On Tue, 19 May 2009, Steve wrote:
lookups from Postfix. I can't see why nothing else does this, just postfix and PTR.
Sendmail also does this (and likely Exim and others), unless IIRC, the range was included in access AND class R, this likely wont work with Postfix's methods since Sendmail's class R will whitelist for everything including milters, AFAIK, nothing will do that in Postfix, or not easily, we found that out last year when converting from sendmail to postfix with milter-regex.
I agree that DNS is not broken, it only answers what it has been asked for.
The best thing to do is setup bind on your mail server, let it be caching for everything but include a localnet range, you'll also find it helps and has benefits if you get a lot of mail from, or web lookup to same places etc, set all you local clients to use your DNS first with your ISP's as the secondary.
Its simple...add in (assuming you are using 192.168.x.x) to named.conf zone "168.192.in-addr.arpa" { type master; file "localnet.rev"; notify no; }; and in /var/named/localnet.rev $TTL 1D @ IN SOA your.dns.name. hostmaster ( 2009051701 3H 30M 4W 1H ) NS your.dns.name. 1.0 PTR foobar.dns.name. 2.0 PTR foo.dns.name. 3.0 PTR bar.dns.name. then host 192.168.0.1 would return foobar.dns.name 192.168.0.2 would then return foo.dns.name you can also add in the forward zone (this is not the list for DNS though so I wont go into it any further here) Once done...all your problems and fears should then disappear -- Res -Beware of programmers who carry screwdrivers