Opened 10 years ago

Closed 10 years ago

Last modified 10 years ago

#396 closed Bug/Something is broken (fixed)

Mail sent by stedile rejected because from "Dynamic IP Address"

Reported by: https://id.mayfirst.org/ben-agaric Owned by: https://id.mayfirst.org/jamie
Priority: Medium Component: Tech
Keywords: sorbs email Cc: support@…
Sensitive: no

Description

(First- Jamie, thanks for setting up the soon-to-be mysql server-- I do get the alerts, just haven't had time.)

Among a few e-mail problems, one server is rejecting mail from Stedile, claiming it has a dynamic IP address.

I think this is distinct from the issues on leslie - https://support.mayfirst.org/ticket/211 - however perhaps I should be implementing some or all of that on stedile?

Here are some excerpts from vi /var/log/mail.log

Jan  8 11:35:23 stedile postfix/smtp[28608]: 083E264CA3: host mx01.1and1.co.uk[212.227.15.134] refused to talk to me: 550 RBL rejection: Dynamic IP Addresses See: http://www.sorbs.net/lookup.shtml?209.51.163.203
Jan  8 11:35:24 stedile postfix/smtp[28607]: 88AAA64CC7: to=<alessiacerqua@yahoo.it>, relay=g.mx.mail.yahoo.com[206.190.53.191]:25, delay=4669, delays=4661/3.1/4.7/0.31, dsn=2.0.0, status=sent (250 ok dirdel)
Jan  8 11:35:24 stedile postfix/qmgr[1625]: 88AAA64CC7: removed
Jan  8 11:35:24 stedile postfix/smtp[28608]: 083E264CA3: to=<info@worldrevolution.org.uk>, relay=mx01.1and1.co.uk[212.227.15.186]:25, delay=103947, delays=103942/0.02/4.8/0, dsn=4.0.0, status=deferred (host mx01.1and1.co.uk[212.227.15.186] refused to talk to me: 550 RBL rejection: Dynamic IP Addresses See: http://www.sorbs.net/lookup.shtml?209.51.163.203)

And here's what SORBS, using the link above, has to say:

Dynamic IP Space (LAN, Cable, DSL & Dial Ups)
Netblock:
209.51.163.200/29 (209.51.163.200-209.51.163.207)
Record Created:
Tue May 16 14:40:38 2006 GMT
Record Updated:
Tue May 16 14:40:38 2006 GMT
Additional Information:
[MU] Dynamic/Generic IP/rDNS address, use your ISPs mail server or get rDNS set to indicate static assignment.
Currently active and flagged to be published in DNS
If you wish to request a delisting please do so through the Support System.
http://www.au.sorbs.net/cgi-bin/support

Know anything about this? Should we request a delisting?

Change History (8)

comment:1 Changed 10 years ago by https://id.mayfirst.org/dkg

Yes, we should request a delisting. That IP range is clearly not LAN, Cable, DSL, or Dial Ups.

comment:2 Changed 10 years ago by https://id.mayfirst.org/ben-agaric

  • Owner changed from https://id.mayfirst.org/jamie to https://id.mayfirst.org/ben-agaric

OK, I'll start that now. If I should be requesting for a larger range or anything let me know.

comment:3 Changed 10 years ago by https://id.mayfirst.org/jamie

  • Keywords sorbs added

Sorbs is really dictating DNS policy via their blocking tool. Daniel is right, IMO, that we are clearly not using a dynamic IP address. However, according to their faq, to be not considered dynamic, you must meet all of these criteria:

  • The MX record of a domain needs to contain a host name that maps to the IP address involved. The Time to Live of the MX record needs to be at least 43200 seconds.
  • The A record for the host name needs to have a TTL of at least 43200 seconds.
  • The reverse DNS PTR record for the IP address involved needs to map back to the name given in the MX record, and to have a TTL of at least 43200 seconds.
  • If there are multiple MX entries, these rules apply to them all.

I hate this. However, I noticed that there was no MX record for stedile.mayfirst.org, so I just added one. The missing mx record may prevent you from getting automatically delisted (you may need to wait for a certain caching time out to re-submit).

If you haven't found this already (it's hard to find), you can get automatically delisted here:

https://www.dnsbl.au.sorbs.net/scgi-bin/dulexclusions

You need a login to do it (I already have one, so let me know if you want me to put it through for you).

comment:4 Changed 10 years ago by https://id.mayfirst.org/jamie

  • Keywords email added

comment:5 Changed 10 years ago by https://id.mayfirst.org/ben-agaric

  • Owner changed from https://id.mayfirst.org/ben-agaric to https://id.mayfirst.org/jamie

comment:6 Changed 10 years ago by https://id.mayfirst.org/ben-agaric

Yes, please do. I'm at the screen (without logging in)

Information about 209.51.163.200/29 (209.51.163.200-209.51.163.207) Note: This lookup is taken from the global DNS servers, so if you have just delisted your host it will still show as being listed - it can take upto 48hours to expire from this page.

Similarly, if a host has just been listed it will take at least 60 minutes to show up on this lookup page. For current and accurate database information you should use the Database Lookup page. Netblock: 209.51.163.200/29 (209.51.163.200-209.51.163.207) Last Seen: Tue May 16 14:40:38 2006 GMT Additional Information: [MU] Dynamic/Generic IP/rDNS address, use your ISPs mail server or get rDNS set to indicate static assignment. Your Options: Delisting Info Support Request

One issue: mail for WSF2008.net is NOT being handled by this server, but separately. We don't want to take that over without coordinating with Logos.

comment:7 Changed 10 years ago by https://id.mayfirst.org/jamie

  • Resolution set to fixed
  • Status changed from new to closed

Ok - this should be done.

Checking MX's for stedile.mayfirst.org...
--> MX 0 [TTL 86400] stedile.mayfirst.org. (Acceptable)

Checking TTLs for host stedile.mayfirst.org....
--> A [TTL 86400] 209.51.163.203 (Acceptable)

Checking TTLs for PTR 209.51.163.203[stedile.mayfirst.org.]...
--> PTR [TTL 86400] stedile.mayfirst.org. (Accepted for delisting)

It shouldn't have any affect on wsf2008.net.

comment:8 Changed 10 years ago by https://id.mayfirst.org/ben-agaric

Thanks so much! I'll be monitoring the logs.

Please login to add comments to this ticket.

Note: See TracTickets for help on using tickets.