LinuxQuestions.org
LinuxAnswers - the LQ Linux tutorial section.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Networking
User Name
Password
Linux - Networking This forum is for any issue related to networks or networking.
Routing, network cards, OSI, etc. Anything is fair game.

Notices

Reply
 
Search this Thread
Old 06-07-2004, 04:59 AM   #1
Bjorkli
Member
 
Registered: Jul 2003
Location: Norway
Posts: 65

Rep: Reputation: 15
Question Sendmail relay denied. PTR or IP lookup failure.


Hi. I have Fedora Core 1, and I think that my mail server is allmost setup right. I have a fixed IP with an ISP, and bought a domain (myfamilyname.com) where I set the MX records pointing to mail.myfamilyname.com.

From the local area network all works. I can send to hotmail, receive from any machine on the Local Area Network etc.
Also my pop works. I can receive my mail using windows outlook express from work.

But the problem is when trying to use the mail server from work (150.40.40.100, fixed IP with mywork.com as domain) or my brothers computer (he uses bluecom.no as ISP, and don't have a fixed IP or a domain. This day the IP was 200.60.40.30) . The logs give me the following (first from my brothers place, then from work):

Quote:
Jun 6 12:00:38 linux sendmail[7960]: i56A0aLj007960: ruleset=check_rcpt, arg1=<somename@hotmail.com>, relay=[200.60.40.30], reject=550 5.7.1 <somename@hotmail.com>... Relaying denied. IP name lookup failed [200.60.40.30]

Jun 7 10:13:53 linux sendmail[12848]: i578DrLj012848: ruleset=check_rcpt, arg1=<my_name@hotmail.com>, relay=[150.40.40.100], reject=450 4.7.1 <my_name@hotmail.com>... Relaying temporarily denied. Cannot resolve PTR record for 150.40.40.100
From these newsgroups, I got a little confused. Some says I have lists the IP address in /etc/mail/relay-domains or /etc/mail/access (or maybe both??). This would fix sending mail from work, which has an fixed IP. Right?

But what about sending mail from my brother, where the IP changes often. I gave him an account called brothersname@myfamilyname.com and he can send to users of my system (@myfamilyname.com), and can receive via pop from anyone, but cannot send to, say, hotmail as seen in the log above. Can I insert bluecom.no in either "relay-domains" or "access" so that he can mail too. Or is it another way of so that he can send mails using my server and domain (that don't fail any junk mail filters and won't make my server an open relay)? Or can I use the linux username and password somehow to authenticate that it is him and none other trying to relay a mail via my system?

Hope you can help
 
Old 06-09-2004, 02:59 PM   #2
Bjorkli
Member
 
Registered: Jul 2003
Location: Norway
Posts: 65

Original Poster
Rep: Reputation: 15
Found a couple of solutions, and now it works.

Apparently the file /etc/mail/access is alpha and omega when dealing with sendmail relay. A button called "spam" in webmin (for RedHat and Fedora anyway). But this only works good with fixed IP addresses (not any good for dial ups). An even better way is to use the AUTH features of the latest sendmail version (8.12.xx). All this was explained at sendmail.org (by an expert, so a newbie like me had a hard time following (and then discovering RedHat had allready done most of it anyway, so it was no need for me to do much at all. )) All I had to do was follow this user guide (For RedHat and Fedora users):

http://www.joreybump.com/code/howto/smtpauth.html

Another guide highly recommended (but I allready had my system working, so I have not tested it):

http://www.simpaticus.com/linux/howt...UTH-HOWTO.html

I was thinking about encrypting the pop or imap too, but then this was posted:

Quote:
"Ironically, your brother isn't a security concern, since you can't "sniff" the internet. He could send his username and password to your server in plain text, and it would be completely secure. The only place it could be sniffed is on your network or his. Which would require either his machine or your server to already be compromised (or at least a machine on either network). If this is the case (hijacked machines on the LAN) usernames and passwords are the least of your concerns.".
Since neither my brothers "network" or my network is being used by others then me or him (we both use ADSL ISP with one to two computers), this would not be an concern, so I guess pop3 using normal port 110 would suffice. And I have heard MS outlook express and POP3 have troubles enough with the certificate we create using one of the methods above, so why push my luck...
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
Host lookup failure with Sendmail MattiasLofgren Slackware 4 05-14-2009 04:00 PM
Sendmail.... Relaying denied. IP name lookup failed Krishna2412 Linux - Security 6 06-21-2005 02:01 AM
sendmail relay access denied techrolla Linux - Networking 5 06-11-2005 02:59 PM
Sendmail (with TLS) relay denied freealx Linux - General 1 03-12-2005 05:10 PM
sendmail: host name lookup failure GabeF Linux - Networking 3 12-04-2002 09:00 AM


All times are GMT -5. The time now is 01:05 PM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
identi.ca: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration