DNS RBL error
in [Postfix]
|
From: Ralf Hildebrandt on 19 Apr 2010 09:15 * donovan jeffrey j <donovan(a)beth.k12.pa.us>: > > On Apr 19, 2010, at 9:03 AM, Ralf Hildebrandt wrote: > > > * donovan jeffrey j <donovan(a)beth.k12.pa.us>: > > > >> this system in question picks up mail ( primary MX ) for about 2000 users. > > > > This should well be within the limits. We're execeeding the limit at > > about 30k users. Maybe you're using your ISPs DNS forwarder? > > Im not sure i understand. I know my isp pulls zone files from me, and runs a secondary dns server. Show your /etc/resolv.conf -- Ralf Hildebrandt Geschäftsbereich IT | Abteilung Netzwerk Charité - Universitätsmedizin Berlin Campus Benjamin Franklin Hindenburgdamm 30 | D-12203 Berlin Tel. +49 30 450 570 155 | Fax: +49 30 450 570 962 ralf.hildebrandt(a)charite.de | http://www.charite.de
From: John Peach on 19 Apr 2010 09:18 On Mon, 19 Apr 2010 09:09:38 -0400 donovan jeffrey j <donovan(a)beth.k12.pa.us> wrote: > > On Apr 19, 2010, at 9:03 AM, Ralf Hildebrandt wrote: > > > * donovan jeffrey j <donovan(a)beth.k12.pa.us>: > > > >> this system in question picks up mail ( primary MX ) for about > >> 2000 users. > > > > This should well be within the limits. We're execeeding the limit at > > about 30k users. Maybe you're using your ISPs DNS forwarder? > > Im not sure i understand. I know my isp pulls zone files from me, and > runs a secondary dns server. -j Your nslookup shows you using 207.172.3.20 as a nameserver: 20.3.172.207.in-addr.arpa name = auth1.dns.rcn.net Your ISP's nameserver. You need to run your own, so that you query spamhaus directly. They are counting all the hits from RCN. > -- John
From: donovan jeffrey j on 19 Apr 2010 09:28 On Apr 19, 2010, at 9:15 AM, Ralf Hildebrandt wrote: > * donovan jeffrey j <donovan(a)beth.k12.pa.us>: >> >> On Apr 19, 2010, at 9:03 AM, Ralf Hildebrandt wrote: >> >>> * donovan jeffrey j <donovan(a)beth.k12.pa.us>: >>> >>>> this system in question picks up mail ( primary MX ) for about 2000 users. >>> >>> This should well be within the limits. We're execeeding the limit at >>> about 30k users. Maybe you're using your ISPs DNS forwarder? >> >> Im not sure i understand. I know my isp pulls zone files from me, and runs a secondary dns server. > > Show your /etc/resolv.conf ins2:~ root# cat /etc/resolv.conf search beth.k12.pa.us nameserver 10.135.1.2 nameserver 209.96.96.2 nameserver 207.172.3.20 ins2:~ root# nslookup zen.spamhaus.org Server: 207.172.3.20 Address: 207.172.3.20#53 ** server can't find zen.spamhaus.org: REFUSED okay,.. Ill have to check this. to make sure my queries to zen are directly from my mail system does that sound right ? -j
From: Ralf Hildebrandt on 19 Apr 2010 09:29 * John Peach <postfix(a)johnpeach.com>: > Your nslookup shows you using 207.172.3.20 as a nameserver: > > 20.3.172.207.in-addr.arpa name = auth1.dns.rcn.net > > Your ISP's nameserver. You need to run your own, so that you query > spamhaus directly. They are counting all the hits from RCN. apt-get install pdns-recursor -- Ralf Hildebrandt Geschäftsbereich IT | Abteilung Netzwerk Charité - Universitätsmedizin Berlin Campus Benjamin Franklin Hindenburgdamm 30 | D-12203 Berlin Tel. +49 30 450 570 155 | Fax: +49 30 450 570 962 ralf.hildebrandt(a)charite.de | http://www.charite.de
From: Ralf Hildebrandt on 19 Apr 2010 09:36 * donovan jeffrey j <donovan(a)beth.k12.pa.us>: > ins2:~ root# cat /etc/resolv.conf > search beth.k12.pa.us > nameserver 10.135.1.2 > nameserver 209.96.96.2 > nameserver 207.172.3.20 > > ins2:~ root# nslookup zen.spamhaus.org > Server: 207.172.3.20 > Address: 207.172.3.20#53 > > ** server can't find zen.spamhaus.org: REFUSED > > > okay,.. Ill have to check this. to make sure my queries to zen are directly from my mail system does that sound right ? Yes. Install a local caching DNS which directly queries the internet ... -- Ralf Hildebrandt Geschäftsbereich IT | Abteilung Netzwerk Charité - Universitätsmedizin Berlin Campus Benjamin Franklin Hindenburgdamm 30 | D-12203 Berlin Tel. +49 30 450 570 155 | Fax: +49 30 450 570 962 ralf.hildebrandt(a)charite.de | http://www.charite.de
First
|
Prev
|
Next
|
Last
Pages: 1 2 3 4 5 Prev: ADV: SMTP clustering solution - Proto Balance Mail Next: postfix loop detection |