FW: [PLUG] BIND zone oddity causing SendMail 451 Name server timeout errors?

["kaze" <kaze@voicenet.com>]

--> --> From: George Theall
--> --> Also, what sort of activity do your named logs show from gtcr.com?
-->
--> Good question!

[root@IMDMZDNS1 log]# tail messages -n 15
Jul 30 22:10:20 IMDMZDNS1 named[1636]: lame server resolving
'essentialmarketing.biz' (in 'essentialmarketing.BIZ'?): 219.153.0.218#53
Jul 30 22:26:45 IMDMZDNS1 named[1636]: lame server resolving
'myresponder.biz' (in 'myresponder.BIZ'?): 219.153.0.218#53
Jul 30 22:27:59 IMDMZDNS1 named[1636]: lame server resolving
'myresponder.biz' (in 'myresponder.BIZ'?): 219.153.0.218#53
Jul 30 22:44:32 IMDMZDNS1 named[1636]: lame server resolving
'goldminers.biz' (in 'goldminers.BIZ'?): 219.153.0.218#53
Jul 30 22:52:56 IMDMZDNS1 named[1636]: lame server resolving
'16.45.99.61.in-addr.arpa' (in '45.99.61.in-addr.arpa'?): 210.117.65.100#53
Jul 30 22:52:57 IMDMZDNS1 named[1636]: lame server resolving
'16.45.99.61.in-addr.arpa' (in '45.99.61.in-addr.arpa'?): 210.117.65.2#53
Jul 30 22:53:02 IMDMZDNS1 named[1636]: lame server resolving
'16.45.99.61.in-addr.arpa' (in '45.99.61.in-addr.arpa'?): 210.117.65.100#53
Jul 30 22:53:02 IMDMZDNS1 named[1636]: lame server resolving
'16.45.99.61.in-addr.arpa' (in '45.99.61.in-addr.arpa'?): 210.117.65.2#53
Jul 30 23:00:59 IMDMZDNS1 named[1636]: lame server resolving
'fastestresponse.net' (in 'fastestresponse.NET'?): 219.153.0.218#53
Jul 30 23:50:05 IMDMZDNS1 named[1636]: lame server resolving
'myresponder.biz' (in 'myresponder.BIZ'?): 219.153.0.218#53
Jul 31 00:20:18 IMDMZDNS1 named[1636]: lame server resolving
'193.131.240.61.in-addr.arpa' (in '131.240.61.in-addr.arpa'?):
211.94.33.193#53
Jul 31 00:20:20 IMDMZDNS1 last message repeated 2 times
Jul 31 00:57:06 IMDMZDNS1 named[1636]: lame server resolving
'essentialmarketing.biz' (in 'essentialmarketing.BIZ'?): 219.153.0.218#53
Jul 31 02:20:16 IMDMZDNS1 named[1636]: zone 1.1.10.in-addr.arpa/IN: refresh:
unexpected rcode (SERVFAIL) from master 10.10.10.213#53
Jul 31 02:31:47 IMDMZDNS1 sshd(pam_unix)[15849]: session opened for user
root by (uid=0)
[root@IMDMZDNS1 log]#
[root@IMDMZDNS1 log]# egrep -i gtcr.com messages
[root@IMDMZDNS1 log]#

Actually not sure where / what I'm looking for. Sounds like a great idea
though. No hosts are set to use these DNS servers, so in this log
goldminers.biz and essentialmarketing.biz are the clients hitting the DNS?
So if gtcr.com's MTA is using it's ISP's DNS servers which are in turn
recursively(?) querying my DNS then I wouldn't necessarily see gtcr.com,
right? Is there a different log file to look at?

- Zake

___________________________________________________________________________
Philadelphia Linux Users Group         --        http://www.phillylinux.org
Announcements - http://lists.phillylinux.org/mailman/listinfo/plug-announce
General Discussion  --   http://lists.phillylinux.org/mailman/listinfo/plug