[xmail] Re: More questions on SMTP-RDNSCheck
Actually support is very good. I can call and have the server rebooted or have them hook up a monitor and do a few simple things (in the case a server wont boot) with no charge, check network status and the like without a problem They are www.he.net It's just the small things like DNS, they don't do forward DNS but have to do reverse dns because many clients don't have a full ip block. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of John Kielkopf Sent: Thursday, December 12, 2002 8:01 PM To: [EMAIL PROTECTED] Subject: [xmail] Re: More questions on SMTP-RDNSCheck I'm not exactly sure how Xmail checks the validity... I don't think you can check it against what's sent in HELO and still follow the rfc, so I assume you would make sure what you pull back from a reverse lookup also resolves as a forward lookup to the same address, but again, I don't know how Davide does it, or if that's the correct thing to do... I just know you should have a valid PTR for your SMTP servers IP address, and it should probably match a forward lookup that resolves to that address. If support at your colo provider is that bad, I'd hate to see what happens if you need to attend your server(s) in a hurry. Something as simple as a PTR record, or delegating a reverse lookup zone shouldn't bad that hard of thing to ask for... in fact the delegation should have happened when they gave you your ip block... That said, I'm kinda torn on the whole RDNS issue. I makes sense, but so many SMTP servers out there don't seem to have their PTR records set up -- most of them small school and office mail servers -- and I'll admit I didn't have mine set correctly from the start until I ran into some servers that refused mail because of it... but at least they had a nice error response, telling me almost exactly what the problem was, unlike xmail. - Original Message - From: "Andrew Joakimsen" <[EMAIL PROTECTED]> To: <[EMAIL PROTECTED]> Sent: Thursday, December 12, 2002 4:42 PM Subject: [xmail] Re: More questions on SMTP-RDNSCheck > > So it does not matter what domain the reverse points to? As if I ran > multiple domains from one IP address? > > I do run my own DNS server but I cant get intouch with the person that > deals with the DNS where my servers are located. > > -Original Message- > From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] > On Behalf Of John Kielkopf > Sent: Thursday, December 12, 2002 5:03 PM > To: [EMAIL PROTECTED] > Subject: [xmail] Re: More questions on SMTP-RDNSCheck > > > If you run DNS on your own box you can have a classless reverse lookup > zone > delegated to your server by your ISP or bandwidth provider. (see: > http://www.dns.net/dnsrd/rfc/rfc2317.html for more info.) If your ISP is > not > willing to do this (some just don't know how, or don't know it's > possible), > then you can ask them to create the pointer record on their DNS server. > > I've run into many servers that will reject mail if your SMTP server's > IP > address doesn't have a valid pointer record. Just as your domain should > have at least one valid MX record, you also need to make sure the IP > address > your SMTP server uses has a valid pointer record. > > > - Original Message - > From: "Andrew Joakimsen" <[EMAIL PROTECTED]> > To: <[EMAIL PROTECTED]> > Sent: Thursday, December 12, 2002 3:14 PM > Subject: [xmail] Re: More questions on SMTP-RDNSCheck > > > > > > But requiring that an IP have a reverse dns, would this be based on > the > > MX record for the sending domain? Then how can an IP have multiple > > reverse DNS? Also I've been wating almost two months for the "dns guy" > > where I colo my servers to get back to you. If anyone really checked > for > > reverse dns I'd be in trouble because I cant even get someone to setup > > the reverse dns, my ip block is only 24 addresses that have been > > reassigned to me so I CANT setup the reverse dns anyways. > > > > -Original Message- > > From: [EMAIL PROTECTED] > [mailto:[EMAIL PROTECTED]] > > On Behalf Of John Kielkopf > > Sent: Thursday, December 12, 2002 1:20 PM > > To: [EMAIL PROTECTED] > > Subject: [xmail] More questions on SMTP-RDNSCheck > > > > > > I keep giving SMTP-RDNSCheck a shot on every new version of Xmail, on > > one of > > our low use servers, but it still seems a bit off. > > > > How does it react when the DNS server in charge of that PTR record is > > down? > > It seems as if it refuses the mail with a permanent error instead of > > trying > > to resolve a few mor
[xmail] Re: More questions on SMTP-RDNSCheck
So it does not matter what domain the reverse points to? As if I ran multiple domains from one IP address? I do run my own DNS server but I cant get intouch with the person that deals with the DNS where my servers are located. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of John Kielkopf Sent: Thursday, December 12, 2002 5:03 PM To: [EMAIL PROTECTED] Subject: [xmail] Re: More questions on SMTP-RDNSCheck If you run DNS on your own box you can have a classless reverse lookup zone delegated to your server by your ISP or bandwidth provider. (see: http://www.dns.net/dnsrd/rfc/rfc2317.html for more info.) If your ISP is not willing to do this (some just don't know how, or don't know it's possible), then you can ask them to create the pointer record on their DNS server. I've run into many servers that will reject mail if your SMTP server's IP address doesn't have a valid pointer record. Just as your domain should have at least one valid MX record, you also need to make sure the IP address your SMTP server uses has a valid pointer record. - Original Message - From: "Andrew