Page MenuHomePhabricator
Create Task
Maniphest T10655

Phacility cluster mail deliverability issue
Closed, ResolvedPublic
Actions

Description

Earlier today, our current upstream mail provider suddenly disabled our account without notice or explanation. As a result, outbound mail is no longer being delivered. We've followed up with them (at 11:06 AM PST) but haven't received a reply yet.

In the meantime, I'm looking at transitioning outbound mail to a different provider (say, one that doesn't terminate service for long-term paying customers without contacting them). We didn't anticipate our provider just turning us off without warning, so we didn't have a redundant provider ready. Amazon SES is the most promising alternative provider, but has default service limits which are too low to accommodate our current outbound volume. I submitted a support request to raise these limits (at 11:49 AM PST) but haven't received a reply yet.

So we're waiting for either provider to get back to us and give us an outbound pathway. Outbound mail is currently queued in Phabricator, and will all be delivered once an outbound pathway is available.

There are minor technical barriers to delivering via SES in the cluster. I'm working to remove these while we wait for a reply so we can transition to SES immediately if that pathway unblocks first.

Revisions and Commits

rP Phabricator
D15515rP4a6589524b4a Add `amazon-ses.endpoint` configuration

Related Objects

Event Timeline

epriestley created this task.Mar 23 2016, 7:40 PM
epriestley added a revision: D15515: Add `amazon-ses.endpoint` configuration.
epriestley added projects: Phacility, Ops.
epriestley added a comment.Mar 23 2016, 7:47 PM

Our original upstream provider enabled the account again, also without explanation. Outbound queues are flushing now, but will take some time to completely de-queue because of backoff behavior in the queue.

I'm pursuing an explanation with our provider about the root cause of this issue.

epriestley added a subscriber: chad.Mar 23 2016, 7:53 PM

I've issued all instances a 24-hour credit for the service disruption. This will be reflected on the next invoice you receive.

epriestley lowered the priority of this task from Unbreak Now! to Normal.Mar 23 2016, 10:20 PM
epriestley added a comment.Mar 23 2016, 10:23 PM

The upstream provider gave me a not-quite-English canned response:

The reason for the disablement was due to our automated system seeing emails with spam fingerprints on them for your sending and receiving. We had whitelisted the domain fingerprint to prevent this exact issue moving forward.

As for not being notified that our account was disabled:

Our Notifications are currently stuck in a bug of not getting sent out, we are working on this at this time.

I'm not particularly thrilled with this response and plan to move us to SES.

chad added a comment.Mar 23 2016, 10:31 PM

grumpy

Luke081515.2 added a commit: rP4a6589524b4a: Add `amazon-ses.endpoint` configuration.Mar 23 2016, 11:15 PM
epriestley added a comment.Mar 24 2016, 3:13 AM

I requested SES limits of about 2X what we currently need and AWS gave us about 10X, so things look good so far on that front.

epriestley mentioned this in T10847: 30GB Phacility instance caused a series of cascading failures which left web services unreachable.Apr 21 2016, 6:53 PM
epriestley mentioned this in T10105: Disabled account should disable all outbound mail.Feb 13 2017, 6:42 PM
epriestley mentioned this in T12677: Support multiple mail delivery services for automatic failover.May 5 2017, 3:45 PM
epriestley added a comment.Jan 30 2018, 7:14 PM

I'm going to roll this forward into T12677 since SES managed to one-up this by a healthy margin in T12237.

Herald added a subscriber: eadler. · View Herald TranscriptJan 30 2018, 7:14 PM
epriestley closed this task as Resolved.Jan 30 2018, 7:14 PM
Phabricator · Built by Phacility