Search Again: Re: reverse DNS questions From: Len Conrad Date: Thursday, September 4, 2003 Time: 7:30:19 pm >I'm running two QDNS servers (ns1.zada.net, ns2.zada.net) on a DSL line >supplied by SBC (originally Pacific Bell). I provide hosting and email >forwarding for a handful of customers. > >rr.com recently started blocking messages that I'm forwarding to a hosting >customer of mine, who uses rr.com for his POP mailbox. I inquired about >the blocking and they replied [see below]. > >I'm not quite sure how to proceed. SBC "should" be able to give its business customers different IPs from simple access customers. If they can't, then you're going to have more and more blocking similar to rr. can you relay your outbound a machine on anothre non-subscriber net? >Is there something I can do in QDNS probably not > or do I need to contact SBC to get them to modify their reverse DNS? If rr is blocking by IP subnet rather than by PTR hostname domains, you can't escape. > As part of this continuing effort, Road Runner has implemented blocks to its inbound SMTP servers from residential IP address ranges, regardless of whether they are static or dynamic. The reason for this is because of the widespread number of residential subscribers who we have found are infected with trojans such as Jeem, or have open proxy or SMTP applications which allow third parties to hijack them. I happen to agree with their reasoning and actions completely, since my experience with DSL/cable/dial access networks is identical to theirs. I've come up with very long list of PTR hostname domains, my "subscriber access network" list, for my IMGate customer, and it's proving very effective. The amt of legit IPs and mail from subscriber nets minuscule compared to the spam. I remember one DSL accnt in San Francisco that inunndated one of my clients with 30k msgs/hour for several days. pacbell did nothing. Here's my list of regex's : /(net.*\.in\-addr\.worldspice\.net)/ /(dsl\.siol\.net)/ /(ip\.e\-nt\.net)/ /(dsl.*sprint\-canada\.net)/ /(dialup.*bitstreet\.net)/ /(ptr\.us\.xo\.net)/ /(dsl.*tiscali\.no)/ /(h[0-9].*gtconnect\.net)/ /(host.*btcentralplus\.com)/ /(x1.*patmedia\.net)/ /(catv.*\.broadband.hu)/ /(.*ipt\.aol\.com)/ /(.*[0-9]{4,12}\.chello\.pl)/ /(.*dsl.*\.dnainternet\.fi)/ /(ppp.*\.centurytel\.net)/ /(.*ppp.*\.sympatico\.ca)/ /(.*dsl.*\.on\.net)/ /(.*dsl.