> > when local dns server is working there must only be one single nameserver > > in resolv.conf and options rotate nust not be enabled > On Friday March 18 2011 04:04:23 Karsten Bräckelmann wrote: > In the SA case, due to some issues with the underlying DNS Perl module, > IIRC the "first nameserver is all that ever will be used" note is the > appropriate disclaimer -- though I got to admit, details escape me.
The "first nameserver is all that ever will be used" is true for 3.3.1 and older. This restriction has been lifted in trunk (3.4), an automatic failover between configured nameservers now works, and DNS servers can now be specified in a SpamAssassin config file (directives dns_server and clear_dns_servers), including IPv6 servers, if necessary with server port numbers. Restrictions on client port ranges can be specified (directive dns_local_ports_permit) to deal with firewalls. (discussed in Bug 6362 and thereabout). Mark
