> I have (from your private post) following result: > Can you please post following:
> echo "helo_name=[85.110.88.63] > client_address=85.110.88.63 > [EMAIL PROTECTED] > request=smtpd_access_policy > " | /path/to/policyd-weight -d > polw-debug.txt Sure: ############################################# policyd-weight version: 0.1.14 beta-5, CacheVer: 5 System: Linux rootsvr.de 2.6.17.8 #1 Wed Aug 16 19:22:37 CEST 2006 i686 GNU/Linux Perl version: 5.008008 Net::DNS version: 0.59 config: /etc/policyd-weight.conf $DEBUG = 0; $REJECTMSG = "550 Mail appeared to be SPAM or forged. Ask your Mail/DNS-Administrator to correct HELO and DNS MX settings or to get removed from DNSBLs" ; $REJECTLEVEL = 4; $DEFER_STRING = 'IN_SPAMCOP= BOGUS_MX='; $DEFER_ACTION = '450'; $DEFER_LEVEL = 5; $DNSERRMSG = '450 No DNS entries for your MTA, HELO and Domain. Contact YOUR administrator'; $dnsbl_checks_only = 0; $LOG_BAD_RBL_ONLY = 1; @dnsbl_score = ( 'dynablock.njabl.org', 3.25, 0, 'DYN_NJABL', 'sbl-xbl.spamhaus.org', 4.35, -1.5, 'SBL_XBL_SPAMHAUS', 'bl.spamcop.net', 3.75, -1.5, 'SPAMCOP', 'dnsbl.njabl.org', 4.25, -1.5, 'BL_NJABL', 'list.dsbl.org', 4.35, 0, 'DSBL_ORG', 'ix.dnsbl.manitu.net', 4.35, 0, 'IX_MANITU', ); $MAXDNSBLHITS = 4; $MAXDNSBLSCORE = 12; $MAXDNSBLMSG = '550 Your MTA is listed in too many DNSBLs'; @rhsbl_score = ( 'multi.surbl.org', 4, 0, 'SURBL', 'rhsbl.ahbl.org', 1.8, 0, 'AHBL', 'dsn.rfc-ignorant.org', 3.2, 0, 'DSN_RFCI', 'postmaster.rfc-ignorant.org', 0.1, 0, 'PM_RFCI', 'abuse.rfc-ignorant.org', 0.1, 0, 'ABUSE_RFCI' ); $LOCKPATH = '/tmp/.policyd-weight/'; $SPATH = $LOCKPATH.'/polw.sock'; $MAXIDLECACHE = 60; $MAINTENANCE_LEVEL = 5; $CACHESIZE = 320; $CACHEMAXSIZE = 480; $CACHEREJECTMSG = '550 temporarily blocked because of previous errors'; $NTTL = 1; $NTIME = 30; $POSCACHESIZE = 320; $POSCACHEMAXSIZE = 480; $POSCACHEMSG = 'using cached result'; $PTTL = 60; $DNS_RETRIES = 2; $DNS_RETRY_IVAL = 2; $MAXDNSERR = 3; $MAXDNSERRMSG = 'passed - too many local DNS-errors'; $PUDP = 0; $USE_NET_DNS = 0; $IPC_TIMEOUT = 2; @client_ip_eq_helo_score = (1.5, -1.25 ); @helo_score = (1.5, -2 ); @helo_from_mx_eq_ip_score = (1.5, -3.1 ); @helo_numeric_score = (1.5, 0 ); @from_match_regex_verified_helo = (1, -2 ); @from_match_regex_unverified_helo = (1.6, -1.5 ); @from_match_regex_failed_helo = (2.5, 0 ); @helo_seems_dialup = (1, 0 ); @failed_helo_seems_dialup = (2, 0 ); @helo_ip_in_client_subnet = (0, -1.2 ); @helo_ip_in_cl16_subnet = (0, -0.41 ); @client_seems_dialup_score = (3.75, 0 ); @from_multiparted = (1.09, 0 ); @from_anon = (1.17, 0 ); @bogus_mx_score = (2.1, 0 ); @random_sender_score = (0.25, 0 ); @rhsbl_penalty_score = (3.1, 0 ); $VERBOSE = 0; $ADD_X_HEADER = 1; $DEFAULT_RESPONSE = 'DUNNO default'; $syslog_socktype = 'unix'; $syslog_facility = "mail"; $syslog_options = "pid"; $syslog_priority = "info"; $syslog_ident = "postfix/policyd-weight"; $USER = "polw"; $GROUP = ""; $MAX_PROC = 50; $MIN_PROC = 3; $TCP_PORT = 12525; $BIND_ADDRESS = '127.0.0.1'; $SOMAXCONN = 1024; $CHILDIDLE = 240; $PIDFILE = "/var/run/policyd-weight.pid"; debug: using port 12526 debug: USER: polw debug: GROUP: polw debug: issuing user: root debug: issuing group: root 11:55:41 info: cache spawned 11:55:41 info: cache: PTIME: 10800, TEMP_PTIME: 86400 11:55:41 info: rbl_lookup: sending: 63.88.110.85.dynablock.njabl.org, 63650 11:55:41 info: rbl_lookup: 63.88.110.85.dynablock.njabl.org vs 63.88.110.85.dynablock.njabl.org, 63650 vs 63650, anc == 1 11:55:41 info: rbl_lookup: sending: 63.88.110.85.sbl-xbl.spamhaus.org, 23760 11:55:41 info: rbl_lookup: 63.88.110.85.sbl-xbl.spamhaus.org vs 63.88.110.85.sbl-xbl.spamhaus.org, 23760 