On Mon, Sep 16, 2019 at 01:44:38PM +0200, Helmut Schneider wrote:
> Where can I change the DSN to 4xx and ensure that mails are
> delivered when the tunnel is up again?
Viktor Dukhovni wrote:
Normally, if a tunnel goes down, DNS lookups that require access
to a server on the far side of the tunnel tempfail, and Postfix
would automatically return 4XX. If your system returns hard errors
when the network is partly down, then that's a configuration defect
with the system.
On 17.09.19 09:07, Helmut Schneider wrote:
Well, I add / remove internal DNS entries on OpenVPN start / stop.
This is your problem then. If you remove record, it clearly doesn't exist
anymore. You should want the record to exist, but be unreachable.
But I also have other (public) DNS servers in /etc/resolv.conf. And when
the internal ones are not available there is no tempfail because the
public servers reply with NXDOMAIN.
And this is another part of the problem. Using nameservers that clearly
return NXDOMAIN for internal hosts is not as good idea.
I might be wrong but I see no "defect" here.
smtp_delivery_status_filter does what I need.
yes, smtp_delivery_status_filter is a workaround to the defective design you
use.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
They that can give up essential liberty to obtain a little temporary
safety deserve neither liberty nor safety. -- Benjamin Franklin, 1759
