Wietse Venema wrote: >> connect from cpe-67-252-139-22.buffalo.res.rr.com [67.252.139.22] >> May 19 01:09:15 velo postfix/smtpdP26473]: warning: >> 22.139.252.67.zen.spamhaus.org: RBL lookup error: Host or domain name >> not found. Name service error for name=22.139.252.67.zen.spamhaus.org >> type=A: Host not found, try again > > You have a mis-configured name service that breaks Postfix's > DNS lookups.
But I have plenty of hits where the RBL lookups work fine and block messages (or let them pass through). If my DNS was problematic, wouldn't it fail for all RBL lookups ? Every "RBL lookup error" IP I have manually tested with nslookup returned multiple ip addresses as response to the zen.spamhaus.org request. But I can't say that they ALL did it because I didn't test all such messages. Similarly, every IP that was succesfully rejected had only one response when using nslookup. (but can't say ALL because I only tested a sample). An example where it works: May 21 04:58:31 velo postfix/smtpd[94073]: NOQUEUE: reject: RCPT from p5099e3b4.dip0.t-ipconnect.de[80.153.227.180]: 521 5.7.1 www.spamhaus.org considers your IP address 80.153.227.180 as inappropriate; from=<aahonuryk3...@t-ipconnect.de> to=<jfme...@vixenation.ca> proto=ESMTP helo=<t-ipconnect.de> Postfix finds the message format in my rbl_reply_maps = hash:/etc/postfix/rbl_reply_maps And I have: reject_rbl_client zen.spamhaus.org, in the smtpd_recipient_restrictions A non privileged user is able to read /etc/resolv.conf What else should I look for/test ?
