Stan Hoeppner: > 1. Spamhaus has banned Google Public DNS resolver queries. I > didn't know this until today. If Postfix is using Google Public > DNS resolvers, rbl queries to zen.spamhaus.org fail but Postfix > (Debian Lenny 2.5.5-1.1) logs NOTHING about it. Not the query > attempt, not the failure, zilch, nut'n. This explains why I
The query returns NXDOMAIN. No-one has asked me to log all the NXDOMAIN results for DNSBL queries. Wietse With query through Google DNS the host is "not listed" in zen.spamhaus.org: % dig @188.8.131.52 a 184.108.40.206.zen.spamhaus.org ; <<>> DiG 9.6.1-P1 <<>> @220.127.116.11 a 18.104.22.168.zen.spamhaus.org ; (1 server found) ;; global options: +cmd ;; Got answer: ;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 50578 ;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0 ;; QUESTION SECTION: ;22.214.171.124.zen.spamhaus.org. IN A ;; AUTHORITY SECTION: zen.spamhaus.org. 150 IN SOA need.to.know.only. hostmaster.spamhaus.org. 1001221345 3600 600 432000 150 ;; Query time: 169 msec ;; SERVER: 126.96.36.199#53(188.8.131.52) ;; WHEN: Fri Jan 22 08:48:32 2010 ;; MSG SIZE rcvd: 112 With direct query, the host is listed as you can see for yourself.