From nobody Fri May 19 04:43:21 2023 X-Original-To: questions@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4QMvNz42sLz4BRLK for ; Fri, 19 May 2023 04:43:31 +0000 (UTC) (envelope-from vagabond@blackfoot.net) Received: from mx1.blackfoot.net (mx1.blackfoot.net [216.14.232.10]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-SHA384 (256/256 bits)) (Client CN "mx1.blackfoot.net", Issuer "RapidSSL Global TLS RSA4096 SHA256 2022 CA1" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4QMvNz0z1Cz3LNj for ; Fri, 19 May 2023 04:43:30 +0000 (UTC) (envelope-from vagabond@blackfoot.net) Authentication-Results: mx1.freebsd.org; none Received: from bmfe3.blackfoot.net ([66.109.128.163]) by mx1.blackfoot.net ({9cf3d135-7b6e-4041-a57b-61a932741f4e}) via TCP (outbound) with ESMTP id 20230519044322811_0000; Thu, 18 May 2023 22:43:22 -0600 X-RC-FROM: Received: from webmail.blackfoot.net (unknown [192.168.100.133]) by bmfe3.blackfoot.net (Postfix) with ESMTP id E6EBC80F16; Thu, 18 May 2023 22:43:20 -0600 (MDT) List-Id: User questions List-Archive: https://lists.freebsd.org/archives/freebsd-questions List-Help: List-Post: List-Subscribe: List-Unsubscribe: Sender: owner-freebsd-questions@freebsd.org X-BeenThere: freebsd-questions@freebsd.org MIME-Version: 1.0 Date: Thu, 18 May 2023 21:43:21 -0700 From: vagabond To: "Dan Mahoney (Ports)" Cc: Dewayne , questions@freebsd.org Subject: Re: sendmail error, "MX list for mydomain.com points back to server.mydomain.com" In-Reply-To: References: <303e35e4d89e68dcd9863239dcda568e@blackfoot.net> <30b97aa95162c163c1781ba1a0fa8e25@blackfoot.net> <15AF7ED7-BBD9-428D-939F-4AA5B349C578@gushi.org> <66db9ba3bd66fcc56affdbf7a2621021@blackfoot.net> <2f8bca59462afe206043bea73241bbf2@blackfoot.net> User-Agent: Roundcube Webmail/1.4.11 Message-ID: <3da26eb675ecd5d10947fb53fcf3524a@blackfoot.net> X-Sender: vagabond@blackfoot.net Content-Type: text/plain; charset=UTF-8; format=flowed Content-Transfer-Encoding: 8bit X-MAG-OUTBOUND: blackfoot.redcondor.net@66.109.128.163/32 DKIM-Signature: a=rsa-sha256; b=K1PSAlGH8ezmqvedrU6LX7nYCGAvmOdfNw4AxhmX2hrot8C87+8KjkltcsdrJX1FfIWIZlOiRe9ksGiUS+/5F/0C9yKzKER5UupQjoVI903wFuk2TAxexVjcMCrfcjCrJsLNiAj1TLV/6eJ6zglhaHZGcQYINDm6I/SdxEMHxJKyajLxX1L4k4JhUAigE0WDxWLKViPXMUC9PcwHHjPrAko9IpYJLkhPqBwM/1E39axtkFGaU4LfGbUUJ/Ga6GQ+q7xKFb6TAsStn/IrUiBJbynksX2JwNTaD9sbs8kTG38fDWvgTSspnQc80IbDx/V9Fi5XDnBLnq/s0+fmtC5LyA==; s=ew; c=relaxed/relaxed; d=blackfoot.net; v=1; bh=OBRRBwhhYzZjInZoZ/ByWpsUtYOFOSfyBHUcbjCKtTs=; h=from:to:message-id; X-Rspamd-Queue-Id: 4QMvNz0z1Cz3LNj X-Spamd-Bar: ---- X-Spamd-Result: default: False [-4.00 / 15.00]; REPLY(-4.00)[]; ASN(0.00)[asn:21947, ipnet:216.14.224.0/19, country:US] X-Rspamd-Pre-Result: action=no action; module=replies; Message is reply to one we originated X-ThisMailContainsUnwantedMimeParts: N On 2023-05-18 19:44, Dan Mahoney (Ports) wrote: > Do you see it? It’s subtle. > > Your system is asking your own 127.0.0.1 DNS for the AAAA for > ns.dreamchaser.org (because sendmail attempts ipv6 before it attempts > ipv4) ok. > You forgot a trailing . in your NS records. Your DNS kicks back that > “hey, I don’t know about ns.dreamchaser.org” so it gives you an SOA > record. (answer = 0, authority = 1) > > is doing lookups for ns.dreamchaser.org.dreamchaser.org because of > that. > > Post your zone file? Staring hard, but I still don't see it. This is a cut down one (removed comments and other hosts) which still fails. secondary names have been changed. # cat dreamchaser.org.zone ;$ORIGIN DREAMCHASER.ORG. $TTL 3600 ; default expiration time of resources w/o their own TTL spec @ IN SOA ns.dreamchaser.org. root.dreamchaser.org. ( 2023051801 ; Serial number of this data 14400 ; Refresh delta, seconds (4 hrs (recommended)) 3600 ; Retry delta, if refresh fails, seconds (1 hr, recommended) 3600 ; Expire, seconds (1 hrs) 600 ) ; Minimum time-to-live, seconds (10 min, for testing) IN NS ns.dreamchaser.org. IN NS ns.secondary.org. IN NS ns.other-secondary.com. dreamchaser.org. IN A 66.109.141.57 ns IN A 66.109.141.57 dreamchaser.org. IN MX 10 ns.dreamchaser.org. dreamchaser.org. IN SPF "v=spf1 +mx -all" dreamchaser.org. IN TXT "v=spf1 +mx -all" > Here’s what I think it happening: (Have a reference here: > > Your system is looking at its own rdns/fdns, and discovering that its > hostname is ns.dreamchaser.org.dreamchaser.org (probably because your > primary IP is not present in /etc/hosts). It attempts to deliver to > itself, and finds that mail SHOULD come to it (since your > misconfiguration says your MX is ns.dreamchaser.org.dreamchaser.org > AND that’s what you resolve to, but ns.dreamchaser.org.dreamchaser.org > isn’t in /etc/mail/local-host-names. # cat /etc/hosts ::1 localhost.dreamchaser.org. localhost 127.0.0.1 localhost.dreamchaser.org. localhost 66.109.141.57 ns.dreamchaser.org. ns > * Put your primary addresses in /etc/hosts — there are numerous > documented cases of sendmail ignoring /etc/hosts but it *might* help > clue it in to your proper hostname at least. see above > * Fix your forward and reverse DNS > * (and in fact, stop faking it out. Fix it at your hosting provider. > if your hosting provider is taking this long, find another one) Not sure what you mean by faking it out? My isp is my only choice. Gary