Re: qmail-msn problem workaround

Wed, 05 Sep 2001 04:54:20 -0700 

hmm
seen that on one of my larger boxes around, too

created an mx-in ip list:
rohrbach@WM:datasink[~]13% dnsqr mx msn.com|cut -f6 -d' '|grep
msn.com|xargs -n1 dnsip
207.46.181.24 
207.46.181.25 
207.46.181.27 
207.46.181.29 
207.46.181.32 
207.46.181.33 
207.46.181.35 
207.46.181.37 
207.46.181.38 
207.46.181.26 
207.46.181.45 
207.46.181.41 

the question is, whether to set up a local authoritative tinydns for
serving msn.com mx records, or thinking about plan b...
any ideas for plan b?

/k

Greg White([EMAIL PROTECTED])@2001.09.03 01:32:46 +0000:
> On Mon, Sep 03, 2001 at 09:32:06AM +0200, Andrea Cerrito wrote:
> > My qmail box is querying a Solaris box acting as a DNS server (just
> > cache), running BIND, to resolve MSN.com MXs. The only patch I've
> > installed on qmail it's the dns one. 
> > So my question is: why the dns patch isn't the right solution?
> 
> 
> Because, as was explained earlier in this thread, the problem is not
> with a >512 byte response (which is what the patch solves). qmail makes
> an 'any' query for the domain, which is broken for all servers of
> msn.com. Try it yourself:
> 
> gregw@frodo:~$ dnsq any msn.com dns1.cp.msft.net
> 255 msn.com:
> timed out
> gregw@frodo:~$ dig any msn.com @dns1.cp.msft.net
> 
> ; <<>> DiG 8.3 <<>> any msn.com @dns1.cp.msft.net 
> ; (1 server found)
> ;; res options: init recurs defnam dnsrch
> ;; res_nsend to server dns1.cp.msft.net  207.46.138.20: Operation timed out
> 
> MSN is badly broken. You're not allowed to ignore an 'any' query. See
> all the DNS RFCs. 
> 
> (It seems to me that MS' new Akamai servers time out for all 'any'
> queries. Akamai should fix their servers.)
> 
> We're forced to work around broken servers here -- this is not qmail's
> fault at all.
> 
> GW

-- 
> Q: What do you get when you cross Dracula with a used car dealer?
> A: autoexec.bat
KR433/KR11-RIPE -- WebMonster Community Founder -- nGENn GmbH Senior Techie
http://www.webmonster.de/ -- ftp://ftp.webmonster.de/ -- http://www.ngenn.net/
karsten&rohrbach.de -- alpha&ngenn.net -- alpha&scene.org -- [EMAIL PROTECTED]
GnuPG 0x2964BF46 2001-03-15 42F9 9FFF 50D4 2F38 DBEE  DF22 3340 4F4E 2964 BF46
Please do not remove my address from To: and Cc: fields in mailing lists. 10x

PGP signature

Reply via email to