[Okta Webinar] Learn how to a build a cloud-first strategyRegister Now


Add static entry to linux dns server

Posted on 2008-11-04
Medium Priority
Last Modified: 2012-08-13
I have a bind9 dns server on Ubuntu 8.10. I want to add a static domain to the server for testing. The test domain we will say is company.com. This domain is external from the network i am in. I already have the local zone set up and working.

I am doing this because this company randomly has email fail to a certain domain. It works fine for weeks and the it just stops working and returns 550 host unknow company.com.  

What i want to do is add the mx records for company.com statically in the dns server for testing.  

This only started after these guys started trendmicro's IMHS service, if that helps. .

Question by:bml104
  • 3
  • 2
LVL 12

Accepted Solution

Hugh Fraser earned 750 total points
ID: 22882026
The basic IMHS service hosts inbound mail only through an MX record, so it wouldn't affect outbound mail. You need to check if you have this or their advanced service which checks outbound mail as well (I'm getting this from their web site). If it's the latter, they should be doing the resolving, not you.

Assuming you;re delivering outbound mail yourself, adding another site's MX records (and implicitly their entire domain to get the MX records to resolve) is a bad idea, since there's no mechanism to recognize when they make changes. You need to resolve the DNS issues.

You could start by using one of many online DNS check services like http://www.intodns.com to see if it reports any errors.

You'll also need to check the status of your internal DNS (which is forwarding the requests) at the time email fails.

Author Comment

ID: 22885357
I agree, fix the DNS is the same solution I came up with. I totally understand that adding a static entry can cause problems in the wrong run when change occurs. However, this is a customer we setup on the Trend servers. They never saw the problem until we implemented the Trend solution. So the problem is because of what we did and not an issue with their internal Bind server, in their eyes that is.

I sat on the phone with the admin and had him do an nslookup and dig mx when email was failing. The both showed the resolution was failing at his internal server.The problem is it only happens every few days. It will work fine for 5 days with no issues. Then one day it will send back 550 host not found and the messages will never deliver. 15 min later everything is working fine again.


Author Comment

ID: 22885575
It seems that their issue is trendmicro's mx records point to cnames and some dns servers do not like this.


I guess their is a battle between trend and everyone else. Everyone knows what the problem is but provides no solution. Anyone here have any ideas how to fix it?

Cyber Threats to Small Businesses (Part 1)

This past May, Webroot surveyed more than 600 IT decision-makers at medium-sized companies to see how these small businesses perceived new threats facing their organizations.  Read what Webroot CISO, Gary Hayslip, has to say about the survey in part 1 of this 2-part blog series.


Expert Comment

ID: 22890424
Use another email filtering / av service. MX Logic is a good choice.
LVL 12

Expert Comment

by:Hugh Fraser
ID: 22890939
It certainly seems that everyone (including the following article from Microsoft) agrees that MX records pointing to a CNAME are a bad practice, although it's not clear if it violates standards.


Regardless, I'd be worried about an email service that uses an addressing technique that many people caution against. TrendMicro's stance that they adhere to changes to the standard isn't much comfort if others do not. I'd be taking it up with them or switching services as well.

Author Comment

ID: 22894873
Your post pointed me to intodns.com which pointed out some interesting errors I pointed out above. I have implemented the fix trend suggested and will post it as soon as I know it works. It might take a week to make sure no emails are lost. When the fix is proven I will award you the points for pointing me in the right direction.


Featured Post

Free Tool: Site Down Detector

Helpful to verify reports of your own downtime, or to double check a downed website you are trying to access.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

In the first part of this tutorial we will cover the prerequisites for installing SQL Server vNext on Linux.
Steps to fix error: “Couldn’t mount the database that you specified. Specified database: HU-DB; Error code: An Active Manager operation fail”
Michael from AdRem Software explains how to view the most utilized and worst performing nodes in your network, by accessing the Top Charts view in NetCrunch network monitor (https://www.adremsoft.com/). Top Charts is a view in which you can set seve…
Whether it be Exchange Server Crash Issues, Dirty Shutdown Errors or Failed to mount error, Stellar Phoenix Mailbox Exchange Recovery has always got your back. With the help of its easy to understand user interface and 3 simple steps recovery proced…
Suggested Courses
Course of the Month19 days, 12 hours left to enroll

873 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question