The actual cause of the timeouts was a domain (imefdm.usmc.mil) in the
To: field that has a bad nameserver that just hangs without returning
anything. This dns hang was causing sendmail to timeout while
relaying to my inner mailhost and thus sendmail would defer the
message. But that domain is not local to me, nor is it the domain of
the sender -- it should really have nothing to do with delivery of the
message AFAICT. Also, sendmail has already accepted all my valid
local recipients and figured out where to relay them to. Why is it
then scanning the header of the message and tying to resolve non-local
domains at that point?
This seemed to start when upgrading sendmail from 8.14.2 to 8.14.3.
Thanks in advance for any tips.
-Matt
But the question still remains... why is sendmail resolving domains in
addresses in the To: field? Is there a configuration setting I can
use to disable this behavior?
Thanks...
It is a "very long lasting tradition" of "do not fix what is not broken" :-)
Sendmail is capable to rewrite "header recipients" addresses
e.g. by default it replaces CNAMES (DNS "aliases" records) by their true name.
You can stop it by using FEATURE(`nocanonify')
http://www.sendmail.org/m4/features.html#nocanonify
--
[pl>en Andrew] Andrzej Adam Filip : an...@onet.eu : Andrze...@gmail.com
Sorry. My testing organization is either too small, or too large,
depending on how you look at it. :-)
-- Larry Wall in <1991Apr22....@jpl-devvax.jpl.nasa.gov>
Thanks, Andrzej, for your reply. I did try that in both sendmail.mc
and submit.mc (since I am testing from the command line), however I am
still getting the DNS query (and hence the delay).
Here is the simplest test case I can think of:
# hostname
mail.example.com
# cat <<EOF > msg
To: <fakerem...@imefdm.usmc.mil>
Subject: testing
Hi.
EOF
# sendmail localuser@localhost < msg
This message will take abount a minute to go through, due to the slow
DNS query for imefdm.usmc.mil, even though that domain has nothing to
do with delivery of the message. Running the command with -v shows
the delay at the DATA stage. strace reveals the name resolution
attempts at that point. This happens even with FEATURE(nocanonify) in
effect. I'm not even doing any masquerading or generics, so I can't
figure out what reason sendmail would have to look in the headers?
Thanks ....
-Matt
Sorry for "lack of full procession".
To get equivalent of FEATURE(`nocanonify') in submit.cf use the line
below in submit.mc and recompile it:
define(`confDIRECT_SUBMISSION_MODIFIERS',`C')dnl
URL(s):
http://anfi.homeunix.org/sendmail/dialup10.html
--
[pl>en Andrew] Andrzej Adam Filip : an...@onet.eu : Andrze...@gmail.com
Open-Sendmail: http://open-sendmail.sourceforge.net/
Vulcans worship peace above all.
-- McCoy, "Return to Tomorrow", stardate 4768.3