On Tue, Nov 26, 2024 at 8:14 PM Marc <Marc@f1-outsourcing.eu> wrote:
Maybe that is in your opinion because you can not send him direct mail? Why
No, it is not an opinion it is a fact. That is the huge difference here. There is some sort of logic in my reasoning, while ignoring false positives and working with old data has little.
In your opinion, like most of us here who run a service for others, we
make the decisions on what blacklists we use, what anti spam rules we use, we decide to use DMARC and block failures, if he or anyone runs other tests, so be it, who are you or I to say its wrong, it's not, it's just _different_
To outsiders this is kind of cryptic, but sounds like you failed DNS testing that Noel uses in making an accept/reject decision so he is blocking you?
His data is old and incorrect. Since when has a dns configuration to do with spam? From my experience it is often that such weird measures are created out of a lack of ability to really address and implement a targeted solution.
I guess this relates to the zonecheck.org you mentioned? So your DNS was more messed up than this?
DELEGATION ERROR IP 87.233.156.132 refers to multiple nameservers ( ns1.roosit.com; ns1.roosit.nl). DELEGATION ERROR IP 87.233.156.133 refers to multiple nameservers ( ns2.roosit.com; ns2.roosit.nl). DELEGATION ERROR Parent has nameserver(s) not listed at the child ( ns1.roosit.com; ns2.roosit.com). DELEGATION ERROR None of the nameservers listed at the parent are listed at the child. CONNECTIVITY WARNING All authoritative nameservers have their IPv4 addresses in the same AS (15703
The following name server(s) are announced in the same IPv4 prefix ( 87.233.128.0/18): "ns1.roosit.com/87.233.156.132; ns1.roosit.nl/87.233.156.132; ns2.roosit.com/87.233.156.133; ns2.roosit.nl/87.233.156.133"
You're right, zonecheck information is wrong, it says the same /18 but goodness me, it's in the same /24 which is worse, since nobody accepts BGP prefixes less than 24, so both your DNS servers are gone if your routes flap.
He can't even prove there was spam send from this network. If I block a
network, I at least make sure we have original message and store it. So we can say "Your network send this on that date".
Why does anyone have to prove anything to you? That's right, nobody does, if he blocks more than a /32 thats his choice, I'm sure I read he say something about others in your IP range, perhaps he played wack a mole game then decided to stop wasting his time and blacklists the /24
So rather than sit here generating noise, making this
original thread useless now, you go fix you DNS problems and who knows, maybe you won't get blocked, if you are not going to do that, live with your decision and move on so this thread can get back to normal.
Up until now I did not notice much expertise from you, for me to take your advises. Besides, this does illustrate the 'irrationality' and lack of innovative thinking in smaller companies which drives people into the direction of large providers like gmail and outlook.com
I've been on here, postfix, NANOG and a bunch of lists for many years, I don't post for the sake of posting like some.