xref: /netbsd-src/external/ibm-public/postfix/dist/html/dnsblog.8.html (revision 059c16a85b0b39d60ad6d18f53c09510815afa2b) 
1<!doctype html public "-//W3C//DTD HTML 4.01 Transitional//EN"
2        "http://www.w3.org/TR/html4/loose.dtd">
3<html> <head>
4<meta http-equiv="Content-Type" content="text/html; charset=utf-8">
5<link rel='stylesheet' type='text/css' href='postfix-doc.css'>
6<title> Postfix manual - dnsblog(8) </title>
7</head> <body> <pre>
8DNSBLOG(8)                                                          DNSBLOG(8)
9
10<b>NAME</b>
11       dnsblog - Postfix DNS allow/denylist logger
12
13<b>SYNOPSIS</b>
14       <b>dnsblog</b> [generic Postfix daemon options]
15
16<b>DESCRIPTION</b>
17       The  <a href="dnsblog.8.html"><b>dnsblog</b>(8)</a>  server  implements an ad-hoc DNS allow/denylist lookup
18       service. This may eventually be replaced by an UDP client that is built
19       directly into the <a href="postscreen.8.html"><b>postscreen</b>(8)</a> server.
20
21<b>PROTOCOL</b>
22       With   each   connection,   the   <a href="dnsblog.8.html"><b>dnsblog</b>(8)</a>   server  receives  a  DNS
23       allow/denylist domain name, an IP  address,  and  an  ID.   If  the  IP
24       address  is  listed under the DNS allow/denylist, the <a href="dnsblog.8.html"><b>dnsblog</b>(8)</a> server
25       logs the match and replies with the query  arguments  plus  an  address
26       list  with the resulting IP addresses, separated by whitespace, and the
27       reply TTL.  Otherwise it replies with the query arguments plus an empty
28       address  list  and  the  reply  TTL; the reply TTL is -1 if there is no
29       reply, or a negative reply that contains no SOA record.   Finally,  the
30       <a href="dnsblog.8.html"><b>dnsblog</b>(8)</a> server closes the connection.
31
32<b>DIAGNOSTICS</b>
33       Problems and transactions are logged to <b>syslogd</b>(8) or <a href="postlogd.8.html"><b>postlogd</b>(8)</a>.
34
35<b>CONFIGURATION PARAMETERS</b>
36       Changes to <a href="postconf.5.html"><b>main.cf</b></a> are picked up automatically, as <a href="dnsblog.8.html"><b>dnsblog</b>(8)</a> processes
37       run for only a limited amount of time. Use the command "<b>postfix reload</b>"
38       to speed up a change.
39
40       The  text  below provides only a parameter summary. See <a href="postconf.5.html"><b>postconf</b>(5)</a> for
41       more details including examples.
42
43       <b><a href="postconf.5.html#config_directory">config_directory</a> (see 'postconf -d' output)</b>
44              The default location of the Postfix <a href="postconf.5.html">main.cf</a> and  <a href="master.5.html">master.cf</a>  con-
45              figuration files.
46
47       <b><a href="postconf.5.html#daemon_timeout">daemon_timeout</a> (18000s)</b>
48              How  much  time  a  Postfix  daemon process may take to handle a
49              request before it is terminated by a built-in watchdog timer.
50
51       <b><a href="postconf.5.html#postscreen_dnsbl_sites">postscreen_dnsbl_sites</a> (empty)</b>
52              Optional list of DNS allow/denylist domains, filters and  weight
53              factors.
54
55       <b><a href="postconf.5.html#ipc_timeout">ipc_timeout</a> (3600s)</b>
56              The  time  limit  for  sending  or receiving information over an
57              internal communication channel.
58
59       <b><a href="postconf.5.html#process_id">process_id</a> (read-only)</b>
60              The process ID of a Postfix command or daemon process.
61
62       <b><a href="postconf.5.html#process_name">process_name</a> (read-only)</b>
63              The process name of a Postfix command or daemon process.
64
65       <b><a href="postconf.5.html#queue_directory">queue_directory</a> (see 'postconf -d' output)</b>
66              The location of the Postfix top-level queue directory.
67
68       <b><a href="postconf.5.html#syslog_facility">syslog_facility</a> (mail)</b>
69              The syslog facility of Postfix logging.
70
71       <b><a href="postconf.5.html#syslog_name">syslog_name</a> (see 'postconf -d' output)</b>
72              A prefix that  is  prepended  to  the  process  name  in  syslog
73              records, so that, for example, "smtpd" becomes "prefix/smtpd".
74
75       Available in Postfix 3.3 and later:
76
77       <b><a href="postconf.5.html#service_name">service_name</a> (read-only)</b>
78              The <a href="master.5.html">master.cf</a> service name of a Postfix daemon process.
79
80<b>SEE ALSO</b>
81       <a href="smtpd.8.html">smtpd(8)</a>, Postfix SMTP server
82       <a href="postconf.5.html">postconf(5)</a>, configuration parameters
83       <a href="postlogd.8.html">postlogd(8)</a>, Postfix logging
84       syslogd(8), system logging
85
86<b>LICENSE</b>
87       The Secure Mailer license must be distributed with this software.
88
89<b>HISTORY</b>
90       This service was introduced with Postfix version 2.8.
91
92<b>AUTHOR(S)</b>
93       Wietse Venema
94       IBM T.J. Watson Research
95       P.O. Box 704
96       Yorktown Heights, NY 10598, USA
97
98       Wietse Venema
99       Google, Inc.
100       111 8th Avenue
101       New York, NY 10011, USA
102
103                                                                    DNSBLOG(8)
104</pre> </body> </html>
105