Re: 1 minute pause on sendmail login

From: Les Mikesell <lesmikesell@xxxxxxxxx>
Date: Thu, 22 Dec 2005 12:54:06 -0600

On Thu, 2005-12-22 at 03:29, Andy Pieters wrote:
> Hi
> > Sendmail will do a reverse DNS lookup for the IP address of the
> > connection to put the name in the logs. Apparently this
> > doesn't work for the address you are testing from and you
> > wait for a timeout. Perhaps the delegated DNS server is
> > blocked by a firewall that drops the packets. Likewise there
> > is an IDENT query for the owner of the socket, but those
> > timeouts are usually faster.
> >
>
> It seems to happen with *everyone* who tries to connect outside of the LAN.
> Reason enough for most MTA's to abandon the sending of the message and so I'm
> forced to do a temporary mail forwarding.
>
> Interstingly enough, there is a caching dns server living on the same host as
> the mail server, and the dns server is used troughout the LAN. The
> mailserver itself has "nameserver 127.0.0.1" in its resolv.conf file
>
> I went over the sendmail.mc file but couldn't find anything interesting
> pertaining this issue.
>
> Looking at maillog I see the connection being logged but nothing which can
> help me solve this problem.
>
> Anyone have any ideas?

How well does the nameserver work, and are there any firewalls
between the connecting machines and the mail server? Note that
a firewall that rejects packets with an 'ICMP denied' message
will not cause a problem like one that silently discards packets
leaving both end in a retry/timeout state. From the mailserver
try doing an nslookup on the IP address of a remote site
that exhibits the problem. For example
time nslookup 129.42.18.99
should take a fraction of a second of real time.

You can fix the IDENT side with:
define(`confTO_IDENT', `0')dnl
in sendmail.mc. I think the default timeout for the ident
response is 30 seconds and the response is pretty useless.

--
Les Mikesell
lesmikesell@xxxxxxxxx

--
fedora-list mailing list
fedora-list@xxxxxxxxxx
To unsubscribe: https://www.redhat.com/mailman/listinfo/fedora-list

References:
- 1 minute pause on sendmail login
  - From: Andy Pieters
- Re: 1 minute pause on sendmail login
  - From: Les Mikesell
- Re: 1 minute pause on sendmail login
  - From: Andy Pieters

Prev by Date: Re: mail server
Next by Date: Re: Yum dependencies [still]
Previous by thread: Re: 1 minute pause on sendmail login
Next by thread: RHGB options???
Index(es):
- Date
- Thread

Relevant Pages

Re: Added router, lost web site
... Did your ISP create a DNS record for your FQDN? ... > really have a direct connection. ... > Internet connection information: ... > Preferred DNS server: someisp DNS server address ...
(microsoft.public.windows.server.sbs)
Re: CEICW & software updates...
... calling pdispPPPBag->QueryInterface. ... DNS returned ok. ... Call to Clearing DNS server entries on the LAN NIC returned ok. ... Ethernet adapter Server Local Area Connection: ...
(microsoft.public.windows.server.sbs)
Re: Internet connection wizard
... Ethernet adapter Local Area Connection: ... Connection-specific DNS Suffix. ... calling CNetCommit::ValidateRouterConnectionProperties. ... Call to Reading preferred DNS server IP returned ok. ...
(microsoft.public.windows.server.sbs)
Re: CEICW & software updates...
... I would suggest using Direct Broadband Connection. ... The DSL router does connect directly to the internet. ... >>> DNS returned ok. ... >>> Call to Clearing DNS server entries on the LAN NIC returned ok. ...
(microsoft.public.windows.server.sbs)
Re: CEICW & software updates...
... calling pdispPPPBag->QueryInterface (IPropertyPagePropertyBag, ... DNS returned ok. ... Call to Clearing DNS server entries on the LAN NIC returned ok. ... Ethernet adapter Server Local Area Connection: ...
(microsoft.public.windows.server.sbs)