*\.heliweb\.de)/ /(.*dsl.*\.telekom\.at)/ /(.*cpe\.mountaincable\.net)/ /(.*ppp.*\.ad\.jp)/ /(dsl.*\.dnainternet\.fi)/ /(^cm.*\.brdterra\.com\.br)/ /(^ip.*\.pacific\.net\.hk)/ /(^h.*\.telia\.com)/ /dsl.*\.heliweb\.de/ /(.*ppp.*\.t\-net\.net\.ve.*)/ /(.*dhcp.*\.cable\.infonet\.ee.*)/ /(.*dhcp\.state\.ga\.us.*)/ /(.*cable.*\.cybercable.net.mx.*)/ /(.*ppp.*\.forthnet.gr.*)/ /(.*cpe.*\.cable.triera.net.*)/ /(.*cab.*\.calixo.net.*)/ /(.*CDR.*\.accesscable\.net.*)/ /(.*OL.*\.fibertel\.com\.ar.*)/ /(.*\.[a-zA-Z]{2,6}.*\.[a-zA-Z][a-zA-Z]\.charter\.com.*)/ /(.*[a-zA-Z][a-zA-Z]\-.*\.[a-zA-Z]{2,6}\.adelphia\.net.*)/ /(.*chello.*\.vie\.surfer\.at.*)/ /(.*[0-9]{1,3}\-[0-9]{1,3}\.[0-9]{1,3}\-[0-9]{1,3}\..*\.rr\.com.*)/ /(broadband\.iol\.cz)/ /(ip\.adsl\.hu)/ /(dhcp\.surewest\.net)/ /(bzq.*bezeqint\.net)/ /(dsl\.versadsl\.be)/ /([0-9]{4,9}\.ctinets\.com)/ /(host.*\.qwest\.net)/ /(.*cm\.apol\.com\.tw)/ /(CM.?\.vtr\.net)/ /(^dl.*\.terra.\com\.br)/ /(host.*\.choiceone\.net)/ /(.*pop\.bezeqint\.net)/ /(.*abo\.wanadoo\.fr)/ /(host.*kbtelecom.net.tw)/ /(net.*\.noos\.fr)/ /(speedyterra\.com\.br)/ /(nat.*\.mpoweredpc.ne)/ /(dsl.*.\com\.ph)/ /(dsl.*\.mminternet\.com)/ /(pooles\.rima\-tde\.net)/ /(dsl.*\.axelero\.hu)/ /(^cm.*\.liwest\.at)/ /(member\.dsl\-only\.net)/ /(^ip.*\.cox\.net)/ /(clt.*rr\.com)/ /(host.*\.conversent\.net)/ /(hsia\.telus\.net)/ /(dsl.*takas.lt)/ /(dsl.*\.dejazzd\.com)/ /(dsl.*\.comporium\.net)/ /(dip0\.t\-ipconnect\.de)/ /(docsis.*\.menta\.net)/ /(dsl.*\.comporium\.net)/ /(dsl.*\.bac2.com)/ /(DSL.*\.mpowercom.net)/ /(dsl\.cavtel\.net)/ /(dsl.*apol\.com\.tw)/ /(dhc.*\.rr\.com)/ /(dhc.*\.tele\.dk)/ /(dsl.*\.tele\.dk)/ /(cpe.*\.charter\.com)/ /(clientes\.euskaltel\.es)/ /(^h.*\.shawcable\.net)/ /(^h.*bredband\.comhem\.se)/ /(cust\.bredband\.no)/ /(^h.*\.bredband\.skanova\.com)/ /(cust\.bredbandsbolaget\.se)/ /(bgp.*comcast.net)/ /(HINET\-IP\.hinet\.net)/ /(in\-addr\.btopenworld\.com)/ /(dyn\.optonline\.net)/ /(user\.ono\.com)/ /(ads.*qualitynet\.net)/ /(dsl\-dhcp\.tele\.dk)/ /(dsl\-spb\.net\.rol\.ru)/ /(dsl.*access\.houxou\.com)/ /(dsl.*ba-dsg\.net)/ /(dsl.*KPNQwest\.pt)/ /(dsl.*simnet\.is)/ /(dsl.*ttn\.net)/ /(dsl\.anteldata\.net\.uy)/ /(dsl\.bo.tiscali\.no)/ /(dsl\.datanet\.hu)/ /(dsl\.dnainternet\.fi)/ /(dsl\.euronet\.nl)/ /(dsl\.fx\.apol\.com\.tw)/ /(dsl\.hansenet\.de)/ /(dsl\.izrsolutions\.com)/ /(dsl\.nextra\.cz)/ /(dsl\.ppp\.infoweb\.ne\.jp)/ /(dsl\.proxad\.net)/ /(dsl\.seed\.net\.tw)/ /(dsl\.skynet\.be)/ /(dsl\.tele2\.no)/ /(dsl\.terra\.cl)/ /(dsl\.tpnet\.pl)/ /(dsl\.virgin\.net)/ /(dsl\.wanadoo\.nl)/ /(dsl\.xs4all\.nl)/ /(c.