I'm having CNAME issues when trying to deliver outbound mail. Almost
all the mai is getting held up going outbound by an error saying
CNAME_lookup_failed_temporarily._(#4.4.3).
I've looked all around and find that all the solutions related to an old
patch which is in this version of code.
I a
thing that much different in DNS that it could
trigger intrusion detection?
I'm just asking because the network guy is going to be reluctant. You
know how paranoid they can be. :)
Eero Volotinen wrote:
Rich Kasting wrote:
I'm having CNAME issues when trying to deliver outbound mail.
find good instructions for
installing it?
DNS Fixup on a PIX? Does that make the intrusion detection module
leave qmail servers alone? :)
Shane Chrisp wrote:
On Mon, 2005-03-28 at 08:28 -0500, Rich Kasting wrote:
Can you run dnscache on the qmail box? Also make sure that DNS Fixup is
enabled
Do you know where I can find good directions to install dnscache? Is
there an rpm for Fedora Core 3.
Shane Chrisp wrote:
On Mon, 2005-03-28 at 08:49 -0500, Rich Kasting wrote:
I didn't think dnscache would help because non of the email is getting
out because all are fa
I put it on place. The dnscaching works, but qmail still has cname
errors.
Any ideas? I'm getting desperate. It seems as though qmail is just
busted.
Shane Chrisp wrote:
On Mon, 2005-03-28 at 09:28 -0500, Rich Kasting wrote:
Do you know where I can find good directio
e since I first built it.
Total changes are:
changed hostname on system and in qmail
recompiled vpopmail with one additional option
recompiled qmail
Shane Chrisp wrote:
On Mon, 2005-03-28 at 10:08 -0500, Rich Kasting wrote:
I put it on place. The dnscaching works, but qmail still has cname
e
accomodate that?
Should we have the server set up to be just netprivateer.com and put
that in the me file?
Eero Volotinen wrote:
Rich Kasting wrote:
I double-checked. The only line is:
nameserver 127.0.0.1
dnscache has already cached a lot of stuff, it's like qmail just
refuses to work wi
I noticed that my dnscache is pointing to an external dns server, not
the internal one. This is also bad because the server can't see itself
with it's internal address. How do I configure which dns servers it
uses as sources?
Rich Kasting wrote:
Really? If I use an alias (CNAM
OK. Sorry for clogging the thread. It sounds like everyone is in
agreement that it's related to the PIX because it's interfering with DNS?
If so, I'll wait for our network guy to return, we'll pursue that, and
I'll put a response here with the solution.
Bill Shupp
Solution:
Here is the final word: my qmail server does an all records request
whenever it tries to send for mail... or at least that's what the PIX
thinks it is doing. The PIX intrusion detection engine drops the DNS
session and kills delivery.
On the PIX:
ip audit signature 6053 disable
wr m
I thought of a great addition to the toaster. Add an optional section
at the bottom for changing everything over to use registered SSL key.
What do you think?
Sorry, I was out a few days. Just thought it would be a nice way to
fill it out. It could probably be a sidenote.
Bill Shupp wrote:
Rich Kasting wrote:
I thought of a great addition to the toaster. Add an optional
section at the bottom for changing everything over to use registered
SSL key
My toaster is in a Cisco shop and we have to double-encrypt the zip
files we send to clients, due to obvious security concerns.
I had to turn off outgoing scanning to accommodate this, for now.
There is a setting in clamav to turn zip file scanning off, but I'd
still like to scan zips.
Is there
13 matches
Mail list logo
