domain-name-system – 无法解释邮件日志DNS错误

发布时间：2020-12-14 23:39:17 所属栏目：资源来源：网络整理

导读：我在Debian上有一个postfix邮件服务器.我的一位客户告诉我,他们无法向我发送电子邮件,而且他们的邮件服务器似乎有问题.我想回答他们的实际问题,但我无法弄清楚这一点.这是在反弹电子邮件中： The address to which the message has not yet been delivered i

我在Debian上有一个postfix邮件服务器.我的一位客户告诉我,他们无法向我发送电子邮件,而且他们的邮件服务器似乎有问题.我想回答他们的实际问题,但我无法弄清楚这一点.这是在反弹电子邮件中：

The address to which the message has not yet been delivered is:

eric@mydomain.com
Delay reason: SMTP error from remote mail server after RCPT
TO::
host dog.myhostname.com [{server_ip}]: 450 4.7.1
:
Recipient address rejected: SPF-Result=server.thehostingserver.co.uk:
'SERVFAIL' error on DNS 'TXT' lookup of 'server.thehostingserver.co.uk'

检查/var/log/mail.log文件,我看到以下行与退回电子邮件一致：

Dec  6 10:32:16 dog postfix/smtpd[366]: connect from unknown[37.26.106.210]
Dec  6 10:32:16 dog postfix/smtpd[366]: setting up TLS connection from unknown[37.26.106.210]
Dec  6 10:32:16 dog postfix/smtpd[366]: Anonymous TLS connection established from unknown[37.26.106.210]: TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)
Dec  6 10:32:18 dog postfix/policy-spf[421]: Policy action=DEFER_IF_PERMIT SPF-Result=server.thehostingserver.co.uk: 'SERVFAIL' error on DNS 'TXT' lookup of 'server.thehostingserver.co.uk'
Dec  6 10:32:18 dog postfix/smtpd[366]: NOQUEUE: reject: RCPT from unknown[37.26.106.210]: 450 4.7.1 <eric@mydomain.com>: Recipient address rejected: SPF-Result=server.thehostingserver.co.uk: 'SERVFAIL' error on DNS 'TXT' lookup of 'server.thehostingserver.co.uk'; from=<info@example.com> to=<eric@mydomain.com> proto=ESMTP helo=<server.thehostingserver.co.uk>

理解这一点我有点麻烦.

1)为什么说“连接来自未知”？此IP明确解析为server.oovavoohosting.co.uk. (注意,其他传入连接确实与主机名一起显示)

# nslookup 37.26.106.210
Server:         127.0.0.1
Address:        127.0.0.1#53

Non-authoritative answer:
210.106.26.37.in-addr.arpa      name = server.oovavoohosting.co.uk.

Authoritative answers can be found from:
106.26.37.in-addr.arpa  nameserver = ns1.racksrv.com.
106.26.37.in-addr.arpa  nameserver = ns2.racksrv.com.
ns1.racksrv.com internet address = 37.26.104.214
ns2.racksrv.com internet address = 37.26.105.214

2)如果上述IP解析为server.oovavoohosting.co.uk,它从哪里获取主机名server.thehostingserver.co.uk？我可以看到这个主机名不存在,这就是为什么它返回一个SERVFAIL,我只是不知道它来自哪里.

解决方法

1)日志中的未知意味着IP的反向名称(server.oovavoohosting.co.uk)不会转发解析为原始IP地址.

2)看起来远程服务器将自己引入server.thehostingserver.co.uk.查看日志,我看到helo = server.thehostingserver.co.uk,我将其解释为服务器在SMTP问候语中使用的内容.

为什么在SPF测试中使用这个我直到on wikipedia看起来都不知道,现在看来这是一个强制性测试：

For an empty Return-Path as used in error messages and other
auto-replies,an SPF check of the HELO-identity is mandatory.

With a
bogus HELO identity the result NONE would not help,but for valid host
names SPF also protects the HELO identity. This SPF feature was always
supported as an option for receivers,and later SPF drafts including
the final specification recommend to check the HELO always.

总之,服务器连接到您的邮件服务器并表示

HELO server.thehostingserver.co.uk

在它的问候.然后,您的服务器查找SPF记录,而没有找到此服务器的DNS条目拒绝邮件.

（编辑：李大同）

【声明】本站内容均来自网络，其相关言论仅代表作者个人观点，不代表本站立场。若无意侵犯到您的权利，请及时与联系站长删除相关内容!