Date: Mon, 15 Oct 2001 08:30:18 -0700 From: "Brian" <bri@sonicboom.org> To: "Drew J. Weaver" <drew.weaver@thenap.com>, "'freebsd-net@freebsd.org'" <freebsd-net@FreeBSD.ORG> Subject: Re: DNS causing problems with sendmail? Message-ID: <007701c1558e$585a1460$3324200a@sonicboom.org> References: <B1A7D9973EBED3119ADD009027DC86492B16CF@MAILMAN>
next in thread | previous in thread | raw e-mail | index | archive | help
[-- Attachment #1 --] After the 2 or 3 minute delay, does it work? Looked in /var/log/maillog for reject causes? Are all the hosts you want to allow to send specified in /etc/mail/relay-domains? If you want to try to see if dns is the cause, specify a few of the non working hosts in /etc/hosts. Personally as an isp customer, if forward and reverse dns is not setup, I'd be looking for a new isp. Some sites will not allow you to connect in this situation. TCP wrappers often includes this entry. # Prevent those with no reverse DNS from connecting. ALL : PARANOID : RFC931 20 : deny Bri ----- Original Message ----- From: Drew J. Weaver To: 'freebsd-net@freebsd.org' Sent: Monday, October 15, 2001 5:40 AM Subject: DNS causing problems with sendmail? Hi, I've had this problem for a few days now, we have a small dial-up ISP and when users dial into one of our cities they get a 209.xxx.xxx.xxx IP and our mail server responds normally, we have another modem pool in that city that consists of 206.xxx.xxx.xxx IP addresses, if a user gets a 206.xxx.xxx.xxx IP address and they attempt to check mail it takes a good 2-3 minutes before the sendmail connection starts, which is an obvious problem because of the timeouts on email clients (and.. 2-3 minutes is just bad). I've been kinda asking around on comp.mail.sendmail about this issue and they are telling me it is a DNS problem. Well, I know that my mail server can reverse the IP addresses because if I am logged in and issue a host command with the IP after it the server is able to produce the proper reverse name. Another user thought it was because I have no Forward dns (a record) for what the IPs are reversed to, but the fact is I've NEVER had any A records or anything for my modem pools. I also have another server running the same version of sendmail, and if I dial into this city and get a 206.xxx.xxx.xxx IP and telnet to port 25 on that server it comes up instantly. So this appears to be an issue only effecting one daemon on one server. The afflicted server also runs a POP daemon that isn't having any problems of this type. Does anyone have a clue on this? I'm awfully confused at this point. Thanks, -Drew [-- Attachment #2 --] <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN"> <HTML xmlns="http://www.w3.org/TR/REC-html40" xmlns:o = "urn:schemas-microsoft-com:office:office" xmlns:w = "urn:schemas-microsoft-com:office:word"><HEAD> <META http-equiv=Content-Type content="text/html; charset=iso-8859-1"> <META content=Word.Document name=ProgId> <META content="MSHTML 5.50.4807.2300" name=GENERATOR> <META content="Microsoft Word 10" name=Originator><LINK href="cid:filelist.xml@01C15554.7FB310A0" rel=File-List><!--[if gte mso 9]><xml> <o:OfficeDocumentSettings> <o:DoNotRelyOnCSS/> </o:OfficeDocumentSettings> </xml><![endif]--><!