More sendmail help? (Alexander Dalloz)

Paul Howarth paul at city-fan.org
Fri Mar 11 08:33:31 UTC 2005


On Thu, 2005-03-10 at 22:10 +0000, William John Murray wrote:
> >On Thu, 2005-03-10 at 07:20 +0000, William John Murray wrote: 
> >> The [smtp.aol.com] does SOMTHING; because if I use it the
> >> error changes to "Name server: smtp.cs.com.: host name lookup failure"
> >> and smtp.aol.com was an alias for smtp.cs.com.
> >
> >This still looks like a DNS issue. What's the output of:
> >
> >$ dig smtp.cs.com
> >$ dig smtp.cs.com +trace
> >$ dig @dns-01.ns.cs.com smtp.cs.com
> 
> Here goes:
> 
> 
>  dig smtp.cs.com
> 
> ; <<>> DiG 9.2.5rc1 <<>> smtp.cs.com
> ;; global options:  printcmd
> ;; Got answer:
> ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 5864
> ;; flags: qr rd ra; QUERY: 1, ANSWER: 2, AUTHORITY: 2, ADDITIONAL: 1
> 
> ;; QUESTION SECTION:
> ;smtp.cs.com.                   IN      A
> 
> ;; ANSWER SECTION:
> smtp.cs.com.            3357    IN      A       205.188.159.153
> smtp.cs.com.            3357    IN      A       205.188.159.185
> 
> ;; AUTHORITY SECTION:
> cs.com.                 3357    IN      NS      dns-01.ns.cs.com.
> cs.com.                 3357    IN      NS      dns-02.ns.cs.com.
> 
> ;; ADDITIONAL SECTION:
> dns-02.ns.cs.com.       2761    IN      A       205.188.157.235
> 
> ;; Query time: 25 msec
> ;; SERVER: 205.188.146.145#53(205.188.146.145)
> ;; WHEN: Thu Mar 10 21:59:56 2005
> ;; MSG SIZE  rcvd: 122
> 
> [root at base mail]# dig smtp.cs.com +trace
> 
> ; <<>> DiG 9.2.5rc1 <<>> smtp.cs.com +trace
> ;; global options:  printcmd
> .                       992     IN      NS      d.root-servers.net.
> .                       992     IN      NS      e.root-servers.net.
> .                       992     IN      NS      f.root-servers.net.
> .                       992     IN      NS      g.root-servers.net.
> .                       992     IN      NS      h.root-servers.net.
> .                       992     IN      NS      i.root-servers.net.
> .                       992     IN      NS      j.root-servers.net.
> .                       992     IN      NS      k.root-servers.net.
> .                       992     IN      NS      l.root-servers.net.
> .                       992     IN      NS      m.root-servers.net.
> .                       992     IN      NS      a.root-servers.net.
> .                       992     IN      NS      b.root-servers.net.
> .                       992     IN      NS      c.root-servers.net.
> ;; Received 324 bytes from 205.188.146.145#53(205.188.146.145) in 28 ms
> 
> com.                    172800  IN      NS      A.GTLD-SERVERS.NET.
> com.                    172800  IN      NS      B.GTLD-SERVERS.NET.
> com.                    172800  IN      NS      C.GTLD-SERVERS.NET.
> com.                    172800  IN      NS      D.GTLD-SERVERS.NET.
> com.                    172800  IN      NS      E.GTLD-SERVERS.NET.
> com.                    172800  IN      NS      F.GTLD-SERVERS.NET.
> com.                    172800  IN      NS      G.GTLD-SERVERS.NET.
> com.                    172800  IN      NS      H.GTLD-SERVERS.NET.
> com.                    172800  IN      NS      I.GTLD-SERVERS.NET.
> com.                    172800  IN      NS      J.GTLD-SERVERS.NET.
> com.                    172800  IN      NS      K.GTLD-SERVERS.NET.
> com.                    172800  IN      NS      L.GTLD-SERVERS.NET.
> com.                    172800  IN      NS      M.GTLD-SERVERS.NET.
> ;; Received 489 bytes from 128.8.10.90#53(d.root-servers.net) in 100 ms
> 
> cs.com.                 172800  IN      NS      dns-01.ns.cs.com.
> cs.com.                 172800  IN      NS      dns-02.ns.cs.com.
> ;; Received 106 bytes from 192.5.6.30#53(A.GTLD-SERVERS.NET) in 108 ms
> 
> smtp.cs.com.            3600    IN      A       205.188.159.185
> smtp.cs.com.            3600    IN      A       205.188.159.153
> cs.com.                 3600    IN      NS      dns-02.ns.cs.com.
> cs.com.                 3600    IN      NS      dns-01.ns.cs.com.
> ;; Received 138 bytes from 152.163.159.235#53(dns-01.ns.cs.com) in 91 ms
> 
> [root at base mail]# dig @dns-01.ns.cs.com smtp.cs.com
> 
> ; <<>> DiG 9.2.5rc1 <<>> @dns-01.ns.cs.com smtp.cs.com
> ; (1 server found)
> ;; global options:  printcmd
> ;; Got answer:
> ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 36283
> ;; flags: qr aa rd; QUERY: 1, ANSWER: 2, AUTHORITY: 2, ADDITIONAL: 2
> 
> ;; QUESTION SECTION:
> ;smtp.cs.com.                   IN      A
> 
> ;; ANSWER SECTION:
> smtp.cs.com.            3600    IN      A       205.188.159.153
> smtp.cs.com.            3600    IN      A       205.188.159.185
> 
> ;; AUTHORITY SECTION:
> cs.com.                 3600    IN      NS      dns-02.ns.cs.com.
> cs.com.                 3600    IN      NS      dns-01.ns.cs.com.
> 
> ;; ADDITIONAL SECTION:
> dns-01.ns.cs.com.       3600    IN      A       152.163.159.235
> dns-02.ns.cs.com.       3600    IN      A       205.188.157.235
> 
> ;; Query time: 92 msec
> ;; SERVER: 152.163.159.235#53(152.163.159.235)
> ;; WHEN: Thu Mar 10 22:00:48 2005
> ;; MSG SIZE  rcvd: 138
> 
> Is this OK?

