We have had problems with RBL's before in the past, and found the only real way to find the problem, is to run the IP address we believe is bad through the RBL's manualy. You can do this using DIG. I copied an article from our internal documentation wiki to my own personal public wiki so that you could see how to manualy check an RBL. This article is viewable here: http://www.joeynovak.com/wiki/index.php/Testing_RBL%27s
Joey On 10/16/07, Shane Chrisp <[EMAIL PROTECTED]> wrote: > > On Tue, 2007-10-16 at 11:33 -0400, Ken Schweigert wrote: > > Maybe try running a local copy of dnscache on the same box. Ive had a > similar issue before and thats what I did to overcome the problem. Its > not likely that your having exactly the same problem, but it would be > worth a try and I do like running dnscache on the front end smtp servers > now as they seem a bit quicker to respond. I also set a 5 second time > out on the dns lookup. > > Shane > > > Let me start with I have 5 other Shupp Toaster installs and all of > > them work great. However, my 6th one is really starting to bake my > > noodle. Short problem: it won't check against the RBLs I have > > configured. Mail delivers just fine, but it's not blocking > > connections from dynamic IPs which should be listed in the RBL. > > > > I use, generally, the same smtpd/run supervise script on all my boxes; > > some have a whitelist, some don't, etc. Here is what I have on the > > 6th box (sanitized) : > > > > [EMAIL PROTECTED] etc]# more /var/qmail/supervise/qmail-smtpd/run > > #!/bin/sh > > QMAILDUID=`id -u vpopmail` > > NOFILESGID=`id -g vpopmail` > > MAXSMTPD=`cat /var/qmail/control/concurrencyincoming` > > exec /usr/local/bin/softlimit -m 25000000 \ > > /usr/local/bin/tcpserver -v -H -R -l 0 \ > > -x /home/vpopmail/etc/tcp.smtp.cdb -c "$MAXSMTPD" \ > > -u "$QMAILDUID" -g "$NOFILESGID" aa.bb.cc.dd smtp \ > > /usr/local/bin/rblsmtpd -t 20 -b \ > > -a whitelist.mydomain.tld \ > > -r "safe.dnsbl.sorbs.net:safe.dnsbl.sorbs.net - see > > <http://www.au.sorbs.net/lookup.shtml?ip=%IP%>" \ > > -r "combined.njabl.org:combined.njabl.org - see > > <http://njabl.org/lookup?%IP%>" \ > > -r "zen.spamhaus.org:zen.spamhaus.org - see > > <http://www.spamhaus.org/query/bl?ip=%IP%>" \ > > /var/qmail/bin/qmail-smtpd \ > > /home/vpopmail/bin/vchkpw /bin/true 2>&1 > > [EMAIL PROTECTED] etc]# > > > > I can't see anything wrong with the file, and I've even copy-n-pasted > > the config from a known working server and it still won't query the > > RBL. > > > > I've tested the rblsmtpd binary with the following command: > > > > [EMAIL PROTECTED] etc]# TCPREMOTEIP="61.144.178.252" /usr/local/bin/rblsmtpd > > -t 20 -b -r safe.dnsbl.sorbs.net /bin/true > > rblsmtpd: 61.144.178.252 pid 32658: 553 Dynamic IP Addresses See: > > http://www.sorbs.net/lookup.shtml?61.144.178.252 > > 220 rblsmtpd.local > > > > [EMAIL PROTECTED] etc]# > > > > This should at least tell me the binary is compiled right and that > > there is connectivity to the RBL. > > > > I've also looked in /var/log/messages and 'dmesg' and don't see > > anything unusual; no blocked packets by iptables to tcp/53, no error > > messages. > > > > I've restarted the qmail-smtpd service multiple times but to no avail. > > > > The only thing that seems to help is if I manually add an entry to > > '/home/vpopmail/etc/tcp.smtp' and rebuild the database. Then I see > > rblsmtpd entries in /var/log/qmail/smtpd/current. > > > > I'm really at a loss as to why it's not working and would appreciate any > input. > > > > Oh, AMD-64 box with Redhat-ES-4. > > > > Thanks! > > -ken > > -- --- http://www.joeynovak.com C) 803-409-9969 (Work Cell) W) 757-233-0834 H) 757-383-8523 (SkypeIn) "Very funny, Scotty. Now beam down my clothes." Be nice to nerds. Chances are you'll end up working for one. --Bill Gates Your most unhappy customers are your greatest source of learning. --Bill Gates Cope with Life, go buy a slurpee! http://www.slurpee.com/games.html
