Re: DNS MX Question [OT]
On Sat, 14 Feb 2009, Marc Perkel wrote:
Dave Funk wrote:
On Sat, 14 Feb 2009, Marc Perkel wrote:
Marc Perkel wrote:
Hi,
I have a quick bind question. I want to set the MX records on a domain to
something normal but I want to set the MX for all subdomains to something
else.
example.com mail.example.com
xxx.example.com blackhole.example.com
Thanks in advance
[snip..]
It didn't work - but this might be related. I have this in there as wellso
that all A record subdirs resolve to the same IP.
mailIN CNAME mail.ctyme.com.
mailman IN CNAME mailman.ctyme.com.
mailman.mailman IN CNAME mailman.ctyme.com.
ssh IN A 65.49.42.101
ftp IN A 65.49.42.101
www IN A 65.49.42.100
* IN CNAME @
OK, I guess I didn't understand -exactly- what you're trying to do.
If you say all subdomains do you mean multiple levels or a single
level?
IE:
dig example.com mx
to return: preference = 10, mail exchanger = mail.example.com
and
dig anything.example.com mx
to return: preference = 10, mail exchanger = blackhole.example.com
but what do you expect
dig this.that.example.com mx
to return? What about 5 levels deep? How far down do you plan on
going?
Also do you plan on having -any- other records other than MX in that
dummyed domain? (Based upon your data above it looks like you do,
that complicates the situation).
Get rid of that wild-card CNAME record, replace it with an explicit
MX record pointing to your blackhole server.
--
Dave Funk University of Iowa
dbfunk (at) engineering.uiowa.eduCollege of Engineering
319/335-5751 FAX: 319/384-0549 1256 Seamans Center
Sys_admin/Postmaster/cell_adminIowa City, IA 52242-1527
#include std_disclaimer.h
Better is not better, 'standard' is better. B{
Re: DNS MX Question [OT]
On Sat, 2009-02-14 at 22:18 -0800, Marc Perkel wrote: See http://en.wikipedia.org/wiki/Wildcard_DNS_record and in particular the quote from RFC 1912. Is that going to tell me what I need to know to do what I asked to do? Possibly. It may explain exactly why it didn't work when you tried it. It'll take you less time to read the relatively short section than it will to reply to this email :-) -- Lindsay Haisley |Fighting against human | PGP public key FMP Computer Services | creativity is like | available at 512-259-1190 | trying to eradicate |http://pubkeys.fmp.com http://www.fmp.com| dandelions | | (Pamela Jones) |
Re: DNS MX Question [OT]
On Sat, 14 Feb 2009, Marc Perkel wrote:
Lindsay Haisley wrote:
On Sat, 2009-02-14 at 22:06 -0800, Marc Perkel wrote:
Dave Funk wrote:
Yes, it -is- that simple. ;)
Not recommended for normal use but if you understand the risks involved,
it does work that way.
Thanks Dave, but I already tried that and it didn't work.
See http://en.wikipedia.org/wiki/Wildcard_DNS_record and in particular
the quote from RFC 1912.
Is that going to tell me what I need to know to do what I asked to do?
OK, check this out. I set up a sandbox zone (marc.icaen.uiowa.edu) for
you to play with to see that it works as you requested.
Do:
dig marc.icaen.uiowa.edu. mx
dig something.marc.icaen.uiowa.edu. mx
dig this.that.marc.icaen.uiowa.edu. mx
dig a.b.c.d.e.f.marc.icaen.uiowa.edu. mx
and so on and so forth.
Once you decide that it works as desired (or you tell me what else you
want it to do) I'll send you the zone file.
--
Dave Funk University of Iowa
dbfunk (at) engineering.uiowa.eduCollege of Engineering
319/335-5751 FAX: 319/384-0549 1256 Seamans Center
Sys_admin/Postmaster/cell_adminIowa City, IA 52242-1527
#include std_disclaimer.h
Better is not better, 'standard' is better. B{
Re: DNS MX Question [OT]
On Sat, Feb 14, 2009 at 10:12:40PM -0800, Marc Perkel wrote: Dave Funk wrote: On Sat, 14 Feb 2009, Marc Perkel wrote: I should be more specific. I asked the question wrong. *.example.com blackhole.example.com What I need is that any subdomain point to blackhole. Then replace 'xxx' with '*'. EG: Briefly, in the zone file for example.com: @MX10 mail.example.com. *MX10 blackhole.example.com. Yes, it -is- that simple. ;) Not recommended for normal use but if you understand the risks involved, it does work that way. It didn't work - but this might be related. I have this in there as wellso that all A record subdirs resolve to the same IP. mailIN CNAME mail.ctyme.com. mailman IN CNAME mailman.ctyme.com. mailman.mailman IN CNAME mailman.ctyme.com. ssh IN A 65.49.42.101 ftp IN A 65.49.42.101 www IN A 65.49.42.100 * IN CNAME @ There you are. That last line is messing you up. Guessing what you might want to do: ;in zone file for churchofreality.com @ IN MX 10 mail.ctyme.com. mailIN CNAME mail.ctyme.com. mailman IN CNAME mailman.ctyme.com. mailman.mailman IN CNAME mailman.ctyme.com. ssh IN A 65.49.42.101 IN MX 10 blackhole.ctyme.com. ftp IN A 65.49.42.101 IN MX 10 blackhole.ctyme.com. www IN A 65.49.42.100 IN MX 10 mail.ctyme.com. * IN MX 10 blackhole.ctyme.com. None of mail mailman mailman.mailman or blackhole should be CNAMES in the ctyme.com zone file. Mail to churchofreality.com or mail.churchofreality.com deliver at mail.ctyme.com, but mail.churchofreality.com inherits address and mxes (and spf and ...) from mail.ctyme.com whereas churchofreality.com only receives this mx. Mail servers may rewrite mail.churchofreality.com into mail.ctyme.com as more canonical. Mail to ssh or ftp would try to deliver to 65.49.42.101, and www to .100 unless you assign them MX'es. The wildcard won't apply. -- lun...@fini.net Never eat singing food.
