Skip to main content
AT&T Community Forums
Gift your grad endless possibilities. Celebrate right now and connect them to their brightest future.
Need your talk or text logs?
Find them now
SevenOh2's profile
SevenOh2
#1 Star!

New Member

 • 

3 Messages

Wednesday, March 29th, 2023 2:10 PM

Incorrect DNS response on ATT Wireless (no errors on wifi or on other mobile networks)

Have a mail server that, periodically, gets results in a certificate error on ATT-connected iPhones (only). The cert shown belongs to securelogin.hpe.com which, clearly, I don't have the key for (and Digicert didn't issue that to me). The only thing I can think of is that the DNS servers on ATT are responding with the wrong IP at some points in time. I've confirmed these phones don't have profiles or VPNs configured, and they aren't connected to any wifi. I saw one similar forum post about something similar (and the same hpe certificate), but it was unresolved.

My next troubleshooting step is to get one of these phones and tether and use dig/nslookup to see if I can get a response that is incorrect while on that network/using the phone's APN. I was unable to query the DNS server addresses that supposedly are the ones that ATT Wireless use (that showed up in another forum post, so unconfirmed - I can't confirm as iOS doesn't show DNS server address for mobile networks).

At this point I am nearly certain this is a periodic improper response from ATT DNS servers. I'd certainly like to raise a ticket with ATT about this issue, but I'm not sure of the right avenue to do that. Has anyone had a similar problem they have solved? Or a contact to raise the issue?

Thanks!

Questions

 • 

Updated 

2 months ago

19

3

0

ATTHelp

Community Support

 • 

214.9K Messages

2 months ago

We want to point you in the right direction for getting this incorrect DNS response for your mail server sorted out, @SevenOh2.

 

We highly recommend reaching out to our Postmaster support team by emailing over at abuse_rbl@abuse.net. They'll be able to help sort out what's going on with the response you get from our DNS servers regarding your mail server. 

Thanks for reaching out to the AT&T Community Forums.

Dylan, AT&T Community Specialist

0

0

SevenOh2

New Member

 • 

3 Messages

2 months ago

Thanks @ATTHelp. We aren't running the mail server on an ATT connected host - this is clients accessing their email. The mobile email client is connecting via HTTPS (Activesync). So this appears to be a network (DNS) problem, not an email problem.

0

0

SevenOh2

New Member

 • 

3 Messages

2 months ago

I think this is solved! ATT (at least this particular ATT business account) pushes two managed wifi networks - "AT&T Wi-Fi Passpoint" and "attwifi" - to the phones. These do not show up under profiles (which is the first place I checked). They cannot be removed from the phone (though it appears that we can disable auto-join - hopefully that setting sticks and doesn't get reset by network policies). When connecting to the Passpoint network, the phones aren't automatically logging in. As many of these APs are Aruba, the login screen is securelogin.hpe.com, and because Activesync is https, the mail client actually connects to that host, resulting in the cert error.
Putting this here because my searches resulted in no answers, so if anyone else has this issue, check "managed networks" in the wifi settings (settings->WiFi->edit, swipe to the bottom) and disable auto-join on the passpoint network. If the setting immediately goes back to enabled, shut wifi off and try again.
That said, @ATTHelp I'd love to see a way to actually remove these wifi networks from the phone and keep them from getting pushed by the network config.

0

0

Related Conversations

Loading...

Did this help you?

Tags

att

problem

wireless

data

at&t

iphone

internet

email

Not finding what you're looking for?
Ask a question
New to AT&T Community?
New to the AT&T Community? Start by visiting the Community How-To.
New to the AT&T Community?
Visit the Community How-To.