*icpnet\.pl)/ /(cab.*prima\.net\.ar)/ /(cable-cast\.com)/ /(cable.*bezeqint\.net)/ /(cable.*blueyonder\.co\.uk)/ /(cable.*charter\.com)/ /(cable.*coditel\.net)/ /(cable.*gte\.net)/ /(cable.*inter\.net\.il)/ /(cable.*intergga\.ch)/ /(cable.*kymp\.net)/ /(cable.*teleport\.ch)/ /(cable.*usuarios\.retecal\.es)/ /(cable.earthlink\.net)/ /(cable.graceba\.net)/ /(cable.net\.co)/ /(cable.onda\.com\.br)/ /(cable.primacom\.net)/ /(cable.wanadoo\.nl)/ /(cablemodem\.gte\.net)/ /(cablep\.bezeqint\.net)/ /(cablespeed\.com)/ /(catv\-pool\.axelero\.hu)/ /(cbl.*aster\.com\.do)/ /(CBL.*netvision\.net\.il)/ /(cblmdm.*buckeye\-express\.com)/ /(cgocable\.ca)/ /(client.*across\.or\.jp)/ /(client.*broadband\.ntl\.com)/ /(client.*consolidated\.net)/ /(client.*hispeed\.ch)/ /(client.*supercable\.es)/ /(client\.atlantech\.net)/ /(client\.attbi\.com)/ /(client\.bresnan\.net)/ /(client\.comcast\.net)/ /(client\.dsl\.net)/ /(client\.insightBB\.com)/ /(client\.mchsi\.com)/ /(client2\.attbi.com)/ /(clientes\.euskaltel\.es)/ /(clients\.speedfactory\.net)/ /(cm.*cablespeed\.com)/ /(CM.*Gawex\.PL)/ /(cm.*hkcable\.com\.hk)/ /(cm.*telecable\.es)/ /(cmu.*cablespeed\.com)/ /(cp.*home\.nl)/ /(CPE.*bigpond\.net.au)/ /(cpe.*charter\.com)/ /(CPE.*rogers\.com)/ /(cpe.*rr.com)/ /(cpe.*sprintbbd\.net)/ /(cpe.cableone\.net)/ /(cust.*aismedia.com)/ /(cust.*arcor\ip\.de)/ /(cust.*broadband\.ntl\.com)/ /(cust.*rgc3\.net)/ /(Cust.*tie\.cl)/ /(CUST.*TPLUS\.AT)/ /(cust.*uninet\.net\.mx)/ /(cust.*uu\.net)/ /(cust\.bezeqint\.net)/ /(cust\.grouptelecom\.net)/ /(cust\.telepacific\.net)/ /(custnet\.redwired\.net)/ /(customer\.vol\.cz)/ /(d.*\.d\-cable\.katch\.ne\.jp)/ /(dhc.*cable\.amis\.net)/ /(dhc.*urbanet\.ch)/ /(dhc.*wbdl\.org)/ /(dhcp.*ac\.jp)/ /(dhcp.*comcast\.net)/ /(dhcp.*rr\.com)/ /(dhcp.*tamatele.ne.jp)/ /(dial\-access\.att\.net)/ /(dial\-in.ttnet\.net\.tr)/ /(dial.*\.isp\-romania\.net)/ /(dial.*\.q1\.net)/ /(dial.*athenet\.net)/ /(dial.*bol\.net\.in)/ /(dial.*comesurfthe\.net)/ /(dial.*comindico\.com\.au)/ /(dial.*compuage\.net)/ /(dial.*dial\.net\.mx)/ /(dial.*Level3\.net)/ /(dial.*net\.pl)/ /(dial.*nts\-online\.net)/ /(dial.*sbm\.net\.sa)/ /(dial.