On Thu, 2005-03-10 at 22:10 +0000, William John Murray wrote: > >On Thu, 2005-03-10 at 07:20 +0000, William John Murray wrote: > >> The [smtp.aol.com] does SOMTHING; because if I use it the > >> error changes to "Name server: smtp.cs.com.: host name lookup failure" > >> and smtp.aol.com was an alias for smtp.cs.com. > > > >This still looks like a DNS issue. What's the output of: > > > >$ dig smtp.cs.com > >$ dig smtp.cs.com +trace > >$ dig @dns-01.ns.cs.com smtp.cs.com > > Here goes: > > > dig smtp.cs.com > > ; <<>> DiG 9.2.5rc1 <<>> smtp.cs.com > ;; global options: printcmd > ;; Got answer: > ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 5864 > ;; flags: qr rd ra; QUERY: 1, ANSWER: 2, AUTHORITY: 2, ADDITIONAL: 1 > > ;; QUESTION SECTION: > ;smtp.cs.com. IN A > > ;; ANSWER SECTION: > smtp.cs.com. 3357 IN A 205.188.159.153 > smtp.cs.com. 3357 IN A 205.188.159.185 > > ;; AUTHORITY SECTION: > cs.com. 3357 IN NS dns-01.ns.cs.com. > cs.com. 3357 IN NS dns-02.ns.cs.com. > > ;; ADDITIONAL SECTION: > dns-02.ns.cs.com. 2761 IN A 205.188.157.235 > > ;; Query time: 25 msec > ;; SERVER: 205.188.146.145#53(205.188.146.145) > ;; WHEN: Thu Mar 10 21:59:56 2005 > ;; MSG SIZE rcvd: 122 > > [root@base mail]# dig smtp.cs.com +trace > > ; <<>> DiG 9.2.5rc1 <<>> smtp.cs.com +trace > ;; global options: printcmd > . 992 IN NS d.root-servers.net. > . 992 IN NS e.root-servers.net. > . 992 IN NS f.root-servers.net. > . 992 IN NS g.root-servers.net. > . 992 IN NS h.root-servers.net. > . 992 IN NS i.root-servers.net. > . 992 IN NS j.root-servers.net. > . 992 IN NS k.root-servers.net. > . 992 IN NS l.root-servers.net. > . 992 IN NS m.root-servers.net. > . 992 IN NS a.root-servers.net. > . 992 IN NS b.root-servers.net. > . 992 IN NS c.root-servers.net. > ;; Received 324 bytes from 205.188.146.145#53(205.188.146.145) in 28 ms > > com. 172800 IN NS A.GTLD-SERVERS.NET. > com. 172800 IN NS B.GTLD-SERVERS.NET. > com. 172800 IN NS C.GTLD-SERVERS.NET. > com. 172800 IN NS D.GTLD-SERVERS.NET. > com. 172800 IN NS E.GTLD-SERVERS.NET. > com. 172800 IN NS F.GTLD-SERVERS.NET. > com. 172800 IN NS G.GTLD-SERVERS.NET. > com. 172800 IN NS H.GTLD-SERVERS.NET. > com. 172800 IN NS I.GTLD-SERVERS.NET. > com. 172800 IN NS J.GTLD-SERVERS.NET. > com. 172800 IN NS K.GTLD-SERVERS.NET. > com. 172800 IN NS L.GTLD-SERVERS.NET. > com. 172800 IN NS M.GTLD-SERVERS.NET. > ;; Received 489 bytes from 128.8.10.90#53(d.root-servers.net) in 100 ms > > cs.com. 172800 IN NS dns-01.ns.cs.com. > cs.com. 172800 IN NS dns-02.ns.cs.com. > ;; Received 106 bytes from 192.5.6.30#53(A.GTLD-SERVERS.NET) in 108 ms > > smtp.cs.com. 3600 IN A 205.188.159.185 > smtp.cs.com. 3600 IN A 205.188.159.153 > cs.com. 3600 IN NS dns-02.ns.cs.com. > cs.com. 3600 IN NS dns-01.ns.cs.com. > ;; Received 138 bytes from 152.163.159.235#53(dns-01.ns.cs.com) in 91 ms > > [root@base mail]# dig @dns-01.ns.cs.com smtp.cs.com > > ; <<>> DiG 9.2.5rc1 <<>> @dns-01.ns.cs.com smtp.cs.com > ; (1 server found) > ;; global options: printcmd > ;; Got answer: > ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 36283 > ;; flags: qr aa rd; QUERY: 1, ANSWER: 2, AUTHORITY: 2, ADDITIONAL: 2 > > ;; QUESTION SECTION: > ;smtp.cs.com. IN A > > ;; ANSWER SECTION: > smtp.cs.com. 3600 IN A 205.188.159.153 > smtp.cs.com. 3600 IN A 205.188.159.185 > > ;; AUTHORITY SECTION: > cs.com. 3600 IN NS dns-02.ns.cs.com. > cs.com. 3600 IN NS dns-01.ns.cs.com. > > ;; ADDITIONAL SECTION: > dns-01.ns.cs.com. 3600 IN A 152.163.159.235 > dns-02.ns.cs.com. 3600 IN A 205.188.157.235 > > ;; Query time: 92 msec > ;; SERVER: 152.163.159.235#53(152.163.159.235) > ;; WHEN: Thu Mar 10 22:00:48 2005 > ;; MSG SIZE rcvd: 138 > > Is this OK? Yes, that all looks fine. You're finding the right nameservers and they're returning authoritative answers (the "aa" flag is set). > >> I then tried using this, with or without [], and I get: > >> > >> relay=smtp.cs.com. [205.188.159.185], dsn=5.6.0, stat=Data format error > > > >I wonder if your sendmail is using proper domain names. > > Very possibly not. I am doing NAT on this box. The hostname is > 'BASE.MURRAYDOMAIN' > But ifconfig knows of: > > eth0 - inet addr:168.254.0.1 Bcast:168.254.0.255 Mask:255.255.255.0 > lo - inet addr:127.0.0.1 Mask:255.0.0.0 > ppp0 - inet addr:172.214.160.107 P-t-P:81.145.240.249 Mask:255.255.255.255 > tun0-00 inet addr:172.161.242.134 P-t-P:172.161.242.134 Mask:255.255.255.255 > > This mess is because I use a hacked 'penggy' to make connection to the AOL > xDSL service. ppp0 is brought up, but does nothing without the tunnel. > > But it all seems to work (ssh, browse, tunnel etc) > > > > > >Do you have any masquerade options set in your sendmail.mc? > > > Tried this and that. Never seems to make any difference at all. > Is that suspicious? It was 'ipt.aol.com' for much of this. But removing > it changes nothing. ctladdr is always root@xxxxxxxxxxxxxxxxx Well my mail server would certainly never accept mail from a bogus address like that, and I expect AOL to be the same. You need to set up masquerading (or a genericstable) properly so that your outgoing mail uses a real email address. Does everyone that uses this box have a real email address in the same domain? And, as Alexander said, don't run tests as root (yet) as it may behave differently, particularly regarding masquerading. Paul. -- Paul Howarth <paul@xxxxxxxxxxxx>
