Hi John,
thanks for your suggestions!
I changed the qmail 'me' file to show: ns02.choicenet.ne.jp.
Also, I added the following rules to my shorewall configuration:
# Additional DNS rules with source port 53
ACCEPT net fw tcp 53 53
ACCEPT net fw udp 53 53
ACCEPT fw net tcp 53 53
ACCEPT fw net udp 53 53
Here is the result of the manual smtp transacton:
linde:/etc/qmail# telnet gateway-r.comcast.net 25
Trying 204.127.198.26...
Connected to gateway-r.comcast.net.
Escape character is '^]'.
220 rwcrmxc15.comcast.net - Maillennium ESMTP/MULTIBOX rwcrmxc15 #375
EHLO ns02.choicenet.ne.jp
250-rwcrmxc15.comcast.net
250-7BIT
250-8BITMIME
250-DSN
250-HELP
250-NOOP
250-PIPELINING
250-SIZE 15728640
250-VERS V05.00c++
250 XMVP 2
mail from:<bplagge@choicenet.ne.jp>
250 ok
rcpt to:<xyz@comcast.net>
450 [TEMPFAIL] comcast.net requires valid sender domain
Enabled zone transfer to 216.148.227.126.
Second try:
linde:/service/axfrdns# telnet gateway-r.comcast.net 25
Trying 204.127.198.26...
Connected to gateway-r.comcast.net.
Escape character is '^]'.
220 rwcrmxc17.comcast.net - Maillennium ESMTP/MULTIBOX rwcrmxc17 #362
EHLO ns02.choicenet.ne.jp
250-rwcrmxc17.comcast.net
250-7BIT
250-8BITMIME
250-DSN
250-HELP
250-NOOP
250-PIPELINING
250-SIZE 15728640
250-VERS V05.00c++
250 XMVP 2
verbose
250 ok - long winded results
mail from:<bplagge@choicenet.ne.jp>
250 ok; need RCPT
rcpt to:<xyz@comcast.net>
450 [TEMPFAIL] comcast.net requires valid sender domain
Hm, after entering the rcpt to: the comcast.net server takes about 3
min. to come up with TEMPFAIL.
Is there anything else I can do?
It seems to me that the comcast.net server just doesn't resolve
'choicenet.ne.jp'.
So, I took as sender domain one of the Japanese domains:
linde:/home/general# telnet gateway-r.comcast.net 25
Trying 216.148.227.126...
Connected to gateway-r.comcast.net.
Escape character is '^]'.
220 rwcrmxc18.comcast.net - Maillennium ESMTP/MULTIBOX rwcrmxc18 #57
EHLO ns02.choicenet.ne.jp
250-rwcrmxc18.comcast.net
250-7BIT
250-8BITMIME
250-DSN
250-HELP
250-NOOP
250-PIPELINING
250-SIZE 15728640
250-VERS V05.00c++
250 XMVP 2
mail from:<postmaster@behrgroup.jp>
250 ok
rcpt to:<xyz@comcast.net>
450 [TEMPFAIL] comcast.net requires valid sender domain
Is there anything else I can try?
Kind Regards,
Bernd
On Thu, 09 Nov 2006 19:57:52 -0500
John Peacock <jpeacock@rowman.com> wrote:
> Bernd Plagge wrote:
> > The error message is
> > "450_(TEMPFAIL)_comcast.net_requires_valid_sender_domain".
> > My understanding is that in the example below the sender domain should
> > be "choicenet.ne.jp". Is it correct to conclude that comcast.net has
> > problems to validate this domain?
>
> A quick Google shows numerous people having problems with this going back at
> least two years. Here are a couple of things to check:
>
> 1) What is the contents of /var/qmail/control/me (standard install location)?
> This must be a FQDN that is resolvable through DNS (though the RFC states
> specifically that they shouldn't block if it isn't).
>
> 2) Make sure you don't have a firewall rule that blocks DNS queries with
> source
> port = 53 (not to be confused with the normal dest port of 53). Comcast
> apparently has used a BIND option in the past that make all outbound queries
> from port 53), which can confuse some firewall rules.
>
> 3) Can you manually telnet from one of your servers to the Comcast server and
> manually try the SMTP transaction and post the response? Make sure you use a
> real e-mail address in the MAIL FROM: line (with a resolvable domain name).
>
> John
>
> --
> John Peacock
> Director of Information Research and Technology
> Rowman & Littlefield Publishing Group
> 4501 Forbes Blvd
> Suite H
> Lanham, MD 20706
> 301-459-3366 x.5010
> fax 301-429-5747
>
--
プラゲ ベェアント - Bernd Plagge
ファースト・チョイス・インターネット(有)
First Choice Internet Ltd., Tokyo
Tel. 03-4500-7799
Fax. 03-4400-3723
mail: bplagge@choicenet.ne.jp
url: http://www.choicenet.ne.jp
|