From owner-freebsd-current@freebsd.org Thu Feb 27 15:14:30 2020 Return-Path: Delivered-To: freebsd-current@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 8D30F244824 for ; Thu, 27 Feb 2020 15:14:30 +0000 (UTC) (envelope-from Mark.Martinec+freebsd@ijs.si) Received: from mailman.nyi.freebsd.org (mailman.nyi.freebsd.org [IPv6:2610:1c1:1:606c::50:13]) by mx1.freebsd.org (Postfix) with ESMTP id 48Sx6F3WPmz3Lng for ; Thu, 27 Feb 2020 15:14:29 +0000 (UTC) (envelope-from Mark.Martinec+freebsd@ijs.si) Received: by mailman.nyi.freebsd.org (Postfix) id 65B32244821; Thu, 27 Feb 2020 15:14:29 +0000 (UTC) Delivered-To: current@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 65765244820 for ; Thu, 27 Feb 2020 15:14:29 +0000 (UTC) (envelope-from Mark.Martinec+freebsd@ijs.si) Received: from mail.ijs.si (mail.ijs.si [IPv6:2001:1470:ff80::25]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) server-signature RSA-PSS (4096 bits)) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id 48Sx6C5byKz3Llq for ; Thu, 27 Feb 2020 15:14:27 +0000 (UTC) (envelope-from Mark.Martinec+freebsd@ijs.si) Received: from amavis-ori.ijs.si (localhost [IPv6:::1]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by mail.ijs.si (Postfix) with ESMTPS id 48Sx680nlnz7ZQ for ; Thu, 27 Feb 2020 16:14:24 +0100 (CET) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=ijs.si; h= user-agent:message-id:references:in-reply-to:organization :subject:subject:from:from:date:date:content-transfer-encoding :content-type:content-type:mime-version:received:received :received:received; s=jakla4; t=1582816460; x=1585408461; bh=Erw jPPOZRmqPoeG6DM+JqaWg5krE2iQXY1hcUKPLTos=; b=DjCNZ4KoTQ89Pj7glR5 d42rvQ3enLbUZUkrPjL7DjD4GNRhUasQPGrIuMgCaRv03lmXlZCJZcHeBdVfov0w BNlgVsIXEH0ZknoFhfQqYWnGlLG/1Eed3BWa92XojYG4af08XmZ0OJm/AjT5XjVd wfR4cV0UixxeHcde0+QlmHqE= X-Virus-Scanned: amavisd-new at ijs.si Received: from mail.ijs.si ([IPv6:::1]) by amavis-ori.ijs.si (mail.ijs.si [IPv6:::1]) (amavisd-new, port 10026) with LMTP id tWhrnscDo7VG for ; Thu, 27 Feb 2020 16:14:20 +0100 (CET) Received: from mildred.ijs.si (mailbox.ijs.si [IPv6:2001:1470:ff80::143:1]) by mail.ijs.si (Postfix) with ESMTP id 48Sx643j4Wz7ZP for ; Thu, 27 Feb 2020 16:14:20 +0100 (CET) Received: from nabiralnik.ijs.si (nabiralnik.ijs.si [IPv6:2001:1470:ff80::80:16]) by mildred.ijs.si (Postfix) with ESMTP id 48Sx643T43zw3 for ; Thu, 27 Feb 2020 16:14:20 +0100 (CET) Received: from neli.ijs.si (2001:1470:ff80:88:21c:c0ff:feb1:8c91) by webmail.ijs.si with HTTP (HTTP/2.0 POST); Thu, 27 Feb 2020 16:14:20 +0100 MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII; format=flowed Content-Transfer-Encoding: 7bit Date: Thu, 27 Feb 2020 16:14:20 +0100 From: Mark Martinec To: current@freebsd.org Subject: Re: lame reverse DNS? Organization: Jozef Stefan Institute In-Reply-To: <20200227093159.GS37073@home.opsec.eu> References: <8736axm50b.wl-herbert@gojira.at> <20200227093159.GS37073@home.opsec.eu> Message-ID: X-Sender: Mark.Martinec+freebsd@ijs.si User-Agent: Roundcube Webmail/1.3.1 X-Rspamd-Queue-Id: 48Sx6C5byKz3Llq X-Spamd-Bar: --- Authentication-Results: mx1.freebsd.org; dkim=pass header.d=ijs.si header.s=jakla4 header.b=DjCNZ4Ko; dmarc=pass (policy=none) header.from=ijs.si; spf=pass (mx1.freebsd.org: domain of Mark.Martinec@ijs.si designates 2001:1470:ff80::25 as permitted sender) smtp.mailfrom=Mark.Martinec@ijs.si X-Spamd-Result: default: False [-3.56 / 15.00]; ARC_NA(0.00)[]; NEURAL_HAM_MEDIUM(-1.00)[-1.000,0]; R_DKIM_ALLOW(-0.20)[ijs.si:s=jakla4]; RCVD_COUNT_FIVE(0.00)[6]; FROM_HAS_DN(0.00)[]; R_SPF_ALLOW(-0.20)[+ip6:2001:1470:ff80::25]; TO_MATCH_ENVRCPT_ALL(0.00)[]; MIME_GOOD(-0.10)[text/plain]; PREVIOUSLY_DELIVERED(0.00)[current@freebsd.org]; TO_DN_NONE(0.00)[]; NEURAL_HAM_LONG(-1.00)[-1.000,0]; RCPT_COUNT_ONE(0.00)[1]; HAS_ORG_HEADER(0.00)[]; DWL_DNSWL_LOW(-1.00)[ijs.si.dwl.dnswl.org : 127.0.11.1]; RCVD_TLS_LAST(0.00)[]; DKIM_TRACE(0.00)[ijs.si:+]; DMARC_POLICY_ALLOW(-0.50)[ijs.si,none]; RCVD_IN_DNSWL_NONE(0.00)[5.2.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.8.f.f.0.7.4.1.1.0.0.2.list.dnswl.org : 127.0.11.0]; IP_SCORE(-0.56)[asn: 2107(-2.81), country: SI(0.01)]; FROM_EQ_ENVFROM(0.00)[]; SUBJECT_ENDS_QUESTION(1.00)[]; MIME_TRACE(0.00)[0:+]; ASN(0.00)[asn:2107, ipnet:2001:1470::/32, country:SI]; TAGGED_FROM(0.00)[freebsd]; MID_RHS_MATCH_FROM(0.00)[] X-BeenThere: freebsd-current@freebsd.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Discussions about the use of FreeBSD-current List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 27 Feb 2020 15:14:30 -0000 >> The problem has been resolved but I still sometimes see "connect from >> unknown[2610:1c1:1:606c::19:2]" in the maillog (today: 6 of 131 >> connections). Local unbound issue? > That IPv6 has a valid reverse DNS record, so please try to investigate. Looks like an intermittent problem. Tried the following, with different resolvers (local and public): dig -t ptr 2.0.0.0.9.1.0.0.0.0.0.0.0.0.0.0.c.6.0.6.1.0.0.0.1.c.1.0.0.1.6.2.ip6.arpa @9.9.9.9 For example the quad-9 public resolver returned SERVFAIL several times, but eventually started returning the positive reply (NOERROR). There seems to be some mess with NS records and delegations of the domain 1.0.0.0.1.c.1.0.0.1.6.2.ip6.arpa . DNS checkers are complaining about a mismatch between NS records of this domain between a parent NS and domain's NS, e.g. auth1.ns.ny1.nyi.net vs. auth1.sea.ns.nyi.net . Try the domain 1.c.1.0.0.1.6.2.ip6.arpa at the checkers: https://network-tools.webwiz.net/dns-report.htm https://intodns.com/1.c.1.0.0.1.6.2.ip6.arpa https://zonemaster.iis.se/en/?resultid=5e30b31d6f0061c5 Mark