well, i installed one of the recommended forgery protection ACLs,
only to get the following:
2003-12-09 07:10:02 H=[64.4.47.24] temporarily rejected EHLO or HELO hotmail.com: Access temporarily denied. Resolve failed PTR for 64.4.47.24
2003-12-09 07:10:09 H=[64.4.8.80] temporarily rejected EHLO or HELO hotmail.com: Access temporarily denied. Resolve failed PTR for 64.4.8.80
2003-12-09 07:10:21 H=[64.4.15.109] temporarily rejected EHLO or HELO hotmail.com: Access temporarily denied. Resolve failed PTR for 64.4.15.109
2003-12-09 07:11:57 H=[64.4.8.84] temporarily rejected EHLO or HELO hotmail.com: Access temporarily denied. Resolve failed PTR for 64.4.8.84
2003-12-09 07:12:07 H=[64.4.8.87] temporarily rejected EHLO or HELO hotmail.com: Access temporarily denied. Resolve failed PTR for 64.4.8.87
2003-12-09 07:13:26 H=[64.4.14.15] temporarily rejected EHLO or HELO hotmail.com: Access temporarily denied. Resolve failed PTR for 64.4.14.15
2003-12-09 07:15:06 H=[64.4.9.68] temporarily rejected EHLO or HELO hotmail.com: Access temporarily denied. Resolve failed PTR for 64.4.9.68
2003-12-09 07:16:00 H=[64.4.23.114] temporarily rejected EHLO or HELO hotmail.com: Access temporarily denied. Resolve failed PTR for 64.4.23.114
which would be fine, except that 64.4.0.0/18 does actually belong
to hotmail according to whois records.
so for those who have used these acls for a while, is this config
blowing off legit hotmail users, or is it ok to ignore email from
hotmail IPs w/o rDNS?
thanks,
richard
--
Richard Welty rwelty@???
Averill Park Networking 518-573-7592
Java, PHP, PostgreSQL, Unix, Linux, IP Network Engineering, Security
