Google Groups no longer supports new Usenet posts or subscriptions. Historical content remains viewable.
Dismiss

RBL lists and AAAA dns queries

13 views
Skip to first unread message

Syn

unread,
Dec 12, 2002, 12:14:37 PM12/12/02
to
Hello,

I am using 4 different RBL blacklists features in my sendmail config and
I have run a "tcpdump port 53" on the mail server then try to telnet to
my mail server port 25, here is a sample output of tcpdump:

18:10:33.828173 mail.48181 > obone.domain: 59428+ AAAA?
96.77.110.211.bl.spamcop.net. (46)

and I can see repeated AAAA queries, it looks like these take a long
time because there is 50 seconds before I get the usual SMTP greeting.
Can I somehow disable those AAAA DNS queries which are to my sense not
reuquired ?

Regards


Claus Aßmann

unread,
Dec 12, 2002, 12:46:26 PM12/12/02
to
Syn wrote:

See the docs.

cf/README:

Some DNS based rejection lists cause failures if asked
for AAAA records. If your sendmail version is compiled
with IPv6 support (NETINET6) and you experience this
problem, add

define(`DNSBL_MAP', `dns -R A')

before the first use of this feature. Alternatively you
can use enhdnsbl instead (see below).

Marc Bigler

unread,
Dec 13, 2002, 6:13:06 AM12/13/02
to
Claus Aßmann wrote:

> See the docs.
>
> cf/README:
>
> Some DNS based rejection lists cause failures if asked
> for AAAA records. If your sendmail version is compiled
> with IPv6 support (NETINET6) and you experience this
> problem, add
>
> define(`DNSBL_MAP', `dns -R A')
>
> before the first use of this feature. Alternatively you
> can use enhdnsbl instead (see below).

Thanks for pointing me this out... Now the problem, I have added this define
statement to my MC file and regenerated the cf file but there are no changes
done, it's just like this define get's ignored, maybe I am using a too old
version of sendmail (8.12.1) could that be the problem ?

Also another question: what statement would I use in my site.config.m4 to
disable NETINET6 ?

Regards

Claus Aßmann

unread,
Dec 13, 2002, 7:24:09 PM12/13/02
to
Marc Bigler wrote:
> Claus Aßmann wrote:

> > See the docs.

> > cf/README:

> > Some DNS based rejection lists cause failures if asked
> > for AAAA records. If your sendmail version is compiled
> > with IPv6 support (NETINET6) and you experience this
> > problem, add

> > define(`DNSBL_MAP', `dns -R A')

> > before the first use of this feature. Alternatively you
> > can use enhdnsbl instead (see below).

> Thanks for pointing me this out... Now the problem, I have added this define
> statement to my MC file and regenerated the cf file but there are no changes
> done, it's just like this define get's ignored, maybe I am using a too old
> version of sendmail (8.12.1) could that be the problem ?

No.

grep '^Kdnsbl' /etc/mail/se*cf

> Also another question: what statement would I use in my site.config.m4 to
> disable NETINET6 ?


APPENDDEF(`confENVDEF', `-UNETINET6')

should work.


See devtools/README.

Marc Bigler

unread,
Dec 14, 2002, 6:15:15 AM12/14/02
to
Claus Aßmann wrote:

> grep '^Kdnsbl' /etc/mail/se*cf

That's the output of the grep:

Kdnsbl host -T<TMP>


> APPENDDEF(`confENVDEF', `-UNETINET6')
>
> should work.
>
> See devtools/README.

Thanks !

Regards


Claus Aßmann

unread,
Dec 14, 2002, 12:36:51 PM12/14/02
to
Marc Bigler wrote:
> Claus Aßmann wrote:

> > grep '^Kdnsbl' /etc/mail/se*cf

> That's the output of the grep:

> Kdnsbl host -T<TMP>

That doesn't match your mc file...

It's still host instead of dns -R A

Marc Bigler

unread,
Dec 14, 2002, 2:26:00 PM12/14/02
to
Claus Aßmann wrote:

> That doesn't match your mc file...
>
> It's still host instead of dns -R A

Ok I'll manually modify the cf file as it looks like m4 didn't work as
expected...

Regards

Claus Aßmann

unread,
Dec 14, 2002, 3:58:07 PM12/14/02
to

What is in your mc file?

Did you follow the instructions?

define(`DNSBL_MAP', `dns -R A')

before the first use of this feature. Alternatively you

^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^

Works fine for me (8.12).

Marc Bigler

unread,
Dec 15, 2002, 10:57:39 AM12/15/02
to
Claus Aßmann wrote:

> Did you follow the instructions?
>
> define(`DNSBL_MAP', `dns -R A')
>
> before the first use of this feature. Alternatively you
> ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
>
> Works fine for me (8.12).

Ok I had the define after the FEATURE I have now changed for this define
before the FEATURE but it's still the same result. Here is the part
concerned of the mc file:

define(`DNSBL_MAP', `dns -R A')

FEATURE(`access_db')dnl
FEATURE(`blacklist_recipients')dnl
FEATURE(`dnsbl', `relays.ordb.org', `"Email blocked using ORDB.org - see
http://
ORDB.org/lookup/?host="$&{client_addr}')dnl
FEATURE(`dnsbl', `bl.spamcop.net', `"Rejected - see
http://spamcop.net/bl.sh
tml?"$&{client_addr}')dnl
FEATURE(`dnsbl', `spews.relays.osirusoft.com', `"Rejected - see
http://spews
.org/ask.cgi?x="$&{client_addr}')dnl
FEATURE(`dnsbl', `dnsbl.njabl.org', `"Rejected - see
http://njabl.org/cgi-bin/lo
okup.cgi?query="$&{client_addr}')dnl
...

Regards


Claus Aßmann

unread,
Dec 15, 2002, 11:12:57 AM12/15/02
to
Marc Bigler wrote:

> Ok I had the define after the FEATURE I have now changed for this define
> before the FEATURE but it's still the same result. Here is the part
> concerned of the mc file:

It seems your version of sendmail is too old. It works fine in 8.12.6
(and you use 8.12.1 AFAIR).

Marc Bigler

unread,
Dec 15, 2002, 11:57:43 AM12/15/02
to
Claus Aßmann wrote:

> It seems your version of sendmail is too old. It works fine in 8.12.6
> (and you use 8.12.1 AFAIR).

Could be, I will upgrade soon anyway.... Thanks for helping !

Regards


0 new messages