domain-name-system – 无法解释邮件日志DNS错误
我在Debian上有一个postfix邮件服务器.我的一位客户告诉我,他们无法向我发送电子邮件,而且他们的邮件服务器似乎有问题.我想回答他们的实际问题,但我无法弄清楚这一点.这是在反弹电子邮件中:
The address to which the message has not yet been delivered is: eric@mydomain.com Delay reason: SMTP error from remote mail server after RCPT TO:: host dog.myhostname.com [{server_ip}]: 450 4.7.1 : Recipient address rejected: SPF-Result=server.thehostingserver.co.uk: 'SERVFAIL' error on DNS 'TXT' lookup of 'server.thehostingserver.co.uk' 检查/var/log/mail.log文件,我看到以下行与退回电子邮件一致: Dec 6 10:32:16 dog postfix/smtpd[366]: connect from unknown[37.26.106.210] Dec 6 10:32:16 dog postfix/smtpd[366]: setting up TLS connection from unknown[37.26.106.210] Dec 6 10:32:16 dog postfix/smtpd[366]: Anonymous TLS connection established from unknown[37.26.106.210]: TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits) Dec 6 10:32:18 dog postfix/policy-spf[421]: Policy action=DEFER_IF_PERMIT SPF-Result=server.thehostingserver.co.uk: 'SERVFAIL' error on DNS 'TXT' lookup of 'server.thehostingserver.co.uk' Dec 6 10:32:18 dog postfix/smtpd[366]: NOQUEUE: reject: RCPT from unknown[37.26.106.210]: 450 4.7.1 <eric@mydomain.com>: Recipient address rejected: SPF-Result=server.thehostingserver.co.uk: 'SERVFAIL' error on DNS 'TXT' lookup of 'server.thehostingserver.co.uk'; from=<info@example.com> to=<eric@mydomain.com> proto=ESMTP helo=<server.thehostingserver.co.uk> 理解这一点我有点麻烦. 1)为什么说“连接来自未知”?此IP明确解析为server.oovavoohosting.co.uk. (注意,其他传入连接确实与主机名一起显示) # nslookup 37.26.106.210 Server: 127.0.0.1 Address: 127.0.0.1#53 Non-authoritative answer: 210.106.26.37.in-addr.arpa name = server.oovavoohosting.co.uk. Authoritative answers can be found from: 106.26.37.in-addr.arpa nameserver = ns1.racksrv.com. 106.26.37.in-addr.arpa nameserver = ns2.racksrv.com. ns1.racksrv.com internet address = 37.26.104.214 ns2.racksrv.com internet address = 37.26.105.214 2)如果上述IP解析为server.oovavoohosting.co.uk,它从哪里获取主机名server.thehostingserver.co.uk?我可以看到这个主机名不存在,这就是为什么它返回一个SERVFAIL,我只是不知道它来自哪里. 解决方法
1)日志中的未知意味着IP的反向名称(server.oovavoohosting.co.uk)不会转发解析为原始IP地址.
2)看起来远程服务器将自己引入server.thehostingserver.co.uk.查看日志,我看到helo = server.thehostingserver.co.uk,我将其解释为服务器在SMTP问候语中使用的内容. 为什么在SPF测试中使用这个我直到on wikipedia看起来都不知道,现在看来这是一个强制性测试:
总之,服务器连接到您的邮件服务器并表示 HELO server.thehostingserver.co.uk 在它的问候.然后,您的服务器查找SPF记录,而没有找到此服务器的DNS条目拒绝邮件. (编辑:李大同) 【声明】本站内容均来自网络,其相关言论仅代表作者个人观点,不代表本站立场。若无意侵犯到您的权利,请及时与联系站长删除相关内容! |