Re: Reverse DNS with MX records

"Micke" <Micke@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message news:DDB84831-6BF4-4C9D-9105-64C8678A09C7@xxxxxxxxxxxxxxxx
Hi!

I have been searching for some time to find my problem with reverse DNS. Now
I will turn to the expertise here.

We have a DNS that answer on external requests, a Windows 2003 server.
The DNS holds three Zones XYZ.se zyx.se and [homepage].se. It also have a
reverse lookup zone that is a part of a C net (80-28.19.151.193.in-addr.arpa)
(made-up address).
The problem that keeps coming up is; "553 Your computer does not have a
hostname, you must AUTHenticate" when I send mail to some domains.
What I have understand is that this has something to do with reverse lookup.
If I run a DNS test (www. intodns.com) I’ll get:
"ERROR: No reverse DNS (PTR) entries. The problem MX records are:
85.19.151.193.in-addr.arpa -> no reverse (PTR) detected
84.19.151.193.in-addr.arpa -> no reverse (PTR) detected
You should contact your ISP and ask him to add a PTR record for your ips"

If I look in my reverse zone I have 85 pointer (PTR) mail.XYZ.se and 84
pointer (PTR) mail2.XYZ.se. In my forwards zone I have: (same as parent
folder) Mail exchanger (MX) [10] mail.XYZ.se and (same as parent folder) Mail
exchanger (MX) [11] mail2.XYZ.se

Where shall I start looking?



Best Regards
Micke


Since you're hiding the IPs we can't do our own testing for you. It would have been a lot simpler.

Ok, to get this straight, you mean trying to send mail from your location to another location and you're getting an SMTP 553?
Is the reverse zone delegated to your DNS server from your ISP?
Public IPs belong to the ISP and are delegated from the registrar to the ISP.

For anything on the internet to lookup an IP to a name, it will ask the DNS servers that are SOA of the subnet. So what appears to be happening it is asking your ISP's DNS for an IP to name lookup, but none exist. You having a reverse zone on your server which has not been delegated the subnet, will never get queried.

Therefore the results at www.intodns.com would be accurate. You need to either ask your ISP to create reverse entries for your IPs or ask them to delegate the subnet. Usually the first is the common method whereas they may flatly deny the latter, depending on the ISP.


--
Regards,
Ace

This posting is provided "AS-IS" with no warranties or guarantees and
confers no rights.

Ace Fekay, MCSE 2003 & 2000, MCSA 2003 & 2000, MCSE+I, MCT,
MVP Microsoft MVP - Directory Services
Microsoft Certified Trainer

For urgent issues, you may want to contact Microsoft PSS directly. Please
check http://support.microsoft.com for regional support phone numbers.

Infinite Diversities in Infinite Combinations

.

Relevant Pages

  • Re: reverse DNS resolution...
    ... We've had the 10.x network working great at the office ... your DNS needs to be authoritative for both forward and reverse. ... IN PTR user1.vpn. ...
    (freebsd-questions)
  • Re: Reverse DNS
    ... My previous ISP only create a record in their domain as you ... more than just generic reverse DNS entries in a domain that they own. ... "HELO" or SMTP Server name in the Email configuration. ...
    (microsoft.public.windows.server.dns)
  • RE: [Full-disclosure] Re: Reverse dns (whether you want it or not)
    ... I would ask your ISP to give reverse domain delagation to your DNS servers. ...
    (Full-Disclosure)
  • Re: Usage Report show IP addr instead of computer names
    ... The reverse DNS look-up is only query DNS server, ... | the reverse lookups at 4:30, will that cause the Usage Report to identify ...
    (microsoft.public.windows.server.sbs)
  • Re: RDNS "servfail"
    ... Ask your ISP to set up a reverse lookup for your IP address. ... What is happening with DNS queries on your firewall: your firewall log should show what has been blocked. ... If the requests were actually raching my server, ...
    (microsoft.public.windows.server.dns)
Loading