[bdNOG] Yahoo Mail can't communicate with my domain servers
Jasim Alam
jasim21 at ymail.com
Wed Dec 23 14:53:07 BDT 2015
Hi,
>From last couple of day mail sent from yahoo mail to my domain (btraccl.net) are being bounced back, please see the forwarded mail. Yahoo saying they can't find my A or MX record. But mxtoolbox and google tool saying there is nothing wrong with my dns configuration
http://mxtoolbox.com/domain/btraccl.net/
https://toolbox.googleapps.com/apps/dig/#A/btraccl.net
https://toolbox.googleapps.com/apps/dig/#MX/btraccl.net
After further digging , I found that from some location my dns is resolved from some location from some not.
https://www.whatsmydns.net/#A/btraccl.net
https://dnschecker.org/#A/btraccl.net
https://www.nexcess.net/resources/tools/global-dns-checker/?h=btraccl.net&t=A
Same for online port scanners, some online port scanner can open my dns server's port 53 some can't.
-------------------------------------------------------------------------------------------------------------------------------------------------------------------------------- [Port Scan]
# from local network
nmap 103.9.185.229
Starting Nmap 6.47 ( http://nmap.org ) at 2015-12-22 12:02 BDTNmap scan report for 103.9.185.229Host is up (0.0054s latency).Not shown: 993 closed portsPORT STATE SERVICE22/tcp open ssh25/tcp open smtp53/tcp open domain80/tcp open http465/tcp open smtps587/tcp open submission3306/tcp open mysql
Nmap done: 1 IP address (1 host up) scanned in 1.66 seconds
# https://pentest-tools.com/network-vulnerability-scanning/tcp-port-scanner-online-nmap
Starting Nmap 6.00 ( http://nmap.org ) at 2015-12-22 08:14 EETInitiating Ping Scan at 08:14Scanning 103.9.185.229 [4 ports]Completed Ping Scan at 08:14, 0.26s elapsed (1 total hosts)Initiating SYN Stealth Scan at 08:14Scanning 103.9.185.229 [100 ports]Discovered open port 3306/tcp on 103.9.185.229Discovered open port 53/tcp on 103.9.185.229Discovered open port 465/tcp on 103.9.185.229Discovered open port 25/tcp on 103.9.185.229Discovered open port 587/tcp on 103.9.185.229Discovered open port 22/tcp on 103.9.185.229Completed SYN Stealth Scan at 08:14, 1.66s elapsed (100 total ports)
http://www.ipfingerprints.com/portscan.php
103.9.185.229 53/tcp open domain103.9.185.230 53/tcp open domain
http://ports.my-addr.com/check-all-open-ports-online.php
103.9.185.229:53 = success103.9.185.230:53 = success
http://mxtoolbox.com/SuperTool.aspx?action=scan%3a103.9.185.229&run=toolpage53 dns Open 266
http://mxtoolbox.com/SuperTool.aspx?action=scan%3a103.9.185.230&run=toolpage53 dns Open 281
http://ping.eu/port-chk/
103.9.185.229:53 port is closed103.9.185.230:53 port is closed103.9.185.229:465 port is open103.9.185.229:25 port is open
103.9.185.229:587 port is open103.9.185.229:3306 port is open
...............................................
all else port seems open
http://www.t1shopper.com/tools/port-scan/
103.9.185.229 isn't responding on port 53 (domain).103.9.185.230 isn't responding on port 53 (domain).103.9.185.229 is responding on port 25 (smtp).............................................................same here
http://www.yougetsignal.com/tools/open-ports/
Port 53 is closed on 103.9.185.229.Port 53 is closed on 103.9.185.230.Port 25 is open on 103.9.185.229.
----------------------------------same here
--------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
This put me in nowhere as there are no host/network acl to filter the dns traffic. ISP/IIG/ITC telling me the same.
Is this is any global routing issue ? Have anyone experienced such scenarios ? Please suggest me any solution of this.
Regards,Jasim
--------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
On Monday, December 21, 2015 10:17 AM, "MAILER-DAEMON at yahoo.com" <MAILER-DAEMON at yahoo.com> wrote:
Sorry, we were unable to deliver your message to the following address.
<jasim.alam at btraccl.net>:
No MX or A records for btraccl.net
--- Below this line is a copy of the message.
Received: from [66.196.81.174] by nm26.bullet.mail.bf1.yahoo.com with NNFMP; 21 Dec 2015 03:53:35 -0000
Received: from [98.139.212.217] by tm20.bullet.mail.bf1.yahoo.com with NNFMP; 21 Dec 2015 03:53:35 -0000
Received: from [127.0.0.1] by omp1026.mail.bf1.yahoo.com with NNFMP; 21 Dec 2015 03:53:35 -0000
X-Yahoo-Newman-Property: ymail-3
X-Yahoo-Newman-Id: 458777.42486.bm at omp1026.mail.bf1.yahoo.com
X-YMail-OSG: eRLkhAUVM1m0iGywFxEWTqIClC9kpx9qep2H3h87A5pXx7u2nChv7ojlOA3fPfM
roCPBlSiUKcgA3RcgQ2Sb1reTx.PrLKmpH02eJy73Zct1QKep.znfHg.M.fuVcGtxASr_UG41vkF
TePG24o6oWYfOzaDxvKbrj6gZ8X7_2892LrZbcwH7vWLaLewvUoweKlWtHw7T5vldvDwwosWu33Q
iX0k0PBAKx._HtbJMxEiPRsl7dRjhRI54UbfnzIx5xSx0xtWyzVDVMKtTXOIA1Czwu2JqRyIvEUJ
Yjd_FnOcPsHQsrTsZUvQk89pYEBgilMhVoMTnsbwm4g4MYjK7vMAOH0XJnxvkNuFnhUWAjKVb80F
UF.jXDoD.E5oO0XsZorFAu9MCtya54XZP0cE4TypHxan7xEpUmVkoTJaY8gUFjoHeOknqjWdwQbw
4Xs2d2I0FAIwlU72IygsYzTRrW39ZI8KOmcIGD7I28pI3A.LlPqTuFsfePx1nCFr4xH70qljrBW6
g7bA0fpB7t3eafXRVCtsc7h5b
Received: by 66.196.80.121; Mon, 21 Dec 2015 03:53:35 +0000
Date: Mon, 21 Dec 2015 03:53:34 +0000 (UTC)
From: Jasim Alam <jasim21 at ymail.com>
Reply-To: Jasim Alam <jasim21 at ymail.com>
To: Jasim Alam <jasim.alam at btraccl.net>
Message-ID: <1702908944.1561022.1450670014437.JavaMail.yahoo at mail.yahoo.com>
Subject: test mail
MIME-Version: 1.0
Content-Type: multipart/alternative;
boundary="----=_Part_1561021_133957058.1450670014436"
References: <1702908944.1561022.1450670014437.JavaMail.yahoo.ref at mail.yahoo.com>
Content-Length: 513
------=_Part_1561021_133957058.1450670014436
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 7bit
test mail
------=_Part_1561021_133957058.1450670014436
Content-Type: text/html; charset=UTF-8
Content-Transfer-Encoding: 7bit
<html><head></head><body><div style="color:#000; background-color:#fff; font-family:garamond, new york, times, serif;font-size:13px"><div id="yui_3_16_0_1_1450669984207_2646" dir="ltr">test mail</div></div></body></html>
------=_Part_1561021_133957058.1450670014436--
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mailman.bdnog.org/pipermail/nog/attachments/20151223/e1c7b01d/attachment-0001.html>
More information about the nog
mailing list