--[if gte mso 9]><xml> <w:WordDocument> <w:SpellingState>Clean</w:SpellingState> <w:GrammarState>Clean</w:GrammarState> <w:DocumentKind>DocumentEmail</w:DocumentKind> <w:EnvelopeVis/> <w:Compatibility> <w:BreakWrappedTables/> <w:SnapToGridInCell/> <w:WrapTextWithPunct/> <w:UseAsianBreakRules/> </w:Compatibility> <w:BrowserLevel>MicrosoftInternetExplorer4</w:BrowserLevel> </w:WordDocument> </xml><![endif]--> <STYLE>@page Section1 {size: 8.5in 11.0in; margin: 1.0in 1.25in 1.0in 1.25in; mso-header-margin: .5in; mso-footer-margin: .5in; mso-paper-source: 0; } P.MsoNormal { FONT-SIZE: 12pt; MARGIN: 0in 0in 0pt; FONT-FAMILY: "Times New Roman"; mso-style-parent: ""; mso-pagination: widow-orphan; mso-fareast-font-family: "Times New Roman" } LI.MsoNormal { FONT-SIZE: 12pt; MARGIN: 0in 0in 0pt; FONT-FAMILY: "Times New Roman"; mso-style-parent: ""; mso-pagination: widow-orphan; mso-fareast-font-family: "Times New Roman" } DIV.MsoNormal { FONT-SIZE: 12pt; MARGIN: 0in 0in 0pt; FONT-FAMILY: "Times New Roman"; mso-style-parent: ""; mso-pagination: widow-orphan; mso-fareast-font-family: "Times New Roman" } A:link { COLOR: blue; TEXT-DECORATION: underline; text-underline: single } SPAN.MsoHyperlink { COLOR: blue; TEXT-DECORATION: underline; text-underline: single } A:visited { COLOR: purple; TEXT-DECORATION: underline; text-underline: single } SPAN.MsoHyperlinkFollowed { COLOR: purple; TEXT-DECORATION: underline; text-underline: single } SPAN.EmailStyle17 { COLOR: windowtext; FONT-FAMILY: Arial; mso-style-type: personal-compose; mso-style-noshow: yes; mso-ansi-font-size: 10.0pt; mso-bidi-font-size: 10.0pt; mso-ascii-font-family: Arial; mso-hansi-font-family: Arial; mso-bidi-font-family: Arial } SPAN.SpellE { mso-style-name: ""; mso-spl-e: yes } SPAN.GramE { mso-style-name: ""; mso-gram-e: yes } DIV.Section1 { page: Section1 } </STYLE> <!--[if gte mso 10]> <style> /* Style Definitions */ table.MsoNormalTable {mso-style-name:"Table Normal"; mso-tstyle-rowband-size:0; mso-tstyle-colband-size:0; mso-style-noshow:yes; mso-style-parent:""; mso-padding-alt:0in 5.4pt 0in 5.4pt; mso-para-margin:0in; mso-para-margin-bottom:.0001pt; mso-pagination:widow-orphan; font-size:10.0pt; font-family:"Times New Roman";} </style> <![endif]--></HEAD> <BODY lang=EN-US style="tab-interval: .5in" vLink=purple link=blue bgColor=#ffffff> <DIV><FONT face=Arial size=2>After the 2 or 3 minute delay, does it work? Looked in /var/log/maillog for reject causes? Are all the hosts you want to allow to send specified in /etc/mail/relay-domains? If you want to try to see if dns is the cause, specify a few of the non working hosts in /etc/hosts. Personally as an isp customer, if forward and reverse dns is not setup, I'd be looking for a new isp. Some sites will not allow you to connect in this situation. TCP wrappers often includes this entry.</FONT></DIV> <DIV><FONT face=Arial size=2></FONT> </DIV> <DIV><FONT face=Arial size=2># Prevent those with no reverse DNS from connecting.