Joakimsen" <[EMAIL PROTECTED]> To: <[EMAIL PROTECTED]> Sent: Thursday, December 12, 2002 3:14 PM Subject: [xmail] Re: More questions on SMTP-RDNSCheck > > But requiring that an IP have a reverse dns, would this be based on the > MX record for the sending domain? Then how can an IP have multiple > reverse DNS? Also I've been wating almost two months for the "dns guy" > where I colo my servers to get back to you. If anyone really checked for > reverse dns I'd be in trouble because I cant even get someone to setup > the reverse dns, my ip block is only 24 addresses that have been > reassigned to me so I CANT setup the reverse dns anyways. > > -Original Message- > From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] > On Behalf Of John Kielkopf > Sent: Thursday, December 12, 2002 1:20 PM > To: [EMAIL PROTECTED] > Subject: [xmail] More questions on SMTP-RDNSCheck > > > I keep giving SMTP-RDNSCheck a shot on every new version of Xmail, on > one of > our low use servers, but it still seems a bit off. > > How does it react when the DNS server in charge of that PTR record is > down? > It seems as if it refuses the mail with a permanent error instead of > trying > to resolve a few more times and then returning a temporary error. > > And I'll ask yet again; isn't the error response "Server access > forbidden by > your IP" a bit cryptic? One of the reasons for implementing such a > check is > to try to get other mail servers to fix such problems, but you need to > give > the user a little more to go on, so they can relay an educated complaint > to > their system admins... If the error message can't be changed, would it > be, > or is it already, possible to have macros (like @@FROM in MAILPROC.TAB) > in > CustomSMTPMessage so I can pass the error response and IP address of the > offending SMTP server in a querystring to my error description page, > allowing me to help the user a bit more in telling them how to get their > problem fixed w/o taking a call? Like "Please open > http://www.myserver.com/errors.pl?smtpip=@@SMTPIP&error=@@ERROR to get > more > information about this error" > > Well, for now SMTP-RDNSCheck stays off. Too much legitimate mail is > refused, and way too many support calls asking what "Server access > forbidden > by your IP" means... most think they are on a ban list. > > Thanks, > -John > > > - > To unsubscribe from this list: send the line "unsubscribe xmail" in > the body of a message to [EMAIL PROTECTED] > For general help: send the line "help" in the body of a message to > [EMAIL PROTECTED] > > > - > To unsubscribe from this list: send the line "unsubscribe xmail" in > the body of a message to [EMAIL PROTECTED] > For general help: send the line "help" in the body of a message to > [EMAIL PROTECTED] > > - To unsubscribe from this list: send the line "unsubscribe xmail" in the body of a message to [EMAIL PROTECTED] For general help: send the line "help" in the body of a message to [EMAIL PROTECTED] - To unsubscribe from this list: send the line "unsubscribe xmail" in the body of a message to [EMAIL PROTECTED] For general help: send the line "help" in the body of a message to [EMAIL PROTECTED]
[xmail] Re: More questions on SMTP-RDNSCheck
But requiring that an IP have a reverse dns, would this be based on the MX record for the sending domain? Then how can an IP have multiple reverse DNS? Also I've been wating almost two months for the "dns guy" where I colo my servers to get back to you. If anyone really checked for reverse dns I'd be in trouble because I cant even get someone to setup the reverse dns, my ip block is only 24 addresses that have been reassigned to me so I CANT setup the reverse dns anyways. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of John Kielkopf Sent: Thursday, December 12, 2002 1:20 PM To: [EMAIL PROTECTED] Subject: [xmail] More questions on SMTP-RDNSCheck I keep giving SMTP-RDNSCheck a shot on every new version of Xmail, on one of our low use servers, but it still seems a bit off. How does it react when the DNS server in charge of that PTR record is down? It seems as if it refuses the mail with a permanent error instead of trying to resolve a few more times and then returning a temporary error. And I'll ask yet again; isn't the error response "Server access forbidden by your IP" a bit cryptic? One of the reasons for implementing such a check is to try to get other mail servers to fix such problems, but you need to give the user a little more to go on, so they can relay an educated complaint to their system admins... If the error message can't be changed, would it be, or is it already, possible to have macros (like @@FROM in MAILPROC.TAB) in CustomSMTPMessage so I can pass the error response and IP address of the offending SMTP server in a querystring to my error description page, allowing me to help the user a bit more in telling them how to get their problem fixed w/o taking a call? Like "Please open http://www.myserver.com/errors.pl?smtpip=@@SMTPIP&error=@@ERROR to get more information about this error" Well, for now SMTP-RDNSCheck stays off. Too much legitimate mail is refused, and way too many support calls asking what "Server access forbidden by your IP" means... most think they are on a ban list. Thanks, -John - To unsubscribe from this list: send the line "unsubscribe xmail" in the body of a message to [EMAIL PROTECTED] For general help: send the line "help" in the body of a message to [EMAIL PROTECTED] - To unsubscribe from this list: send the line "unsubscribe xmail" in the body of a message to [EMAIL PROTECTED] For general help: send the line "help" in the body of a message to [EMAIL PROTECTED]
