SpamAssassin 中的 RCVD_IN_DNSWL_BLOCKED,因为它不使用本地 DNS

tag-icon tag-icon spamassassin ubuntu-20.04 unbound
SpamAssassin 中的 RCVD_IN_DNSWL_BLOCKED,因为它不使用本地 DNS

我不确定我这里出了什么问题。它曾经在Ubuntu 18.04, 但没有20.04看起来是这样。我已经unbound设置了 DNS 服务器:

unbound-control status
version: 1.9.4
verbosity: 1
threads: 1
modules: 3 [ subnet validator iterator ]
uptime: 314 seconds
options: reuseport control(ssl)
unbound (pid 1074177) is running...

/etc/resolv.conf我有:

#domain members.linode.com
#search members.linode.com
#nameserver 212.71.252.5
#nameserver 212.71.253.5
#nameserver 178.79.182.5
#nameserver 176.58.107.5
#nameserver 176.58.116.5
#nameserver 176.58.121.5
#nameserver 151.236.220.5
#nameserver 109.74.192.20
#nameserver 109.74.193.20
#nameserver 109.74.194.20
#options rotate

nameserver 127.0.0.1
options edns0
search members.linode.com

在 /etc/spamassassin/local.cf 中我有:

dns_server 127.0.0.1

我已经重启了服务器,但似乎

0.0 RCVD_IN_DNSWL_BLOCKED RBL:管理员通知:对 DNSWL 的查询已被阻止。请参阅 DNS阻止列表 了解更多信息。[209.85.218.53 已列在 list.dnswl.org 中]

我是否遗漏了什么?

关于服务器设置的更多细节:

systemd-resolve --status
Global
       LLMNR setting: no
MulticastDNS setting: no
  DNSOverTLS setting: no
      DNSSEC setting: no
    DNSSEC supported: no
  Current DNS Server: 127.0.0.1
         DNS Servers: 127.0.0.1
          DNS Domain: members.linode.com
          DNSSEC NTA: 10.in-addr.arpa
                      16.172.in-addr.arpa
                      168.192.in-addr.arpa
                      17.172.in-addr.arpa
                      18.172.in-addr.arpa
                      19.172.in-addr.arpa
                      20.172.in-addr.arpa
                      21.172.in-addr.arpa
                      22.172.in-addr.arpa
                      23.172.in-addr.arpa
                      24.172.in-addr.arpa
                      25.172.in-addr.arpa
                      26.172.in-addr.arpa
                      27.172.in-addr.arpa
                      28.172.in-addr.arpa
                      29.172.in-addr.arpa
                      30.172.in-addr.arpa
                      31.172.in-addr.arpa
                      corp
                      d.f.ip6.arpa
                      home
                      internal
                      intranet
                      lan
                      local
                      private
                      test

Link 2 (eth0)
      Current Scopes: DNS
DefaultRoute setting: yes
       LLMNR setting: yes
MulticastDNS setting: no
  DNSOverTLS setting: no
      DNSSEC setting: no
    DNSSEC supported: no
  Current DNS Server: 176.58.107.5
         DNS Servers: 176.58.107.5
                      212.71.253.5
                      151.236.220.5
          DNS Domain: members.linode.com

更新:

正如建议的那样,这里是输出sudo ss -lntp|grep 53

LISTEN    0         256              127.0.0.1:53               0.0.0.0:*        users:(("unbound",pid=783,fd=6))
LISTEN    0         4096         127.0.0.53%lo:53               0.0.0.0:*        users:(("systemd-resolve",pid=524,fd=13))
LISTEN    0         256              127.0.0.1:8953             0.0.0.0:*        users:(("unbound",pid=783,fd=7))
LISTEN    0         256                  [::1]:53                  [::]:*        users:(("unbound",pid=783,fd=4))

答案1

编辑:如此处所述->https://www.linode.com/community/questions/21413/rcvd_in_dnswl_hi-false-positives我们知道 linode 用户遇到了这个问题。看起来您的 DNS 查询是通过 linode 的解析器转发的,但由于太多用户都通过它们转发,因此解析器被阻止了。根据 systemd-resolve --status 的输出:

     DNS Servers: 176.58.107.5
                  212.71.253.5
                  151.236.220.5

我会仔细检查 unbound 是否确实在运行-> sudo ss -lntp|grep 53 仔细检查它的配置是否为递归服务器,并将 systemd-resolve 设置为查询它的上游。systemd-resolve --set-dns=SERVER 或 vim /etc/systemd/resolved.conf

相关内容