<BR>ALL : PARANOID : RFC931 20 : deny<BR></FONT></DIV> <DIV><FONT face=Arial size=2>Bri</DIV></FONT> <BLOCKQUOTE dir=ltr style="PADDING-RIGHT: 0px; PADDING-LEFT: 5px; MARGIN-LEFT: 5px; BORDER-LEFT: #000000 2px solid; MARGIN-RIGHT: 0px"> <DIV style="FONT: 10pt arial">----- Original Message ----- </DIV> <DIV style="BACKGROUND: #e4e4e4; FONT: 10pt arial; font-color: black"><B>From:</B> <A title=drew.weaver@thenap.com href="mailto:drew.weaver@thenap.com">Drew J. Weaver</A> </DIV> <DIV style="FONT: 10pt arial"><B>To:</B> <A title=freebsd-net@FreeBSD.ORG href="mailto:'freebsd-net@freebsd.org'">'freebsd-net@freebsd.org'</A> </DIV> <DIV style="FONT: 10pt arial"><B>Sent:</B> Monday, October 15, 2001 5:40 AM</DIV> <DIV style="FONT: 10pt arial"><B>Subject:</B> DNS causing problems with sendmail?</DIV> <DIV><BR></DIV> <DIV class=Section1> <P class=MsoNormal style="TEXT-INDENT: 0.5in"><FONT face=Arial size=2><SPAN style="FONT-SIZE: 10pt; FONT-FAMILY: Arial">Hi, I've had this problem for a few days now, we have a small dial-up ISP and when users dial into one of our cities they get a 209.xxx.xxx.xxx IP and our mail server responds normally, we have another modem pool in that city that consists of 206.xxx.xxx.xxx IP addresses, if a user gets a 206.xxx.xxx.xxx IP address and they attempt to check mail it takes a good 2-3 minutes before the <SPAN class=SpellE>sendmail</SPAN> connection starts, which is an obvious problem because of the timeouts on email clients (and.. 2-3 minutes is just bad). I've been <SPAN class=SpellE>kinda</SPAN> asking around on <SPAN class=SpellE>comp.mail.sendmail</SPAN> about this issue and they are telling me it is a DNS problem. Well, I know that my mail server can reverse the IP addresses because if I am logged in and issue a host command with the IP after it the server is able to produce the proper reverse name. Another user thought it was because I have no Forward <SPAN class=SpellE>dns</SPAN> (a record) for what the <SPAN class=SpellE>IPs</SPAN> are reversed to, but the fact is I've NEVER had any <SPAN class=GramE>A</SPAN> records or anything for my modem pools. I also have another server running the same version of <SPAN class=SpellE>sendmail</SPAN>, and if I dial into this city and get a 206.xxx.xxx.xxx IP and telnet to port 25 on that server it comes up instantly. So this appears to be an issue only effecting one daemon on one server. The afflicted server also runs a POP daemon that isn't having any problems of this type.<o:p></o:p></SPAN></FONT></P> <P class=MsoNormal style="TEXT-INDENT: 0.5in"><FONT face=Arial size=2><SPAN style="FONT-SIZE: 10pt; FONT-FAMILY: Arial"><o:p> </o:p></SPAN></FONT></P> <P class=MsoNormal style="TEXT-INDENT: 0.5in"><FONT face=Arial size=2><SPAN style="FONT-SIZE: 10pt; FONT-FAMILY: Arial">Does anyone have a clue on this? I'm awfully confused at this point.<o:p></o:p></SPAN></FONT></P> <P class=MsoNormal style="TEXT-INDENT: 0.5in"><FONT face=Arial size=2><SPAN style="FONT-SIZE: 10pt; FONT-FAMILY: Arial"><o:p> </o:p></SPAN></FONT></P> <P class=MsoNormal style="TEXT-INDENT: 0.5in"><FONT face=Arial size=2><SPAN style="FONT-SIZE: 10pt; FONT-FAMILY: Arial">Thanks,<o:p></o:p></SPAN></FONT></P> <P class=MsoNormal style="TEXT-INDENT: 0.5in"><FONT face=Arial size=2><SPAN style="FONT-SIZE: 10pt; FONT-FAMILY: Arial">-Drew<o:p></o:p></SPAN></FONT></P> <P class=MsoNormal style="TEXT-INDENT: 0.5in"><FONT face=Arial size=2><SPAN style="FONT-SIZE: 10pt; FONT-FAMILY: Arial"><o:p> </o:p></SPAN></FONT></P></DIV></BLOCKQUOTE></BODY></HTML>
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?007701c1558e$585a1460$3324200a>