mail server DNS configuration questions

Kevin Kinsey kdk at daleco.biz
Sun Sep 7 03:08:25 UTC 2008


Andrew Falanga wrote:
> Hi,
> 
> Well, my clients at church are still having issues and after working with 
> George, a respondant to my original questions, I think that most, if not all, 
> of my problems are related to DNS and how we've got it improperly configured.
> 
> First, a crude drawing of how our mail server exists in the world:
> 
> 192.168.2.x/24           72.24.23.252      "lot's of networks"
> Private Network <--> CableOne <--> Internet
> 
> Now, our mail server's IP is 192.168.2.23.  On the router, he (the person at 
> whose house the mail server is) has IP forwarding setup so that mail get's 
> sent to our FreeBSD machine.  Using dig, here's the responses:
> 
> (from my FBSD machine at home, not the server)
> [/usr/home/andy]
> -> dig +short -t MX whitneybaptist.org
> 10 mail.whitneybaptist.org.
> [/usr/home/andy]
> -> dig +short -t A whitneybaptist.org
> 72.24.34.252
> [/usr/home/andy]
> -> dig +short -x 72.24.34.252
> 34-252.72-24-cpe.cableone.net.
> 
> (from the church FBSD machine)
> [/home/afalanga]
> -> hostname
> whitbap
> [/home/afalanga]
> -> ifconfig fxp0
> fxp0: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> mtu 1500
>         options=8<VLAN_MTU>
>         inet 192.168.2.23 netmask 0xffffff00 broadcast 255.255.255.255
>         ether 00:d0:b7:74:87:48
>         media: Ethernet autoselect (100baseTX <full-duplex>)
>         status: active
> [/home/afalanga]
> -> cat /etc/resolv.conf
> search McCutchanLAN
> nameserver 192.168.2.1
> 
> 
> It doesn't take a rocket scientist, or a computer scientist, to figure out 
> we've got DNS issues.  I'm thinking that I should setup a domain within the 
> 192.168.2.0/24 network on this box.  I've done this before, at work.  The 
> question I've got is I've never actually integrated a domain like this to a 
> domain on the Internet.  I'm thinking that we'll setup something like: 
> internal.whitneybaptist.org with hosts in that sub-domain.
> 
> So, what would my DNS tables need to look like to make this happen.  Also, to 
> any knowledgable souls here, what RFCs address these issues?
> 
> Thanks,
> Andy

Andy, I'm not sure I'm DNS guru enough to answer all your
questions, but --- you don't specify what "problems" are
being experienced at the location, and, are you certain it's
not about this?

[25] Sat 06.Sep.2008 21:58:25
[kadmin at archangel][~/logs]
host 72.24.34.252
Host 252.34.24.72.in-addr.arpa. not found: 3(NXDOMAIN)

*Not having* a reverse entry for a mail server is often
the cause of issues.

And the RFC for ESMTP is #2821.

HTH,

Kevin Kinsey
-- 
In Denver it is unlawful to lend your vacuum cleaner to your next-door
neighbor.


More information about the freebsd-questions mailing list