section missed on dns lookup

hookie

• January 29, 2018 07:30

Hi all, I'm unable to send msgs to a domain (domain.cn) from a server... When dig its mailserver on port 25, I get all sections fine but "ADDITIONAL SECTION" (OPT PSEUDOSECTION / QUESTION SECTION / ANSWER SECTION / AUTHORITY SECTION) The following section might solve my problem: ;; ADDITIONAL SECTION: ce1.dns.com. 165331 IN A 121.12.104.123 ce1.dns.com. 165331 IN A 183.2.194.187 ce1.dns.com. 165331 IN A 218.66.171.187 ce1.dns.com. 165331 IN A 218.98.111.187 ce2.dns.com. 165331 IN A 183.2.194.188 ce2.dns.com. 165331 IN A 218.66.171.188 ce2.dns.com. 165331 IN A 218.98.111.188 ce2.dns.com. 165331 IN A 121.12.104.124 How can I add it to server? Thank you in advance!

• 

  cPanelMichael

  • January 31, 2018 16:58

  Hello, Could you clarify what you see in /var/log/exim_mainlog when attempting to send a message to that domain name? Thank you.

  0
• 

  hookie

  • February 02, 2018 11:24

  Hello Here is what I get in exim_mainlog: 2018-02-02 14:15:55 1ehaG3-0004Y3-4Z <= ='hostmaster@aaaa.com'>user@senderdomain.com H=([192.168.1.39]) [91.140.105.74]:55880 P=esmtpsa X=TLSv1.2:ECDHE-RSA-AES128-GCM-SHA256:128 CV=no A=dovecot_plain:user@senderdomain.com S=5047 id=29403f83-18cd-6d64-ac60-651e03ceb0d3@senderdomain.com T="test message" for recipient@domain.cn 2018-02-02 14:30:38 1ehaG3-0004Y3-4Z SMTP connection outbound 1517225438 1eg7e2-0002Wi-10 senderdomain.com recipient@domain.cn 2018-02-02 14:42:33 1ehaG3-0004Y3-4Z == recipient@domain.cn R=dkim_lookuphost T=dkim_remote_smtp defer (110): Connection timed out 2018-02-02 14:48:33 1ehaG3-0004Y3-4Z == recipient@domain.cn R=dkim_lookuphost defer (-1): host lookup did not complete Then the queue keeps sending "Connection timed out" for the next days... Thank you so much for your help!

  0
• 

  cPanelMichael

  • February 02, 2018 15:53

  Hello, It looks like a firewall rule (or a router rule implemented by your data center) on the cPanel server, or a firewall rule on the remote mail server is preventing the cPanel server from connecting to the remote mail server hosting the email for that domain name. You can verify this by running a command such as: telnet domain.tld 25
  Replace "domain.tld" with the actual domain name you are attempting to send the email to. The normal output should resemble this: # telnet domain.tld 25 Trying 1.2.3.4... Connected to domain.tld. Escape character is '^]'. 220-host.www.domain.tld ESMTP Exim 4.89_1 #1 Fri, 02 Feb 2018 10:52:40 -0600 220-We do not authorize the use of this system to transport unsolicited, 220 and/or bulk e-mail.
  Thank you.

  0
• 

  GrupoDSP.com

  • February 02, 2018 16:17

  Hi all, I'm unable to send msgs to a domain (domain.cn) from a server... When dig its mailserver on port 25, I get all sections fine but "ADDITIONAL SECTION" (OPT PSEUDOSECTION / QUESTION SECTION / ANSWER SECTION / AUTHORITY SECTION) The following section might solve my problem: ;; ADDITIONAL SECTION: ce1.dns.com. 165331 IN A 121.12.104.123 ce1.dns.com. 165331 IN A 183.2.194.187 ce1.dns.com. 165331 IN A 218.66.171.187 ce1.dns.com. 165331 IN A 218.98.111.187 ce2.dns.com. 165331 IN A 183.2.194.188 ce2.dns.com. 165331 IN A 218.66.171.188 ce2.dns.com. 165331 IN A 218.98.111.188 ce2.dns.com. 165331 IN A 121.12.104.124 How can I add it to server? Thank you in advance!

  
  Check the configuration of your firewall, many times similar cases happen because inside our Firewall ConfigServer Security & Firewall> the IP of the external server was being blocked, Also check the configuration of your firewall> Configuration> cc_deny, verify that you are not blocking an entire country and that the IP may be in that range of IPs, Another alternative is to place the IP in the white list of your firewall.

  0
• 

  hookie

  • February 02, 2018 18:39

  Hello, It looks like a firewall rule (or a router rule implemented by your data center) on the cPanel server, or a firewall rule on the remote mail server is preventing the cPanel server from connecting to the remote mail server hosting the email for that domain name. You can verify this by running a command such as: telnet domain.tld 25
  Replace "domain.tld" with the actual domain name you are attempting to send the email to. The normal output should resemble this: # telnet domain.tld 25 Trying 1.2.3.4... Connected to domain.tld. Escape character is '^]'. 220-host.www.domain.tld ESMTP Exim 4.89_1 #1 Fri, 02 Feb 2018 10:52:40 -0600 220-We do not authorize the use of this system to transport unsolicited, 220 and/or bulk e-mail.
  Thank you.

  
  Yes, it was the Firewall!!! Thank you very much!

  0
• 

  hookie

  • February 02, 2018 18:42

  Check the configuration of your firewall, many times similar cases happen because inside our Firewall ConfigServer Security & Firewall> the IP of the external server was being blocked, Also check the configuration of your firewall> Configuration> cc_deny, verify that you are not blocking an entire country and that the IP may be in that range of IPs, Another alternative is to place the IP in the white list of your firewall.

  
  Exactly this! Forgot I've blocked that country in the past due to spam mails!!! Many thanks!!!!

  0
• 

  cPanelMichael

  • February 02, 2018 19:31

  Hello, I'm glad to see the issue is now solved. Thank you for sharing the outcome.

  0

Please sign in to leave a comment.