On Fri, 3 Jan 2003, Randy Kelsoe wrote:
> Hey, all
>
> I am trying to setup a mailserver on a new internet connection. The
> domain has been registered, and I have a static IP. If I try and send
> mail to the new domain, the mail bounces, and I get a message like:
>
> Recipient address: me@newdomain.com
> Reason: Remote SMTP server has rejected address
> Diagnostic code: smtp;550 5.7.1 <me@newdomain.com>... Relaying denied
^^^^^^^^^^^^^^^
^^^^^^^^^^^^^^^
This is NOT a dns problem. You are trying to relay which is denied. You have
a misconfiguration in your sendmail configuration. Since you did not give
any REAL information that is all I can tell you. I fail to understand what
you think you are protecting by hiding the real information from the people
you are asking for help. The domain name and hence ip addresses are all
publicly available information.
One suggestion since you are new at this I would suggest switching to postfix.
The reason I am suggesting this is that it's configuration files are a lot
easier to understand. There is a version included with psyche so switching
is easy.
> Remote system: dns;mail.newdomain.com
> (TCP|151.164.30.29|36974|XX.XX.XX.XX|25) (tux.newdomain.com ESMTP
> Sendmail 8.12.5/8.12.5; Fri, 3 Jan 2003 10:06:28 -0600)
>
> from my MUA, and in the maillog on the mail server I get:
>
> reject=550 5.7.1 <me@newdomain.com>... Relaying denied
^^^^^^^^^^^^^^^
^^^^^^^^^^^^^^^
> The ISP has setup the IP to resolve to the newdomain name, and I had
> them enter an MX record for the mailserver, but they don't have an entry
> for reverse DNS. Doing a dig command:
>
> ]# dig newdomain.com ANY
>
> ; <<>> DiG 9.2.1 <<>> newdomain.com ANY
> ;; global options: printcmd
> ;; Got answer:
> ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 62829
> ;; flags: qr rd ra; QUERY: 1, ANSWER: 3, AUTHORITY: 2, ADDITIONAL: 2
>
> ;; QUESTION SECTION:
> ;newdomain.com. IN ANY
>
> ;; ANSWER SECTION:
> newdomain.com. 142643 IN NS NAMESERVER1.MYISP.NET.
> newdomain.com. 142643 IN NS NAMESERVER2.MYISP.NET.
> newdomain.com. 20551 IN SOA nameserver1.newdomain.com.
> hostmaster.nameserver1.newdomain.com. 2002121205 3600 900 1209600 43200
>
> ;; AUTHORITY SECTION:
> newdomain.com. 142643 IN NS NAMESERVER1.MYISP.NET.
> newdomain.com. 142643 IN NS NAMESERVER2.MYISP.NET.
>
> ;; ADDITIONAL SECTION:
> NAMESERVER1.MYISP.NET. 53126 IN A XX.XX.XX.XX1
> NAMESERVER2.MYISP.NET. 53126 IN A XX.XX.XX.XX2
>
> ;; Query time: 46 msec
> ;; SERVER: 151.164.11.201#53(151.164.11.201)
Oops, Oh look he left an ip address in there. :-)
> ;; WHEN: Fri Jan 3 10:18:38 2003
> ;; MSG SIZE rcvd: 214
Hummm that is not what I get:
tigger pts2) $ dig mx newdomain.com
; <<>> DiG 9.2.1 <<>> mx newdomain.com
;; global options: printcmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 64312
;; flags: qr rd ra; QUERY: 1, ANSWER: 2, AUTHORITY: 3, ADDITIONAL: 0
;; QUESTION SECTION:
;newdomain.com. IN MX
;; ANSWER SECTION:
newdomain.com. 600 IN MX 20 mx2.activeisp.com.
newdomain.com. 600 IN MX 10 mail.asp.activeisp.com.
;; AUTHORITY SECTION:
newdomain.com. 600 IN NS dns12.activeisp.com.
newdomain.com. 600 IN NS dns10.activeisp.com.
newdomain.com. 600 IN NS dns11.activeisp.com.
;; Query time: 158 msec
;; SERVER: 192.168.0.246#53(192.168.0.246)
;; WHEN: Fri Jan 3 11:39:29 2003
;; MSG SIZE rcvd: 146
> ---------------------------------------------------------------------------------
>
>
>
> I am new to setting up DNS, so my questions are:
>
> 1. Does the ISP need to setup reverse DNS and make an address entry for
> nameserver1.newdomain.com.?
No, but you do need the reverse dns to resolve to something reasonable.
A lot of people (including myself) reject mail that comes from an ip that
you cannot do a reverse lookup. My ip address does not reverse resolve
to rogueind.com but it does resolve and as such I can send and receive mail just
fine.
> Or, should I setup DNS locally to do this?
>
> 2. If I setup DNS locally, how can I get incoming DNS queries to use my DNS?
You can but it will not fix your problem.
Why, do you think this would help?
HTH,
--
.............Tom "Nothing would please me more than being able to
tdiehl@rogueind.com hire ten programmers and deluge the hobby market
with good software." -- Bill Gates 1976
We are still waiting ....
--
Psyche-list mailing list
Psyche-list@redhat.com
https://listman.redhat.com/mailman/listinfo/psyche-list
