Date: Thu, 23 Dec 2004 15:09:08 +1030 From: "Paul A. Hoadley" <paulh@logicsquad.net> To: freebsd-questions@freebsd.org Subject: Re: Sendmail: host name lookup failure Message-ID: <20041223043908.GB27542@grover.logicsquad.net> In-Reply-To: <20041220122442.GA16576@grover.logicsquad.net> References: <20041216010258.GC93695@grover.logicsquad.net> <20041218224134.GA50538@grover.logicsquad.net> <41C5EB56.1000008@mac.com> <20041220122442.GA16576@grover.logicsquad.net>
next in thread | previous in thread | raw e-mail | index | archive | help
--azLHFNyN32YCQGCU Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Mon, Dec 20, 2004 at 10:54:42PM +1030, Paul A. Hoadley wrote: > I have actually solved the problem. I intend to post a summary for > the archive when I return to the site later in the week, at which > time I'll be able to identify the OS/nameserver combination at > fault. I am told it's running Windows 2000 DNS Server. Presumably that's Microsoft's own DNS implementation built into Windows 2000. > Here's a teaser, though: it's a Microsoft product (I just don't know > which), and it's returing SERVFAIL status for a AAAA record query. Sometimes it behaves: > dig tsb.coremedicalsolutions.com. AAAA ; <<>> DiG 9.3.0 <<>> tsb.coremedicalsolutions.com. AAAA ;; global options: printcmd ;; Got answer: ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 8959 ;; flags: qr aa rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0 ;; QUESTION SECTION: ;tsb.coremedicalsolutions.com. IN AAAA ;; AUTHORITY SECTION: coremedicalsolutions.com. 3600 IN SOA archibald2.coremedicalsolut= ions.com. marc.coremedicalsolutions.com. 1480 900 600 86400 3600 ;; Query time: 281 msec ;; SERVER: 192.168.10.2#53(192.168.10.2) ;; WHEN: Thu Dec 23 15:03:23 2004 ;; MSG SIZE rcvd: 98 But sendmail seems intent on asking for just about every permutation on each domain name invovled, so sometimes it returns the bogus answer: > dig tsb AAAA ; <<>> DiG 9.3.0 <<>> tsb AAAA ;; global options: printcmd ;; Got answer: ;; ->>HEADER<<- opcode: QUERY, status: SERVFAIL, id: 43109 ;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 0 ;; QUESTION SECTION: ;tsb. IN AAAA ;; Query time: 245 msec ;; SERVER: 192.168.10.2#53(192.168.10.2) ;; WHEN: Thu Dec 23 15:04:42 2004 ;; MSG SIZE rcvd: 21 (By 'sometimes' I don't mean it's non-deterministic. Every time sendmail asks for the AAAA record of an unqualified hostname, the nameserver responds with SERVFAIL.) The consequence of this is that sendmail repeatedly defers delivery until the mail expires. > Curiously, sendmail's WorkAroundBrokenAAAA option did not help, and > I don't know why. Daryl Tester suggested using a mailertable entry, > and this worked. I still don't know why WorkAroundBrokenAAAA isn't working in this case. --=20 Paul. w http://logicsquad.net/ h http://paul.hoadley.name/ --azLHFNyN32YCQGCU Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.4 (FreeBSD) iD8DBQFBykvs730Z/jysbzIRAt/OAJ0YRfxoGTPXbzN0RsHtt2KYOm1mQwCdHaJq 0xPzvY3Qau9doJYcCOsZhlY= =VXeI -----END PGP SIGNATURE----- --azLHFNyN32YCQGCU--
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20041223043908.GB27542>