Results 1 to 9 of 9
  1. #1
    Master Untangler
    Join Date
    Dec 2010
    Location
    Echuca, Victoria, Australia
    Posts
    278

    Default ISP has no DNS Servers

    Hi,

    I have a bit of an odd one.
    We have a client who is using a bonding service for internet due to speed issues.
    The issue is this bonding company does not have a dns service, and we are told to use a public dns service.

    The issue with that being spamblocker.

    What DNS server should I use?

  2. #2
    Untangler jcoffin's Avatar
    Join Date
    Aug 2008
    Location
    Sunnyvale, CA
    Posts
    8,163

    Default

    You may have to get an external DNS service that supports SPAM lookups.
    Attention: Support and help on the Untangle Forums is provided by
    volunteers and community members like yourself.
    If you need Untangle support please call or email support@untangle.com

  3. #3
    Master Untangler
    Join Date
    Dec 2010
    Location
    Echuca, Victoria, Australia
    Posts
    278

    Default

    Whats the easiest way to test if the DNS Server supports SPAM lookups.

  4. #4
    Untangle Ninja sky-knight's Avatar
    Join Date
    Apr 2008
    Location
    Phoenix, AZ
    Posts
    23,740

    Default

    https://wiki.untangle.com/index.php/...k_DNSBL_Access

    And honestly, if you're using Spam Blocker you don't want to be using ISP DNS anyway. Most of them get booted too.

    Best option is your own DNS service in the cloud somewhere, that only you use. That way you've got your own quota of free lookups everyday. The linked script will test the DNS servers on External, find something that works, then you can start kicking the appropriate domain lookups to that IP while External points at Google or something.
    Rob Sandling, BS:SWE, MCP
    NexgenAppliances.com
    Phone: 866-794-8879 x201
    Email: support@nexgenappliances.com

  5. #5
    Untangler jcoffin's Avatar
    Join Date
    Aug 2008
    Location
    Sunnyvale, CA
    Posts
    8,163

    Default

    ~ # dig +short 2.0.0.127.zen.spamhaus.org
    Response should be:
    127.0.0.4
    127.0.0.2
    127.0.0.10
    Attention: Support and help on the Untangle Forums is provided by
    volunteers and community members like yourself.
    If you need Untangle support please call or email support@untangle.com

  6. #6
    Master Untangler
    Join Date
    May 2008
    Posts
    970

    Default

    Maybe the script could use an update?

    Code:
    ~ # curl -k http://download.untangle.com/patches/generic/check_spam_health.sh | bash
      % Total    % Received % Xferd  Average Speed   Time    Time     Time  Current
                                     Dload  Upload   Total   Spent    Left  Speed
    100  2380  100  2380    0     0   7436      0 --:--:-- --:--:-- --:--:--  7460
    
    Testing dnsmasq ...
    [127.0.0.1] : SORBS       passed
    [127.0.0.1] : SpamCop       passed
    [127.0.0.1] : SpamHaus       passed
    [127.0.0.1] : SURBL       passed
    [127.0.0.1] : URIBL       passed
    [127.0.0.1] : URIBL       passed
    [127.0.0.1] : DNSWL       passed
    [127.0.0.1] : DNSWL       passed
    [127.0.0.1] : IADB       passed
    
    Analyzing mail.log ...
    grep: /var/log/mail.log: No such file or directory
    bash: line 60: [: -lt: unary operator expected
    Results:  passed ( results)
    grep: /var/log/mail.log: No such file or directory
    bash: line 67: [: -eq: unary operator expected
    RAZOR:    passed ( results)
    grep: /var/log/mail.log: No such file or directory
    bash: line 75: [: -eq: unary operator expected
    bash: line 77: [[: /2: syntax error: operand expected (error token is "/2")
    BAYES:    passed ( results)

  7. #7
    Untangle Ninja sky-knight's Avatar
    Join Date
    Apr 2008
    Location
    Phoenix, AZ
    Posts
    23,740

    Default

    Sure looks like it...
    Rob Sandling, BS:SWE, MCP
    NexgenAppliances.com
    Phone: 866-794-8879 x201
    Email: support@nexgenappliances.com

  8. #8
    Untangle Ninja dwasserman's Avatar
    Join Date
    Jun 2008
    Location
    Argentina
    Posts
    4,319

    Default

    The 12 (or 13) root hints support this? Question from the most absolute unknow.
    The world is divided into 10 kinds of people, who know binary and those not

  9. #9
    Untangle Ninja sky-knight's Avatar
    Join Date
    Apr 2008
    Location
    Phoenix, AZ
    Posts
    23,740

    Default

    Yes... but... the lists keep tabs on the IP address of the resolver that does the requesting. Once that resolver has used them too much it's black listed until tomorrow.

    So any publicly available DNS resolver is going to give you fits... That's why when I was using Spam blocker I had domain DNS rules for Spamhaus, URIBL, and DNSWL to kick them to a dedicated DNS server I ran in the cloud. That way I had my own pool of lookups to use every day.
    Rob Sandling, BS:SWE, MCP
    NexgenAppliances.com
    Phone: 866-794-8879 x201
    Email: support@nexgenappliances.com

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  

SEO by vBSEO 3.6.0 PL2