From owner-freebsd-isp Sat Jul 3 19: 4:54 1999 Delivered-To: freebsd-isp@freebsd.org Received: from cyril.iaeste.dk (ns.aub.dk [195.249.214.2]) by hub.freebsd.org (Postfix) with ESMTP id 128E914F51 for ; Sat, 3 Jul 1999 19:04:42 -0700 (PDT) (envelope-from henrik@iaeste.dk) Received: from localhost (henrik@localhost [127.0.0.1]) by cyril.iaeste.dk (8.8.7/8.8.7) with ESMTP id EAA01746; Sun, 4 Jul 1999 04:04:30 +0200 Date: Sun, 4 Jul 1999 02:04:29 +0000 (GMT) From: Henrik Olsen To: bb@taex001.tamu.edu Cc: freebsd-isp@FreeBSD.ORG Subject: Re: {bb} BB, sendmail and rbl In-Reply-To: <012401bec5a0$61342880$0e00a8c0@neland.dk> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Sun, 4 Jul 1999, Leif Neland wrote: > > I run Big Brother on a FreeBSD box, which is connected to the world on a > dial-on-demand isdn. > A few days ago, I enabled FEATURE(rbl)dnl, Realtime Blackhole list in my > sendmail.mc > > Now everytime bb connects to sendmail, the dial-on-demand kicks in! > > I hastily removed rbl again. 12 checks pr hour at $0.01 per call plus 2 > minutes timeout adds up... > > How can I stop this dialup, and still use bb and rbl? > > Is sendmail somehow making a rbl-lookup on myself (actually the host bb is > running on)? > > If so, could I put something in my named to prevent this? > I don't want to block dns-requests to trigger dial-on-demand. > > Leif One possibility is to hack sendmail.cf to exclude the rbl check for specific ip numbers, I did that for a site that used all the checks including orbs, but needed the ability to get mail from specific sites even though they where in the lists. Adding your bbnet hosts ipnumber to the no_check file will prevent the lookup. Add this in the local info section: # file containing IP numbers of machines which can sent to up even though # they have been blacklisted F{NoCheck} /etc/mail/no_check Insert this just after Scheck_mail and before the rest of the rbl check: # make a dup to mangle R$* $: $1 $| $(dequote "" $&{client_addr} $) # Check for hosts we explicitely allow though they are blacklisted R$* $| $*$={NoCheck} $@ $>3 $1 from allowed system # regenerate old value R$* $| $* $: $1 # rest of check -- Henrik Olsen, Dawn Solutions I/S URL=http://www.iaeste.dk/~henrik/ Darth Vader: Luke, come to the dark side. Luke: No. Darth Vader: Your goodness has redeemed me. Die, emperor scum. Return of the Jedi, the Movie-A-Minute version To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message