From owner-freebsd-questions Thu May 9 7:11:23 2002 Delivered-To: freebsd-questions@freebsd.org Received: from gold.sdln.net (gold.sdln.net [204.52.252.74]) by hub.freebsd.org (Postfix) with ESMTP id D27F537B40A for ; Thu, 9 May 2002 07:11:14 -0700 (PDT) Received: from jason (jason.sdln.net [204.52.252.88]) by gold.sdln.net (8.11.3/8.11.3) with SMTP id g49ECvq03962 for ; Thu, 9 May 2002 08:12:57 -0600 (MDT) (envelope-from jasonc@sdln.net) From: "Jason Christians" To: Subject: Firewalls, Sendmail, and Bind DNS! Oh my! Date: Thu, 9 May 2002 08:13:14 -0600 Message-ID: MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook IMO, Build 9.0.2416 (9.0.2910.0) X-MimeOLE: Produced By Microsoft MimeOLE V5.50.4522.1200 Importance: Normal Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG I have a strange issue that I have been researching for a while: My email server (Sendmail 8, Bind 9, FreeBSD 4.4) where I work is able to send emails to almost all of the domains out there. Of the domains I am unable to send to, this is the error in the sendmail log file: (note that I changed the email address) reject=451 4.1.8 ... Domain of sender address email@domain.edu does not resolve We have a PIX firewall, but the issues existed before and after the PIX firewall. We took it offline, and the mail was still deferred. I have traced this to the fact that we are unable to nslookup on their mx records, while other networks do not have a problem with either the mail or the nslookup, only us. They are all using checkpoint firewalls. I am guessing it is something specific to that firewall. To get around this issue, I decided that maybe adding the following to the sendmail.mc file would give me a temp work-around until we figure out the dns issue. FEATURE(accept_unresolvable_domains) I tried using the m4 processor, but I got a bogus cf file. Here is the command I used: m4 /etc/mail/freebsd.mc > /etc/freebsd.cf What did I do wrong? And, more importantly, will adding that macro help anyway? Any other ideas on this would be most appreciated. Any ideas on why I would be unable to do nslookups while I can "lserver" to another dns server and from there get the nslookup to work? Thanks in advance, Jason ************************************** Jason Christians South Dakota Library Network Senior Computer Specialist jasonc@sdln.net / http://www.sdln.net ************************************** To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message