sendmail/postfix dns issue...

Hi,

I'm having trouble figuring out why my smtpd keeps on hitting one of my dns servers. I removed the dns entry from the hosts file and the resolve.cfg file. When I tail the message file, I constantly see failed request to the destination dns. Is there another place the dns entry might be inserted?

--john

By "hitting" do you mean "attempting to do recursive DNS lookups against"?

What DNS entry? Do you mean the nameserver entry in /etc/resolv.conf?

Which message file? Please provide unedited samples from this file that illustrate the problem you're having.

Your DNS resolvers are defined in /etc/resolv.conf. Various applications on your system will use the nameserver entries in this file to perform DNS lookups. (Exception: dig and other DNS diagnostic tools can be instructed to send their queries directly to certain DNS servers.)

When I do netstat -uap, I can see the following entry:
udp 0 0 mailserver.c:40794 192.168.0.50:domain ESTABLISHED 26945/smtpd

The 192.168.0.50 is one of 3 name servers I have. How do I stop smtpd from looking at the above DNS?

--john

Assuming you've removed it from /etc/resolv.conf, you could try restarting smtpd

yeah... I already removed it from the resolv.conf. I even rebooted the server. I'm really stuck on this becuase netstat shows me that it's still looking and my /va/log/message is show all sorts of errors because that box no longer exist. Any other ideas why it's still looking at that IP?

--john

You'll have to post some of the actual log file messages if you want help.

What SMTP server are you running?

Here is the error in the /var/log/message. It's erroring out because the PIX is denying it. I need to figure out why smtpd and smtp is looking up the one deleted DNS entry. Feel free to ask for any other info because I'm really stuck at this point.

Dec 8 18:50:02 192.168.0.1 %PIX-3-106011: Deny inbound (No xlate) udp src inside:172.25.0.13/46205 dst inside:192.168.0.50/53

--john

What SMTP server are you running?

"smtpd" is a generic name for an SMTP daemon. All MTA's (qmail, postfix, sendmail) have an smtpd.

sorry, I forgot to include that info.

I'm running PostFix.

--john

--> alexgreg... Any other ideas why it's still hitting the DNS server?

--john

This bit me in the *** for a couple days. Postfix has it's own resolv.conf. Try /var/spool/postfix/etc/resolv.conf.