Am Wed, 12 May 2021 10:09:58 +0200 schrieb Per Jessen <per@opensuse.org>:
Fine with me (but at the moment, your server is just added to the list, so it might not receive that much traffic).
Yup, I see it - it's a pretty complex setup you have :-)
Not really. Just grown over the years :-)
That would be my suggestion now - get rid of the forwarders. You have eliminated dnsmasq, but there are still 'no host found' in the log.
From what I currently see on mx1, each of the "Domain not found" reports is valid (there is really no domain, resp. the hostname of the sender address is wrong or does not exist). What I am a bit curious about: I normally run at least a local caching DNS server on my MX - to avoid the extra round trips. In addition: as far as I know, none of our internal machines are using the MX for outgoing Emails - so why should rely on anna/elsa for our MX at all? My suggestion would be to run a reliable, caching DNS on MX1 & MX1, which is using external DNS either as forwarders or the root NS directly. For anna/elsa, I think we can gather some statistics from bind now and see who is generating most of the queries and where we see broken external DNS. BTW: your Email setup on MX1,2 is way more complex than my named.conf ;-) With kind regards, Lars