cancel
Showing results for 
Search instead for 
Did you mean: 
mri503
Active Contributor

Gotowebinar meeting reminders tripping email relay Denial Of Service defenses

Hi,

 

We've had some of our users complaining that they are receiving their GotoWebinar meeting email reminders 1-2 hours after the webinar.  Upon investigation, we've found that they way meeting reminder emails are being sent to us are tripping our email relay's Denial of Service (DoS) defenses, and it's tarpitting the logmeininc.com server (in this case o11.s.logmeininc.com) for 2 hours.  Is there anyway we can control the way meeting notices are sent to us (not in a single connection flood, etc).

 

1 ACCEPTED SOLUTION

Accepted Solutions
AshC
LogMeIn Contributor

Re: Gotowebinar meeting reminders tripping email relay Denial Of Service defenses

Just to follow up on this request, the following IPs are currently dedicated for GoTo Email services:  167.89.0.92
167.89.56.17
167.89.56.18
167.89.56.19
167.89.58.180
167.89.62.27
167.89.63.188
167.89.81.41
168.245.22.13
168.245.37.23
168.245.41.143
168.245.65.2
168.245.69.157
168.245.77.74
168.245.9.226

 

View solution in original post

11 REPLIES 11
AshC
LogMeIn Contributor

Re: Gotowebinar meeting reminders tripping email relay Denial Of Service defenses

Hi,

If this was a GoToWebinar event, and these were the Follow-up Emails you speak of, then I'm afraid we cannot space those out any differently when we send them in batches to Attendees.

 

mri503
Active Contributor

Re: Gotowebinar meeting reminders tripping email relay Denial Of Service defenses

Do you have a list of sending IPs I can look at to exempt from the defenses then?

AshC
LogMeIn Contributor

Re: Gotowebinar meeting reminders tripping email relay Denial Of Service defenses

If you have the ability to whitelist our email server IP for GoToWebinar, this is the address:  167.89.58.180

mri503
Active Contributor

Re: Gotowebinar meeting reminders tripping email relay Denial Of Service defenses

The ones that have been sending to us and getting blocked recently are 167.89.56.18 and 167.89.56.19

AshC
LogMeIn Contributor

Re: Gotowebinar meeting reminders tripping email relay Denial Of Service defenses

That's entirely possible.  For a full spread of IP blocks used by GoTo services:  https://support.logmeininc.com/article/g2m060010?c_prod=care&c_name=iph

mri503
Active Contributor

Re: Gotowebinar meeting reminders tripping email relay Denial Of Service defenses

The IPs I've listed above don't show up in any of the 17 blocks in the link you sent.  Any other suggestions?

AshC
LogMeIn Contributor

Re: Gotowebinar meeting reminders tripping email relay Denial Of Service defenses

I can say that all emails stem from the same location if you want to whitelist *.s.logmeininc.com

mri503
Active Contributor

Re: Gotowebinar meeting reminders tripping email relay Denial Of Service defenses

I've opened a case with our Gateway vendor, and we need IP addresses.  We can't user Wildcard FQDNs.  Is there no one at Logmein that knows the sending email servers IP address ranges?

AshC
LogMeIn Contributor

Re: Gotowebinar meeting reminders tripping email relay Denial Of Service defenses

@mri503 I will work on getting more information.

 

For now, if you can private messge me some affected email address', and the date/time of Email arrival, it may help speed along the ticket.