On Mon, 14 Oct 2002, millerbn wrote: > MAPS/RBL services are derived from dns, your nameserver CAN be > configured for it but it is NOT for normal lookups as it is in a SEPERATE > zone. I won't comment on the developer's explanation.
It sounds like you may be confusing recursive nameservers and authorative nameservers. A recursive nameserver performs lookups. It gets its information from authorative servers. An authorative server serves data specific to the zones configured on it. (the GNATBox DNS server is an authorative server.) (Note, BIND, in its default configuration, does both of these tasks...hence the common confusion.) > You've configured/enabled dnsbl for rbl.some.thing and 10.10.10.1 sends > you an email, email proxy sends a query to rbl.some.thing in this form > 1.10.10.10.rbl.some.thing and if that address gets a reply usually 127.0.0.2 > or similiar the email is blocked and logged. Mostly correct. The SMTP proxy sends a request to the configured recursive nameservers for (using your example) 1.10.10.10.rbl.some.thing. A fairly simple explaination of how the name resolution process works can be found at: http://www.geocities.com/Heartland/4394/work/howdoes.html It would be a poor use of resources to have the SMTP proxy contain a full caching recursive resolver just to do RBL lookups....It makes much more sense to use the existing caches of your own (or your ISPs) recursive servers. > The above example is compatible with both gnatbox and the built in > sendmail rbl features. There are other methods, fivetensg posts their > complete list which IIRC is compatible with current versions of bind. The example is a good one. It demonstrates how an RBL zone would be configured using BIND. A few changes would need to be made to use this with BIND8 or BIND9, but anyone familiar with the differences between BIND4 and the newer versions shouldnt have any trouble. If you wish to use this with a different authorative nameserver the configuration would be different, but the BIND configuration files are fairly self explainatory. --- David Raistrick Systems Administrator - Global Technology Associates, Inc [EMAIL PROTECTED] --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] To subscribe to the digest version first unsubscribe, then e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] Archive of the last 1000 messages: http://www.mail-archive.com/[email protected]
