View Single Post
  #3   (View Single Post)  
Old 28th October 2008
cajunman4life cajunman4life is offline
Real Name: Aaron Graves
Package Pilot
 
Join Date: May 2008
Location: Coolidge, Arizona
Posts: 203
Default

My net adapater is em0, but I got what you meant

Strange...

Code:
tcpdump: verbose output suppressed, use -v or -vv for full protocol decode
listening on em0, link-type EN10MB (Ethernet), capture size 96 bytes
06:03:04.089551 IP 10.9.0.1.54207 > 10.0.0.1.53: 37557+ PTR? 19.73.94.192.in-addr.arpa. (43)
06:03:04.209472 IP 10.0.0.1.53 > 10.9.0.1.54207: 37557 1/0/0 (73)
06:03:04.209801 IP 10.9.0.1.54646 > 10.0.0.1.53: 37558+ A? mx.freeshell.org. (34)
06:03:04.351025 IP 10.0.0.1.53 > 10.9.0.1.54646: 37558 1/0/0 A 192.94.73.19 (50)
06:03:04.722480 IP 10.9.0.1.50895 > 10.0.0.1.53: 37559+ MX? sdf.lonestar.org. (34)
06:03:04.807629 IP 10.0.0.1.53 > 10.9.0.1.50895: 37559 1/0/0 MX[|domain]
I sent myself an email from another place. I'm using pfsense as a router on a single board system and it's acting as a caching dns server. Maybe I'll change my DNS servers on this box to opendns to check that. But from the output above, it doesn't appear that RBL lookups are taking place (then again I'm no expert).

You're right, greylisting is very easy to spot in the mail logs... and it's gone

I have a cgi script that checks the mail logs for the last week and counts up the number of greylisted emails. I would help if I would check it occasionally, as it shows a big "0" which should have been a clue something wasn't working right (after all, not every email can be white-listed...).
__________________
I just saved a bunch of money on my car insurance by fleeing the scene of the accident!
Reply With Quote