On May 18, 2017 5:11 PM, "Reindl Harald" <h.rei...@thelounge.net> wrote:
Am 18.05.2017 um 23:05 schrieb Robert Kudyba: > > On May 18, 2017, at 4:41 PM, David Jones <djo...@ena.com <mailto: >> djo...@ena.com>> wrote: >> >> From: Robert Kudyba <rkud...@fordham.edu <mailto:rkud...@fordham.edu>> >>> >> >> Am 18.05.2017 um 22:30 schrieb Reindl Harald: >>>> >>>>> "with working dnsmasq" says all - DNSMASQ DON'T DO RECURSION - IT CAN#T >>>>> you are forwarding to some other nameserver and you are not the only >>>>> one >>>>> >>>> >> But the nameserver I’m forwarding to is in our university. >>> >> >> Your server needs to do it's on full recursive DNS lookups. >> > > So dnsmasq is no longer an option? > it was never - no dns software which needs another nameserver for it's job is suiteable on a inbound spamfilter I will fix this wiki page now… >> > > I see there’s rbldnsd. On Fedora and one of our 2 servers, we run NIS & > ypbind. One runs NetworkManager and the other just the network service. I > guess I’m looking for the best recommendation and easy configuration > without conflicts. The link to https://urldefense.proofpoint. > com/v2/url?u=http-3A__njabl.org_rsync.html&d=DwID-g&c=aqMfXO > EvEJQh2iQMCb7Wy8l0sPnURkcqADc2guUW8IM&r=X0jL9y0sL4r4iU_qVtR3 > lLNo4tOL1ry_m7-psV3GejY&m=_GpsD3DHYXO7rQ_TtNdtAq_0iO39u8Q > BVn0morPE0hs&s=-BaByTtCkQ37-fWpZVVp9ZMa7nLIUpa8OWscKkMi3T8&e= is broken > at the moment > rbldnsd is a completly different thing and supposed to host your *own* dnsbl zones what you you need is a *basic* namesever just donig recursion and tell your mailserver just use it * get rid of other crap * dnf install unbound * systemctl enable unbound * systemctl start unound * just use your unbound on 127.0.0.1 It looks like I'll have to - Add the following line into /etc/NetworkManager/NetworkManager.conf dns=unbound or ask the idiot maintaining "I'm forwarding to is in our university" why he is forwarding queries outside your university to google instead doing recursion Probably because the university uses gmail. Our department does not.
