Mailing List CGatePro@mail.stalker.com Message #106539
From: Tom Rymes <trymes@rymes.com>
Subject: Re: Blacklist by DNS Name
Date: Fri, 18 Aug 2017 17:21:54 -0400
To: CommuniGate Pro Discussions <CGatePro@mail.stalker.com>
On 08/18/2017 5:01 PM, Tom Rymes wrote:
On 08/18/2017 2:39 PM, Technical Support wrote:
Hello,

On 2017-08-17 15:48 , Gib Henry wrote:
In “Blacklisted IPs/Detect Blacklisted by DNS Name,” I have blacklisted ‘*.faith’. However, it appears not to be working:

16:04:11.507 2 SMTPI-001214(warkesth.faith) [3010919] received, 7832 bytes

I also tried ‘*.*.faith’ but that doesn’t work either.  Am I missing something?  Cheers,

The above log record means that warkesth.faith resolved to the IP from which teh connection was made, but that does not guarantee the reverse: that PTR record for the source IP resolves to that host name, which is necessary for blocking by DNS name.

Perhaps what you are trying to achieve is what we have done using the router (based on advice received on this list, I think). We have these entries in the "Settings:Router" page, and they are designed, if memory serves, to prevent receiving mail from hosts that are using these domains.

*.info = ERROR         ; blacklist .info domains.
*.party = ERROR        ; blacklist .party domains.
*.faith = ERROR        ; blacklist .faith domains.
*.review = ERROR       ; blacklist .review domains.
*.xyz= ERROR           ; blacklist .xyz domains.
*.uno = ERROR          ; blacklist .uno domains.
*.science = ERROR      ; blacklist .science domains.
*.webcam = ERROR       ; blacklist .webcam domains.
*.date = ERROR         ; blacklist .date domains.
*.click = ERROR        ; blacklist .click domains.
*.work = ERROR         ; blacklist .work domains.
*.club = ERROR         ; blacklist .club domains.
*.country = ERROR      ; blacklist .country domains.
*.cricket = ERROR      ; blacklist .cricket domains.
*.link = ERROR         ; blacklist .link domains.
*.mobi = ERROR         ; blacklist .mobi domains.
*.ninja = ERROR        ; blacklist .ninja domains.
*.rocks = ERROR        ; blacklist .rocks domains.
*.space = ERROR        ; blacklist .space domains.
*.top = ERROR          ; blacklist .top domains.
*.website = ERROR      ; blacklist .website domains.

It's been a long time since I implemented that, but I'm pretty sure that's what it does, and that it works as expected.

Can anyone confirm or refute that?

Tom

Replying to my own message again, but I just went through my junk e-mail folder and added .stream and .loan to the above list. I have had no complaints from legitimate senders, and if we did, I could add them as a whitelisted domain, I think.

Tom
Subscribe (FEED) Subscribe (DIGEST) Subscribe (INDEX) Unsubscribe Mail to Listmaster