Yes, that all looks fine. You're finding the right nameservers and
they're returning authoritative answers (the "aa" flag is set).

> >> I then tried using this, with or without [], and I get:
> >> 
> >> relay=smtp.cs.com. [205.188.159.185], dsn=5.6.0, stat=Data format error
> >
> >I wonder if your sendmail is using proper domain names.
> 
> Very possibly not. I am doing NAT on this box. The hostname is 
> 'BASE.MURRAYDOMAIN' 
> But ifconfig knows of:
> 
> eth0 - inet addr:168.254.0.1  Bcast:168.254.0.255  Mask:255.255.255.0
> lo   - inet addr:127.0.0.1  Mask:255.0.0.0
> ppp0 - inet addr:172.214.160.107  P-t-P:81.145.240.249  Mask:255.255.255.255
> tun0-00 inet addr:172.161.242.134  P-t-P:172.161.242.134  Mask:255.255.255.255
> 
> This mess is because I use a hacked 'penggy' to make connection to the AOL
> xDSL service. ppp0 is brought up, but does nothing without the tunnel.
> 
> But it all seems to work (ssh, browse, tunnel etc)
> >
> >
> >Do you have any masquerade options set in your sendmail.mc?
> >
> Tried this and that. Never seems to make any difference at all.
> Is that suspicious? It was 'ipt.aol.com' for much of this. But removing
> it changes nothing. ctladdr is always root at base.murraydomain

Well my mail server would certainly never accept mail from a bogus
address like that, and I expect AOL to be the same. You need to set up
masquerading (or a genericstable) properly so that your outgoing mail
uses a real email address.

Does everyone that uses this box have a real email address in the same
domain?

And, as Alexander said, don't run tests as root (yet) as it may behave
differently, particularly regarding masquerading.

Paul.
-- 
Paul Howarth <paul at city-fan.org>




More information about the fedora-list mailing list