*sify\.net)/ /(dial.*tiscali\.com)/ /(dial\.bluewin\.ch)/ /(dial\.kabelfoon\.nl)/ /(dial\.mhtc\.net)/ /(dial\.terra\.cl)/ /(dialin.*arcor\-ip\.net)/ /(dialin.*ewetel\.net)/ /(dialin\.heagmedianet\.de)/ /(dialsprint\.net)/ /(dialup.*swbell\.net)/ /(dialup\.iowatelecom\.net)/ /(dialup\.mcttelecom\.com)/ /(dialup\.netins\.net)/ /(dialup\.xtra\.co\.nz)/ /(dip\.t\-dialin\.net)/ /(dipool\.highway\.telekom\.at)/ /(dpc.*direcpc\.com)/ /(dsl.*prima\.net\.ar)/ /(dsl.*solcon\.nl)/ /(DSL.*capfed2\.sinectis\.com\.ar)/ /(dsl\-verizon\.net)/ /(dsl.*ameritech\.net)/ /(dsl.*apk\.net)/ /(dsl.*arcor\-ip\.net)/ /(dsl.*bellsouth\.net)/ /(dsl.*berlikomm\.net)/ /(dsl.*cantv\.net)/ /(dsl.*cota\.com\\.bo)/ /(dsl.*cytanet\.com\.cy)/ /(dsl.*fr\.cw\.net)/ /(dsl.*fuse\.net)/ /(dsl.*gte\.net)/ /(dsl.*gvtc\.com)/ /(dsl.*inet\.fi)/ /(dsl.*infoweb\.ne\.jp)/ /(dsl.*inode\.at)/ /(dsl.*net\.rol\.ru)/ /(dsl.*net\.tw)/ /(dsl.*netcologne\.de)/ /(DSL.*netvision\.net\.il)/ /(dsl.*networkiowa\.com)/ /(dsl.*pacbell\.net)/ /(dsl.*pacific\.net\.sg)/ /(dsl.*plus\.ch)/ /(dsl.*prima\.net\.ar)/ /(dsl.*primus\.ca)/ /(dsl.*prodigy\.net\.mx)/ /(dsl.*qualitynet\.net)/ /(DSL.*retevision\.es)/ /(dsl.*sccoast\.net)/ /(dsl.*sdsmachine\.com)/ /(dsl.*solcon\.nl)/ /(dsl.*sparqnet\.net)/ /(dsl.*speakeasy\.net)/ /(dsl.*swbell\.net)/ /(dsl.*takas\.lt)/ /(dsl.*telefonica\-data\.net)/ /(dsl.*telepac\.pt)/ /(dsl.*tiscali\.com)/ /(dsl.*uswest\.net)/ /(dsl.*willamette\.net)/ /(dsl.*world-ne\.co\.nz)/ /(dsl.*zen\.co\.uk)/ /(dsl.*zonnet\.nl)/ /(dsl.*\.ds3\-connections\.com)/ /(dsl\.att\.net)/ /(dsl\.brasiltelecom\.net\.br)/ /(dsl\.cerfnet\.com)/ /(dsl\.cnc\.net)/ /(dsl\.genuity\.net)/ /(dsl\.giga\.net\.tw)/ /(dsl\.hccnet\.nl)/ /(dsl\.mxposure\.nl)/ /(dsl\.nsw\.iprimus\.net\.au)/ /(dsl\.pipex\.com)/ /(dsl\.saunalahti\.fi)/ /(dsl\.siol\.net)/ /(dsl\.telesp\.net\.br)/ /(dsl\.tpnet\.pl)/ /(dsl\.xs4all\.nl)/ /(dsl\.ttnet\.net\.tr)/ /(dup.*prodigy\.net\.mx)/ /(dyn.*utma\.com)/ /(home\.cgocable\.net)/ /(host.*\.blackfoot\.net)/ /(host.*interbusiness\.it)/ /(ip.*numericable\.fr)/ /(ip.*customer\.algx\.net)/ /(ip.*egix\.net)/ /(ip.*megapath\.net)/ /(ip\.foni\.net)/ /(line.*.dial\.matav\.net)/ /(dsl\.proxad\.net)/ /(modem-pool\.kuban\.ru)/ /(modem.*\.mo-net\.com)/ /(modem.*junct\.com)/ /(modemcable.*videotron\.ca)/ /(netcabo\.pt)/ /(pc.*cable\.ntl\.com)/ /(pc.*public\.htk\.fi)/ /(pc.metropolis\-inter\.com)/ /(pc\-.