Re: DNS MX Question [OT]
Dave Funk wrote: On Sat, 14 Feb 2009, Marc Perkel wrote: Dave Funk wrote: On Sat, 14 Feb 2009, Marc Perkel wrote: Marc Perkel wrote: Hi, I have a quick bind question. I want to set the MX records on a domain to something normal but I want to set the MX for all subdomains to something else. example.com mail.example.com xxx.example.com blackhole.example.com Thanks in advance [snip..] It didn't work - but this might be related. I have this in there as wellso that all A record subdirs resolve to the same IP. mailIN CNAME mail.ctyme.com. mailman IN CNAME mailman.ctyme.com. mailman.mailman IN CNAME mailman.ctyme.com. ssh IN A 65.49.42.101 ftp IN A 65.49.42.101 www IN A 65.49.42.100 * IN CNAME @ OK, I guess I didn't understand -exactly- what you're trying to do. If you say all subdomains do you mean multiple levels or a single level? A single level will do for now. What is happening is that spammers are spoofing a subdomain of domains I host and currently the subdomain inherit the MX from the main domain. I want the main domain to have one set of MX records and all single level subdomains to have another.
Re: DNS MX Question [OT]
Dave Funk wrote: On Sat, 14 Feb 2009, Marc Perkel wrote: Lindsay Haisley wrote: On Sat, 2009-02-14 at 22:06 -0800, Marc Perkel wrote: Dave Funk wrote: Yes, it -is- that simple. ;) Not recommended for normal use but if you understand the risks involved, it does work that way. Thanks Dave, but I already tried that and it didn't work. See http://en.wikipedia.org/wiki/Wildcard_DNS_record and in particular the quote from RFC 1912. Is that going to tell me what I need to know to do what I asked to do? OK, check this out. I set up a sandbox zone (marc.icaen.uiowa.edu) for you to play with to see that it works as you requested. Do: dig marc.icaen.uiowa.edu. mx dig something.marc.icaen.uiowa.edu. mx dig this.that.marc.icaen.uiowa.edu. mx dig a.b.c.d.e.f.marc.icaen.uiowa.edu. mx and so on and so forth. Once you decide that it works as desired (or you tell me what else you want it to do) I'll send you the zone file. YES! That's it! How do you do that? Thanks in advance.
DNS MX Question [OT]
Hi, I have a quick bind question. I want to set the MX records on a domain to something normal but I want to set the MX for all subdomains to something else. example.com mail.example.com xxx.example.com blackhole.example.com Thanks in advance
Re: DNS MX Question [OT]
On Sat, 14 Feb 2009, Marc Perkel wrote: Hi, I have a quick bind question. I want to set the MX records on a domain to something normal but I want to set the MX for all subdomains to something else. example.com mail.example.com xxx.example.com blackhole.example.com So do just that: example.com. IN MX10 mail.example.com. xxx.example.com. IN MX10 blackhole.example.com. Simple Google search of 'subdomain mx record' explains the usage of '$ORIGIN' taking the first link off the top: http://zytrax.com/books/dns/ch8/mx.html
Re: DNS MX Question [OT]
On Sat, Feb 14, 2009 at 06:37:14PM -0800, Marc Perkel wrote: I have a quick bind question. I want to set the MX records on a domain to something normal but I want to set the MX for all subdomains to something else. example.com mail.example.com xxx.example.com blackhole.example.com See http://www.ietf.org/rfc/rfc1035.txt etc Briefly, in the zone file for example.com: @ MX 10 mail.example.com. xxx MX 10 blackhole.example.com. -- lun...@fini.net Please phrase your question in the form of a question.
