[CentOS] Apparent BIND problem doing RBL lookups for Postfix

Thu Apr 15 21:26:54 UTC 2010
Nataraj <incoming-centos at rjl.com>

Larry Vaden wrote:
> On Thu, Apr 15, 2010 at 3:53 PM, Scott Silva <ssilva at sgvwater.com> wrote:
>   
>> on 4-15-2010 1:36 PM Larry Vaden spake the following:
>>     
>>> On Thu, Apr 15, 2010 at 3:18 PM, Ned Slider <ned at unixmail.co.uk> wrote:
>>>       
>>>> Larry Vaden wrote:
>>>>         
>>>>> On Thu, Apr 15, 2010 at 3:03 PM, Ned Slider <ned at unixmail.co.uk> wrote:
>>>>>           
>>>>>> Changing dns to public services such as google or OpenDNS is not going
>>>>>> to help as DNSBLs like Spamhaus will have blocked access by these
>>>>>> services. Otherwise it would be simple to avoid paying for (business)
>>>>>> access to Spamhaus.
>>>>>>             
>>>>> Au contraire, there are benefits/economies of scale to spamhaus.org
>>>>> from having an aggregator like opendns.
>>>>>
>>>>>           
>>>> Indeed, but not if you are charging for high volume and/or commercial use.
>>>>         
>>> opendns resolves queries to zen.spamhaus.org and AFAIK all the major
>>> DNSBLs.  Period.  End.
>>>
>>> kind regards/ldv
>>>       
>
>   
>> Resolves them, or forwards them? Just curious...
>>     
>
> Avoiding answering your question because of lack of expertise in the
> difference of resolving vs. forwarding, but (IP taken from a recent
> (Apr 15 16:01:25 CT) postfix NOQUEUE):
>
> [redacted at catch22 etc]# host 251.54.51.173.zen.spamhaus.org 208.67.222.222
> Using domain server:
> Name: 208.67.222.222
> Address: 208.67.222.222#53
> Aliases:
>
> 251.54.51.173.zen.spamhaus.org has address 127.0.0.10
> 251.54.51.173.zen.spamhaus.org has address 127.0.0.4
>   
Well adding the -a option to host shows that the answer is not authoritative, so the query is being forwarded.


host -a 251.54.51.173.zen.spamhaus.org 208.67.222.222

Trying "251.54.51.173.zen.spamhaus.org"

Using domain server:

Name: 208.67.222.222

Address: 208.67.222.222#53

Aliases: 

;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 23703

;; flags: qr rd ra; QUERY: 1, ANSWER: 2, AUTHORITY: 0, ADDITIONAL: 0
;; QUESTION SECTION:
;251.54.51.173.zen.spamhaus.org.    IN    ANY
;; ANSWER SECTION:
251.54.51.173.zen.spamhaus.org.    893 IN    A    127.0.0.10
251.54.51.173.zen.spamhaus.org.    893 IN    A    127.0.0.4





> [redacted at catch22 etc]#
> _______________________________________________
> CentOS mailing list
> CentOS at centos.org
> http://lists.centos.org/mailman/listinfo/centos
>