*charter\.com)/ /(pcp.*comcast\.net)/ /(pool.*qwest\.net)/ /(pool.*uswest\.net)/ /(pool.*verizon\.net)/ /(pooles\.rima\-tde\net)/ /(ppp.*ameritech\.net)/ /(ppp.*mtu-net\.ru)/ /(ppp.*pacbell\.net)/ /(ppp.*swbell\.net)/ /(ppp.*tiscali\.it)/ /(pool.*uswest\.net)/ /(dsl\.genuity\.net)/ /(upc\-e.\chello\.nl)/ /(upc.*chello\.nl)/ /(upc\.chello\.se)/ /(user.*cable\.mindspring\.com)/ /(user.*sprint-hsd\.net)/ /(user.*tvcablenet\.be)/ /(user\.ono\.com)/ /(user\.veloxzone\.com\.br)/ /(dsl\.tiscali\.nl)/ /(.*[0-9]{1,3}\-[0-9]{1,3}\-[0-9]{1,3}\-[0-9]{1,3}.*\..*\..*)/ /(.*[0-9]{1,3}\-[0-9]{1,3}\-[0-9]{1,3}\-[0-9]{1,3}.*\..*\..*\..*)/ /(.*[0-9]{1,3}\.[0-9]{1,3}\.[0-9]{1,3}\.[0-9]{1,3}.*\..*\..*)/ /(.*[0-9]{2,3}\-[0-9]{2,3}.*)/ Len Regards, >>Road Runner Security

Messages In This Thread: Reverse DNS questions by Andrew Murray on Jul 30, 1998 at 6:23:00 pm Re: Reverse DNS questions by Craig Phillips on Jul 31, 1998 at 12:39:00 am Re: Reverse DNS questions by Chris Buxton on Jul 31, 1998 at 6:58:00 am Re: Reverse DNS questions by Mia''s Virtual Post Office on Jul 31, 1998 at 12:23:00 pm Reverse DNS Questions by Mia''s Virtual Post Office on May 27, 1999 at 6:33:00 pm Re: Reverse DNS Questions by Men & Mice Support on May 28, 1999 at 12:21:00 am reverse DNS questions by Hazlitt on Sep 4, 2003 at 6:48:15 pm Re: reverse DNS questions by Michael Wise on Sep 4, 2003 at 7:06:46 pm Re: reverse DNS questions by Len Conrad on Sep 4, 2003 at 7:30:19 pm Re: reverse DNS questions by Michael Wise on Sep 4, 2003 at 7:55:00 pm Re: reverse DNS questions by Jeff Justice on Sep 4, 2003 at 8:28:36 pm Re: reverse DNS questions by Mia''s Virtual Post Office on Sep 4, 2003 at 10:07:17 pm Re: reverse DNS questions by Mia''s Virtual Post Office on Sep 4, 2003 at 10:21:21 pm Re: reverse DNS questions by Jeff Justice on Sep 4, 2003 at 10:46:58 pm Re: reverse DNS questions by Len Conrad on Sep 5, 2003 at 2:57:32 am Re: reverse DNS questions by Kenneth Kirksey on Sep 5, 2003 at 5:20:57 am Re: reverse DNS questions by Michael Wise on Sep 5, 2003 at 9:02:24 am Re: reverse DNS questions by Michael Wise on Sep 5, 2003 at 9:32:15 am Re: reverse DNS questions by Mia''s Virtual Post Office on Sep 5, 2003 at 4:33:53 pm Re: reverse DNS questions by Roland A. Dumas on Sep 6, 2003 at 11:48:53 pm Re: reverse DNS questions by Brian R. Watters on Sep 28, 2003 at 2:36:42 pm