vs 23760, anc == 0 11:55:41 info: rbl_lookup: sending: 63.88.110.85.bl.spamcop.net, 24503 11:55:41 info: rbl_lookup: 63.88.110.85.bl.spamcop.net vs 63.88.110.85.bl.spamcop.net, 24503 vs 24503, anc == 0 11:55:41 info: rbl_lookup: sending: 63.88.110.85.dnsbl.njabl.org, 19511 11:55:41 info: rbl_lookup: 63.88.110.85.dnsbl.njabl.org vs 63.88.110.85.dnsbl.njabl.org, 19511 vs 19511, anc == 0 11:55:41 info: rbl_lookup: sending: 63.88.110.85.list.dsbl.org, 23358 11:55:41 info: rbl_lookup: 63.88.110.85.list.dsbl.org vs 63.88.110.85.list.dsbl.org, 23358 vs 23358, anc == 0 11:55:41 info: rbl_lookup: sending: 63.88.110.85.ix.dnsbl.manitu.net, 38905 11:55:41 info: rbl_lookup: 63.88.110.85.ix.dnsbl.manitu.net vs 63.88.110.85.ix.dnsbl.manitu.net, 38905 vs 38905, anc == 0 ;; setting up an AF_INET() family type UDP socket ;; send_udp(213.133.99.99:53) ;; answer from 213.133.99.99:53 : 59 bytes ;; HEADER SECTION ;; id = 28594 ;; qr = 1 opcode = QUERY aa = 0 tc = 0 rd = 1 ;; ra = 1 ad = 0 cd = 0 rcode = NOERROR ;; qdcount = 1 ancount = 1 nscount = 0 arcount = 0 ;; QUESTION SECTION (1 record) ;; bpop.com. IN MX ;; ANSWER SECTION (1 record) bpop.com. 86400 IN MX 10 mail4.evertecinc.com. ;; AUTHORITY SECTION (0 records) ;; ADDITIONAL SECTION (0 records) ;; setting up an AF_INET() family type UDP socket ;; send_udp(213.133.99.99:53) ;; answer from 213.133.99.99:53 : 54 bytes ;; HEADER SECTION ;; id = 28595 ;; qr = 1 opcode = QUERY aa = 0 tc = 0 rd = 1 ;; ra = 1 ad = 0 cd = 0 rcode = NOERROR ;; qdcount = 1 ancount = 1 nscount = 0 arcount = 0 ;; QUESTION SECTION (1 record) ;; mail4.evertecinc.com. IN A ;; ANSWER SECTION (1 record) mail4.evertecinc.com. 86400 IN A 64.178.213.17 ;; AUTHORITY SECTION (0 records) ;; ADDITIONAL SECTION (0 records) ;; setting up an AF_INET() family type UDP socket ;; send_udp(213.133.99.99:53) ;; answer from 213.133.99.99:53 : 42 bytes ;; HEADER SECTION ;; id = 28596 ;; qr = 1 opcode = QUERY aa = 0 tc = 0 rd = 1 ;; ra = 1 ad = 0 cd = 0 rcode = NOERROR ;; qdcount = 1 ancount = 1 nscount = 0 arcount = 0 ;; QUESTION SECTION (1 record) ;; bpop.com. IN A ;; ANSWER SECTION (1 record) bpop.com. 86400 IN A 64.178.214.6 ;; AUTHORITY SECTION (0 records) ;; ADDITIONAL SECTION (0 records) ;; setting up an AF_INET() family type UDP socket ;; send_udp(213.133.99.99:53) ;; send_udp(213.133.100.100:53) ;; send_udp(213.133.99.99:53) ;; send_udp(213.133.100.100:53) ;; setting up an AF_INET() family type UDP socket ;; send_udp(213.133.99.99:53) ;; send_udp(213.133.100.100:53) ;; send_udp(213.133.99.99:53) ;; send_udp(213.133.100.100:53) ;; setting up an AF_INET() family type UDP socket ;; send_udp(213.133.99.99:53) ;; send_udp(213.133.100.100:53) ;; send_udp(213.133.99.99:53) ;; send_udp(213.133.100.100:53) 11:56:30 info: decided action=PREPEND X-policyd-weight: passed - too many local DNS-errors in HELO MX lookups for 88.63]; delay: 49s action=PREPEND X-policyd-weight: passed - too many local DNS-errors in HELO MX lookups for 88.63] 11:56:41 info: debug cache killed ################################################### I use a Debian Etch Sytsem with default packages, nscd for nameservice caching, postfix/cyrus/amavis aso. I replaced the policyd-weight script with the latest stable from the website but this didn't seem to help. AFAIK i can resolv the dnsnames and ips via the Hetzner DNS Servers in less than a second. Jan -- Man wäre ja gar kein solcher Egoist, wenn es nur nicht so nützlich wäre. - Raimund Vidráni Mit freundlichen Grüßen Jan Scholten mailto:[EMAIL PROTECTED] ____________________________________________________________ Policyd-weight Mailinglist - http://www.policyd-weight.org/