<!DOCTYPE html>
<html>
<head>
<meta http-equiv="Content-Type" content="text/html; charset=UTF-8">
</head>
<body text="#800040" bgcolor="#FFFFFF">
<font face="Comic Sans MS">Know nothing about unbound.<br>
<br>
I had a big issue awhile back getting rbldnsd to run after
upgrading to focal. Here's what I did in case is helpful.<br>
I had to hold back the rbldnsd package to previous version.<br>
<br>
apt-mark hold rbldnsd<br>
<br>
Then upgraded to focal.<br>
It did honor it! Now have the previous version after upgrading
and all is well.<br>
<br>
Still had to add this to get bind dns back up.<br>
<br>
Open /etc/bind/named.conf.options and add:<br>
<br>
dnssec-enable yes;<br>
<br>
dnssec-validation no; <br>
</font><br>
################## Notes on testing rbldnsd
########################<br>
To test rbldnsd:<br>
See if listening on port.<br>
netstat -anpe|grep rbldns<br>
<br>
Test rbldnsd REVERSE IP OCTETS<br>
dig @127.0.0.1 -p 530 13.132.68.51.rcr24.local.rbl<br>
Answer section will be 127.0.0.2<br>
<br>
Test bind REVERSE IP<br>
dig @127.0.0.1 13.132.68.51.rcr24.local.rbl<br>
Answer section will be 127.0.0.2<br>
<br>
dig @127.0.0.1 13.132.68.51.rcr24.local.rbl -t txt<br>
Answer section will be something like this: Address 51.68.132.13
listed on rcr24 Wed 10 Jan 2024 11:45:16 AM CST<br>
<br>
You can repeat the test with 'dig drugstore.com.hosts.blocked.rbl'
to test a host block. You should get similar results.<br>
<br>
############################################################################################<br>
<br>
<div class="moz-cite-prefix">On 2/9/2024 8:13 AM, Tracy Greggs via
MailScanner wrote:<br>
</div>
<blockquote type="cite"
cite="mid:ema80dfb94-ea30-4415-a741-04ae0521fa78@01ec4777.com">I've
been running rbldnsd and bind on the same server for years.
<br>
<br>
I created a fake zone, ie clients.blocked.rbl and have rbldnsd
listening on port 530 instead of 53
<br>
<br>
I create a forward zone in bind for clients.blocked.rbl
<br>
<br>
zone "clients.blocked.rbl" IN {
<br>
type forward;
<br>
forward first;
<br>
forwarders { 127.0.0.1 port 530; };
<br>
};
<br>
<br>
And rbldnsd.wrapper
<br>
<br>
RBLDNSD='- -r /var/lib/rbldns -l rbldnsd.log -b 127.0.0.1/530
clients.blocked.rbl:dnset:nrd,iats,udrp'
<br>
<br>
I have, dnssec-validation no;
<br>
<br>
I'm running on Ubuntu 20.04 LTS but this should be the same on any
distro really.
<br>
<br>
Good luck.
<br>
<br>
<br>
<br>
------ Original Message ------
<br>
From "Peter" <a class="moz-txt-link-rfc2396E" href="mailto:email@ace.net.au"><email@ace.net.au></a>
<br>
To <a class="moz-txt-link-abbreviated" href="mailto:mailscanner@lists.mailscanner.info">mailscanner@lists.mailscanner.info</a>
<br>
Date 2/9/2024 12:28:47 AM
<br>
Subject Re: Any new techniques?
<br>
<br>
<blockquote type="cite">Hi, Can anyone provide some notes on
adding rbldnsd zones to unbound?
<br>
<br>
I have been having trouble running bind and rbldnsd on the same
server, so
<br>
thought I would try unbound. The notes I have so far found for
both
<br>
rbldnsd and unbound are scarce and I haven't found anything
useful about
<br>
the two together.
<br>
<br>
My rbldnsd is working well on a separate server to bind, but I
would like
<br>
to delete a server. I think it's updated security on recent
bind versions
<br>
that is the problem,
<br>
<br>
Any help or pointers appreciated.
<br>
<br>
<br>
*********** REPLY SEPARATOR ***********
<br>
<br>
On 16/02/2015 at 1:56 PM C. Jon Larsen wrote:
<br>
<br>
<blockquote type="cite">
<blockquote type="cite"> Also, Is there a way to create your
own on-server URIBL, that way as
<br>
soon as an email comes in with a URL that was not detected
by the
<br>
official URIBL, I could create a small program to add it
locally?
<br>
</blockquote>
<br>
yes, you can install the rbldnsd package and serve your own
uri dbls right
<br>
</blockquote>
<br>
<blockquote type="cite">out of it via a simple text file. Setup
SA rules to query it, and you are
<br>
set. We use unbound dns caches to lessen the dns query load so
another
<br>
step for us is to point the caches at the rbl instance via
unbound dns
<br>
static routes.
<br>
<br>
<br>
<blockquote type="cite"> Thanks,
<br>
Max
<br>
--
<br>
MailScanner mailing list
<br>
<a class="moz-txt-link-abbreviated" href="mailto:mailscanner@lists.mailscanner.info">mailscanner@lists.mailscanner.info</a>
<br>
<a class="moz-txt-link-freetext" href="http://lists.mailscanner.info/mailman/listinfo/mailscanner">http://lists.mailscanner.info/mailman/listinfo/mailscanner</a>
<br>
<br>
Before posting, read <a class="moz-txt-link-freetext" href="http://wiki.mailscanner.info/posting">http://wiki.mailscanner.info/posting</a>
<br>
<br>
Support MailScanner development - buy the book off the
website!
<br>
<br>
<br>
</blockquote>
--
<br>
MailScanner mailing list
<br>
<a class="moz-txt-link-abbreviated" href="mailto:mailscanner@lists.mailscanner.info">mailscanner@lists.mailscanner.info</a>
<br>
<a class="moz-txt-link-freetext" href="http://lists.mailscanner.info/mailman/listinfo/mailscanner">http://lists.mailscanner.info/mailman/listinfo/mailscanner</a>
<br>
<br>
Before posting, read <a class="moz-txt-link-freetext" href="http://wiki.mailscanner.info/posting">http://wiki.mailscanner.info/posting</a>
<br>
<br>
Support MailScanner development - buy the book off the
website!
<br>
</blockquote>
<br>
<br>
<br>
<br>
<br>
--
<br>
MailScanner mailing list
<br>
<a class="moz-txt-link-abbreviated" href="mailto:mailscanner@lists.mailscanner.info">mailscanner@lists.mailscanner.info</a>
<br>
<a class="moz-txt-link-freetext" href="http://lists.mailscanner.info/mailman/listinfo/mailscanner">http://lists.mailscanner.info/mailman/listinfo/mailscanner</a>
<br>
<br>
</blockquote>
<br>
<br>
</blockquote>
<br>
<div class="moz-signature">-- <br>
<img src="cid:part1.OxulUroL.lhz0wOqI@rcrcomputing.com" border="0"></div>
<br />--
<br />Stop and THINK before clicking a link or opening attachments.
</body>
</html>