On 2025-01-23 at 06:59:41 UTC-0500 (Thu, 23 Jan 2025 11:59:41 +0000)
MRob via Postfix-users <mro...@insiberia.net>
is rumored to have said:
Hellos!
I have see spamhaus response sometimes 127.255.255.254 that mean
"generic" DNS lookup source.
Specifically, it means that the DNS query came from a large publicly
accessible nameserver that sends Spamhaus too many queries.
Your solution is to run a local, caching, fully-recursive name resolver.
The simplest way to do that is with the Unbound resolver. This is a best
practice for all mail servers because MTAs do a lot of DNS and should
not be using a resolver that filters responses for policy reasons.
I have three IPs on a virt server, one has PTR mail.exmple.com, other
two are generic for hosting company
I guess spamhaus doesnt like when lookup comes from those 2 addrs
instead of the main IP with custom PTR
Is that correct? If yes, can we make Postscreen dnsbl_sites lookup
bind IP for lookups?
No, it is not about the names associated with your machines, it is about
how you are handling DNS.
--
Bill Cole
b...@scconsult.com or billc...@apache.org
(AKA @grumpybozo@toad.social and many *@billmail.scconsult.com
addresses)
Not Currently Available For Hire
_______________________________________________
Postfix-users mailing list -- postfix-users@postfix.org
To unsubscribe send an email to postfix-users-le...@postfix.org
