Wietse, On Sat, Jun 16, 2012 at 08:40:08PM -0400, Wietse Venema wrote: > Thomas Preissler: > > Jun 14 19:20:02 dumbledor postfix/smtpd[1472]: NOQUEUE: reject: RCPT > > from unknown[2002:XXXX:XXX::XXXX:XXX]: 554 5.7.1 Service unavailable; > > Client host [2002:XXXX:XXX::4d49:4f1] blocked using bl.spamcop.net; > > from=<XXXXXXXXXXXXXXXXXXXXXXXXXXXX> to=<tho...@preissler.co.uk> > > proto=ESMTP helo=<XXXXXXXXXXXXXXXXXXXXXXXXX> > > > > Long story short: > > * Some IPv6 addreses are DNSBL blocked, some or not. When they are > > blocked, they stay blocked and same for when they are not blocked > > (like the test IPv6 emailaddresses above). > > * They always get blocked by the first DNSBL entry - obviously. > > * Querying the DNSBL via their webinterface doesnt work for IPv6 > > addresses, doing the same via the equivalent nslookup or dig command > > gives me NXDOMAIN. > > * No IPv6 firewall enabled, but I run a local only bind. > > What is the IP address? > > What NSLOOKUP query did you use?
This is the most recent one: $ host -i 2002:4d49:4f1::4d49:4f1 Host 1.f.4.0.9.4.d.4.0.0.0.0.0.0.0.0.0.0.0.0.1.f.4.0.9.4.d.4.2.0.0.2.ip6.int not found: 3(NXDOMAIN) $ nslookup 1.f.4.0.9.4.d.4.0.0.0.0.0.0.0.0.0.0.0.0.1.f.4.0.9.4.d.4.2.0.0.2.bl.spamcop.net Server: 127.0.0.1 Address: 127.0.0.1#53 ** server can't find 1.f.4.0.9.4.d.4.0.0.0.0.0.0.0.0.0.0.0.0.1.f.4.0.9.4.d.4.2.0.0.2.bl.spamcop.net: NXDOMAIN I made the test/verification with $ nslookup 2.0.0.127.bl.spamcop.net Server: 127.0.0.1 Address: 127.0.0.1#53 Non-authoritative answer: Name: 2.0.0.127.bl.spamcop.net Address: 127.0.0.2 In both cases I was querying my local bind installation. I could potentially enable some debug logging in bind, query logging is on anyway already. Or just run a good and ol' tcpdump... *g The problem is that I dont really have anything to test it for sure. Other IPv6s what are blocked as well are: 2a01:488:42::57e6:2fca 2a02:1310:200:ad40:225:64ff:fe3a:99bc 2a02:1310:200:ad40:be30:5bff:fed9:13e5 2a02:1310:200:bd80:225:64ff:fe3a:99bc 2a02:1310:200:bd80:be30:5bff:fed9:13e4 As you can see by the comment in my config, I gradually started removing DNSBLs... but it seems always the first DNSBL is blocking it. I spotted this on 2a02:1310:200:ad40:be30:5bff:fed9:13e5, it was first blocked by ix.dnsbl.manitu.net, then by bl.spamcop.net. I have now removed all of them... (Just out of interest, I also had 42 emails delivered successfully via IPv6, 7 unique IPv6 addresses - since 6th of May.) Oh, and OpenDNS' newsletter is now delivered via IPv4... Cheers Thomas -- www.preissler.co.uk | Twitter: @module0x90 | PGP-Key: 75889415 GPG Fingerprint: CCBD 153A D257 CA7E A217 FDF7 5928 03D1 7588 9415
