[afnog] DNS problem

[SM]

At 12:20 12-10-2008, Dany Mustapha wrote:
>this is bounce message returned by gmail :
>
>
>" This is an automatically generated Delivery Status Notification
>
>Delivery to the following recipient failed permanently:
>
>     <mailto:test at blanca.ma>test at blanca.ma
>
>Technical details of permanent failure:
>Google tried to deliver your message, but it was rejected by the 
>recipient domain. We recommend contacting the other email provider 
>for further information about the cause of this error. The error 
>that the other server returned was: 550 550 relay not permitted (state 14).

I suggest going through the logs of both mail servers and find 
entries for <mailto:test at blanca.ma>test at blanca.ma and the status your 
mail server returns.  According to the above, one of the blanca.ma 
mail servers is returning a 550 (rejection).


>For DNS i did what you advice me this my config :
>
>named.conf
>
>" zone "blanca.ma" {
>         type master;
>         file "/etc/bind/db.blanca.ma";        allow-transfer 
> {67.15.249.49;67.15.249.149;67.15.212.212;67.15.249.249;};};
>
>db.blanca.ma
>
>"$TTL 3h
>@       IN      SOA     ns.blanca.ma. test.blanca.ma. (
>                                 2005090201
>                                 8H
>                                 2H
>                                 1W
>                                 1D )
>
>@       IN      NS               ns.blanca.ma.
>
>@       IN      MX      10      mail.blanca.ma.
>@       IN      MX      20      mail.laregiedimpression.com.
>ns              IN      A       81.192.157.233
>mail            IN      A       41.250.251.118

The above does not show any NS and A records for srv1-blanca.ma and 
srv2-blanca.ma.  According to the delegation from .ma, these are the 
two nameservers for blanca.ma.

At 12:30 12-10-2008, Stephane Bortzmeyer wrote:
>No, this is much more complicated:
>
>* the delegation indicates srv1-blanca.ma and srv2-blanca.ma ("dig
>@NS1.IAM.NET.ma. NS blanca.ma.")
>
>* srv1-blanca.ma indicates only ns.blanca.ma ("dig @srv1-blanca.ma  NS
>blanca.ma.)

I'll leave it to you to explain the details. :-)

> > srv2-blanca.ma is not returning an answer for queries about
> > blanca.ma.
>
>Yes, it does.
>
>% dig +norec @srv2-blanca.ma  NS blanca.ma.

It's not returning the MX records.

I suggest fixing the DNS problem first.  What nameservers have you 
assigned for blanca.ma when you registered the domain?  What are the 
IP addresses of the nameservers?  Which nameserver is acting as 
master (primary)?  If you are using any nameservers which you do not 
administer, you should ask the administrator of that nameserver 
before assigning it as a nameserver for your domain.

Regards,
-sm