On 10/27/21 10:16 AM, zain.adriansyah via Mdaemon-L wrote:
mohon dibantu dengan LOG ini kira kira kenapa ya
Wed 2021-10-27 09:51:50.194: Performing SPF lookup (maybank.com /
202.162.18.190)
Wed 2021-10-27 09:55:10.652: * DNS: 200 second wait for DNS response
exceeded (DNS Server: 202.72.208.8)
Wed 2021-10-27 09:55:10.708: * Policy: v=spf1 a
mx:mayproof03.maybank.com.my mx:ms2.maybank.com.my mx:ms3.maybank.com
ip4:202.162.18.110 ip4:202.162.18.111 ip4:202.162.18.129
ip4:202.162.18.190 ip4:202.162.18.191 ip4:203.153.92.151
ip4:203.153.92.153 ip4:203.153.92.154 ip4:61.8.254.1
Wed 2021-10-27 09:58:28.117: * DNS: 200 second wait for DNS response
exceeded (DNS Server: 202.72.208.8)
1. Idle time out DNS query terlalu panjang, mestinya cukup 45 s.d 60
menit saja.
http://mdaemon.dutaint.co.id/mdaemon/21.0.1/default-domain-and-servers_timouts.html
Wait 60 seconds for MX responses
Wait 60 seconds for A/AAAA responses
2. DNS resolver 202.72.208.8 tidak berjalan baik.
Coba di test dari DOS shell di MDaemon server mail.kisi-am.co.id
c:\ nslookup -q=txt maybank.com 202.72.208.8
c:\ nslookup -q=txt maybank.com 202.72.208.9
jika hasilnya tidak mirip dibawah ini maka dihapus saja dari daftar DNS
resolvernya MDaemon; digantikan dengan public DNS: 1.1.1.1, 8.8.8.8, 9.9.9.9
http://mdaemon.dutaint.co.id/mdaemon/21.0.1/default-domain-and-servers_dns.html
pastikan menu berikut tidak aktif
[ ] Use EDNS0 (Extension Mechanisms for DNS)
3. DNS over TCP terblock.
SPF record domain maybank.com sangat panjang, melebihi 512 byte sehingga
melebihi besarnya limit UDP connection.
Dalam hal demikian DNS query akan otomatis switch over ke TCP (DNS over
TCP).
DNS over tcp itu pakai tcp port 53, sehingga pastikan outbound tcp port
53 dari MDaemon server ke internet di allow di firewall (windows
firewall maupun external firewall atau proxy antivirus for file server).
Lebih lengkap bisa dilihat disini
https://www.mail-archive.com/mdaemon-l@dutaint.com/msg44983.html
$ nslookup -q=txt maybank.com 1.1.1.1
;; Truncated, retrying in TCP mode.
Server: 1.1.1.1
Address: 1.1.1.1#53
Non-authoritative answer:
maybank.com text =
"_globalsign-domain-verification=QDfF1K7J_2A1onU6cSlP_XuoR9zeTrpzgLySmj_A_-"
maybank.com text = "VISA=" "C8C00B0ECDADFB36FA342802D8E8C318"
maybank.com text = "VISA" "=" "A9A7912464D9E1AAA1FDDF62149B0AEE"
maybank.com text = "j1v1lv2hqc8mnjgzy5bb6t90nvjnvz7c"
maybank.com text = "VISA=50CCC6F7624BF2432B29CA148D084560"
maybank.com text =
"facebook-domain-verification=oxjm9tqa3p0fuvq5e70u4ms5e1711d"
maybank.com text = "VISA=" "59F07E7550DDD67DA246C99F400FF1F8"
maybank.com text =
"knowbe4-site-verification=1a66b6affb58b2005d2809a109ae12ab"
maybank.com text = "v=spf1 a mx:mayproof03.maybank.com.my
mx:ms2.maybank.com.my mx:ms3.maybank.com ip4:202.162.18.110
ip4:202.162.18.111 ip4:202.162.18.129 ip4:202.162.18.190
ip4:202.162.18.191 ip4:203.153.92.151 ip4:203.153.92.153
ip4:203.153.92.154 ip4:61.8.254.100" " ip4:203.117.55.247
ip4:203.117.55.250 ip4:103.51.50.149 ip4:103.51.50.150 ip4:103.51.50.151
ip4:103.51.50.152 ip4:103.51.50.148 ~all"
maybank.com text =
"ciscocidomainverification=<3312410c7cf78731d30ee1b3fe33fd30313ad3b0158f4c163193367d05213a4b>"
maybank.com text = "VISA=" "417A267AA4EA1CD0E4092A9C624BE66E"
maybank.com text =
"google-site-verification=SDNyodcJq8JdXIbWrcD4RdibBhE7Rvd7QA20lUKAMf4"
maybank.com text =
"globalsign-domain-verification=fde84b2587a8fb1bfec6fe2af52f24d2
--
syafril
--------
Syafril Hermansyah
MDaemon-L Moderators, running MDaemon 21.5.0 64 bit Beta RC4
Harap tidak cc: atau kirim ke private mail untuk masalah MDaemon.
Challenges are what make life interesting and overcoming them is what
makes life meaningful.
--- Joshua J. Marine
--
--[mdaemon-l]----------------------------------------------------------
Milis ini untuk Diskusi antar pengguna MDaemon Mail Server di Indonesia
Netiket: https://wiki.openstack.org/wiki/MailingListEtiquette
Arsip: http://mdaemon-l.dutaint.com
Dokumentasi : http://mdaemon.dutaint.co.id
Berlangganan: Kirim mail ke mdaemon-l-subscr...@dutaint.com
Henti Langgan: Kirim mail ke mdaemon-l-unsubscr...@dutaint.com
Versi terakhir: MDaemon 21.0.3, SecurityGateway 8.0.3