Re: DNS MX Question [OT]
Marc Perkel wrote: Hi, I have a quick bind question. I want to set the MX records on a domain to something normal but I want to set the MX for all subdomains to something else. example.com mail.example.com xxx.example.com blackhole.example.com Thanks in advance I should be more specific. I asked the question wrong. *.example.com blackhole.example.com What I need is that any subdomain point to blackhole.
Re: DNS MX Question [OT]
On Sat, 14 Feb 2009, Marc Perkel wrote:
Marc Perkel wrote:
Hi,
I have a quick bind question. I want to set the MX records on a domain to
something normal but I want to set the MX for all subdomains to something
else.
example.com mail.example.com
xxx.example.com blackhole.example.com
Thanks in advance
I should be more specific. I asked the question wrong.
*.example.com blackhole.example.com
What I need is that any subdomain point to blackhole.
Then replace 'xxx' with '*'. EG:
Briefly, in the zone file for example.com:
@ MX 10 mail.example.com.
* MX 10 blackhole.example.com.
Yes, it -is- that simple. ;)
Not recommended for normal use but if you understand the risks involved,
it does work that way.
--
Dave Funk University of Iowa
dbfunk (at) engineering.uiowa.eduCollege of Engineering
319/335-5751 FAX: 319/384-0549 1256 Seamans Center
Sys_admin/Postmaster/cell_adminIowa City, IA 52242-1527
#include std_disclaimer.h
Better is not better, 'standard' is better. B{
Re: DNS MX Question [OT]
Dave Funk wrote: On Sat, 14 Feb 2009, Marc Perkel wrote: Marc Perkel wrote: Hi, I have a quick bind question. I want to set the MX records on a domain to something normal but I want to set the MX for all subdomains to something else. example.com mail.example.com xxx.example.com blackhole.example.com Thanks in advance I should be more specific. I asked the question wrong. *.example.com blackhole.example.com What I need is that any subdomain point to blackhole. Then replace 'xxx' with '*'. EG: Briefly, in the zone file for example.com: @MX10 mail.example.com. *MX10 blackhole.example.com. Yes, it -is- that simple. ;) Not recommended for normal use but if you understand the risks involved, it does work that way. Thanks Dave, but I already tried that and it didn't work. dig @localhost churchofreality.com mx ; DiG 9.5.1-P1-RedHat-9.5.1-1.P1.fc10 @localhost churchofreality.com mx ; (1 server found) ;; global options: printcmd ;; Got answer: ;; -HEADER- opcode: QUERY, status: SERVFAIL, id: 48505 ;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 0 ;; QUESTION SECTION: ;churchofreality.com. IN MX Thanks for the attempt though.
Re: DNS MX Question [OT]
Dave Funk wrote: On Sat, 14 Feb 2009, Marc Perkel wrote: Marc Perkel wrote: Hi, I have a quick bind question. I want to set the MX records on a domain to something normal but I want to set the MX for all subdomains to something else. example.com mail.example.com xxx.example.com blackhole.example.com Thanks in advance I should be more specific. I asked the question wrong. *.example.com blackhole.example.com What I need is that any subdomain point to blackhole. Then replace 'xxx' with '*'. EG: Briefly, in the zone file for example.com: @MX10 mail.example.com. *MX10 blackhole.example.com. Yes, it -is- that simple. ;) Not recommended for normal use but if you understand the risks involved, it does work that way. It didn't work - but this might be related. I have this in there as wellso that all A record subdirs resolve to the same IP. mailIN CNAME mail.ctyme.com. mailman IN CNAME mailman.ctyme.com. mailman.mailman IN CNAME mailman.ctyme.com. ssh IN A 65.49.42.101 ftp IN A 65.49.42.101 www IN A 65.49.42.100 * IN CNAME @
Re: DNS MX Question [OT]
On Sat, 2009-02-14 at 22:06 -0800, Marc Perkel wrote: Dave Funk wrote: Yes, it -is- that simple. ;) Not recommended for normal use but if you understand the risks involved, it does work that way. Thanks Dave, but I already tried that and it didn't work. See http://en.wikipedia.org/wiki/Wildcard_DNS_record and in particular the quote from RFC 1912. -- Lindsay Haisley | Everything works|Accredited FMP Computer Services | if you let it | by the 512-259-1190 |(The Roadie) | Austin Better http://www.fmp.com| | Business Bureau
Re: DNS MX Question [OT]
Lindsay Haisley wrote: On Sat, 2009-02-14 at 22:06 -0800, Marc Perkel wrote: Dave Funk wrote: Yes, it -is- that simple. ;) Not recommended for normal use but if you understand the risks involved, it does work that way. Thanks Dave, but I already tried that and it didn't work. See http://en.wikipedia.org/wiki/Wildcard_DNS_record and in particular the quote from RFC 1912. Is that going to tell me what I need to know to do what I asked to do?
