So, I have to use a reverse not a forward zone? Here is what I have currently:
Well, it's a forward zone.. note that the records returned are A records, not PTR.. However, the queries are built in a reverse-dns style, kind of like how "in-addr.arpa" rdns queries are built. Thus you have the whole "reverse the IP address to make a name" effect just like you do in RDNS.
2.0.0.127 IN A 127.0.0.2
One thing that is missing from the blackholes.us zonefiles is the origin. Technicaly these records need an origin to go with them.
blackholes.us uses their own domain as their own origin. So you can query 2.0.0.127.blackholes.us and get back 127.0.0.2.
You might want to specify an origin of some domain you control but aren't using for anything, or make it a subdomain of one you do use like blackhole.rbinc.com.
Then you'd tell SA to query "blackhole.rbinc.com".. For the IP address 127.0.0.2 in a message header SA would generate the DNS A-record query 2.0.0.127.blackhole.rbinc.com and get back a match.
------------------------------------------------------- This SF.net email is sponsored by: SF.net Giveback Program. SourceForge.net hosts over 70,000 Open Source Projects. See the people who have HELPED US provide better services: Click here: http://sourceforge.net/supporters.php _______________________________________________ Spamassassin-talk mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/spamassassin-talk
