine mailboxes for these nonexistent users on the Barracuda Spam & Virus Firewall. A feature exists to help you purge these invalid accounts, provided your mail server uses some form of recipient verification.

The Remove All Invalid Accounts button appears at the bottom of the Users > Account View page. If you are using LDAP for your recipient verification, it will only work on the domains for which it has been configured (under the Domains tab). If a given domain is not using LDAP and has no other form of recipient verification, the Remove All Invalid Acounts button cannot work.

If you are using SMTP verification, trying to send an email message to an invalid user on your mail server should look something like this:

telnet mailserver.yourdomain.com 25
Trying 55.55.55.55...
Connected to mailserver.yourdomain.com (55.55.55.55).
Escape character is '^]'.
220 THE 220 BANNER
helo barracudanetworks.com
250 mailserver.yourdomain.com
mail from:<postmaster@barracudanetworks.com>
250 ok
rcpt to:<invalidaccount@yourdomain.com>
550 User does not exist

The Barracuda Spam & Virus Firewall will connect to your mail server and check each address in this fashion, should LDAP verification be unavailable. The 550 message following the rcpt to command indicates to the Barracuda that the current email address is invalid. The Barracuda will use the destination server information for each domain under the Domains tab, so a misconfiguration there could prevent the Remove All Invalid Accounts button from working. Be sure you haven't entered the address or hostname of the mail server itself (as oppose to your domain) while also enabling the Use MX Records option!

Unfortunately, if you are not using either LDAP or SMTP recipient verification, the Remove All Invalid Accounts button will be unable to tell valid and invalid accounts apart.

Additional Notes:
In firmware versions 3.5.11 and above, a third method of recipient verification is available - the local Valid Recipients list. This feature is compatible with the Remove All Invalid Accounts button as well. For information on how the different methods of recipient verification interact with one another, see Solution #00003521.

Link to This Page:
https://campus.barracuda.com/solution/50160000000GoXPAA0