On Mon, 14 Oct 2002, millerbn wrote: > This indicates to me that the explanation wasn't relevant, since the > external or internal dns aren't used - only the host enabled in the > email proxy maps/rbl section.
The explanation was relevant because we were discussing specificly how the GNATBox SMTP Proxy handles this situation. The GNATBox SMTP Proxy (current versions) queries the configured DNS resolvers, it does not contact the authoritative servers of the RBL zones directly. > See the above, sounds like a difference between flash and pro. Don't > have flash, but pro continues to check for 1.10.10.10.rbl.some.thing on > rbl.some.thing every time 10.10.10.1 sends an email. If it were cached, Right. The GNATBox makes a request every time a connection is attempted to the recursive server. (more then one request if you have multiple RBLs configured.) It is the responsibility of the recursive server to cache or not. > Not to sound argumentative/snide, but I know that a 'full caching > recursive resolver just to do RBL lookups' was not added to sendmail. > Before it was added to M4 it took less than 10 lines of code. True. The sendmail RBL hack used the local systems resolver libraries to to the RBL lookups. In most cases, that means that it used the DNS servers listed in /etc/resolv.conf. We were discussing the GNATBox SMTP proxy, though, not sendmail. > What different authorative name server? It's running as is on one now, > with no changes other than proper domains and full soa. Examples of other authoritative name servers: tinydns, rbldns (a variation of tinydns), whatever Microsoft calls their DNS server, maradns, dents, mydns to name a few. None of these (to my knowledge..I havent tried them all) use BIND style zone files. For those of you who wish to run DIY RBLs, you may want to look into rbldns. (disclaimer! This is a personal suggestion. :) http://cr.yp.to/djbdns/rbldns.html It was written specificly to be an authoritative RBL DNS server. ....david --- David Raistrick Systems Administrator - Global Technology Associates, Inc [EMAIL PROTECTED] --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] To subscribe to the digest version first unsubscribe, then e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] Archive of the last 1000 messages: http://www.mail-archive.com/[email protected]
