|
I've recently run into a situation where the reverse lookup failed on an incoming connection.
In looking into it, the sender was valid, although the MX records point to their internal nameservers. The PTR record for the incoming IP does not resolve by querying my DNS server, my forwarders, or the root servers. However, by querying one of the listed nameservers for the IP/MX record in question, there is a PTR record for the IP that points to one of their nameservers. Am I making any sense?
The host IP in question is 12.2.45.130 and belongs to a VERY large organization (Gates Arrow.)
FWIW, I use DNS Export Pro to perform zone lookups, etc.
I hesitate to disable the reverse lookup as it alone kills about half my spam per day. As it is now, I have to keep a close eye on the quarantine and I'm not in the shop all the time...I may decide to put the domain in question ion my white list but prefer not to if at all possible.
I've seen discussion that recommends admins remove their "direct" PTR-to-MX host records to reduce spam on their side. Seems to me that they would then see alot of undeliverables given the expanded use of tools like Spamfilter and others by us all.
Is Spamfilter prone to problems when dealing with complex zone records? Is the problem on their side? Is there a problem with *my* DNS lookups?
Thanks,
Russ
|