On Tue, 19 May 2009, Steve wrote:

lookups from Postfix. I can't see why nothing else does this, just
postfix and PTR.

Sendmail also does this (and likely Exim and others), unless IIRC, the range was included in access AND class R, this likely wont work with Postfix's methods since Sendmail's class R will whitelist for everything including milters, AFAIK, nothing will do that in Postfix, or not easily, we found that out last year when converting from sendmail to postfix with milter-regex.

I agree that DNS is not broken, it only answers what it has been asked for.

The best thing to do is setup bind on your mail server, let it be caching for everything but include a localnet range, you'll also find it helps and has benefits if you get a lot of mail from, or web lookup to same places etc, set all you local clients to use your DNS first with your ISP's as the secondary.

Its simple...add in (assuming you are using 192.168.x.x) to named.conf

zone "168.192.in-addr.arpa" {
        type master;
        file "localnet.rev";
        notify no;
};


and in /var/named/localnet.rev
$TTL    1D
@       IN      SOA     your.dns.name. hostmaster (
                        2009051701
                        3H
                        30M
                        4W
                        1H )
                NS      your.dns.name.

1.0             PTR     foobar.dns.name.
2.0             PTR     foo.dns.name.
3.0             PTR     bar.dns.name.

then  host 192.168.0.1 would return foobar.dns.name 192.168.0.2 would
then return foo.dns.name

you can also add in the forward zone (this is not the list for DNS though
so I wont go into it any further here)


Once done...all your problems and fears should then disappear


--
Res

-Beware of programmers who carry screwdrivers

Reply via email to