Email Passed checks even though DNS server or domain failure - ORF Forums

Email Passed checks even though DNS server or domain failure RSS Back to forum



I'm looking at the ORF viewer and see the following Message for one of the incoming messages:

DNS error. Test: "DNSBL: AHBL", server: "", domain: "", record type: A, protocol: UDP. Server response: DNS server or domain failure (SERVFAIL, RCODE 2).

The message is spam and I think this DNS error suggests that the domain is not found. The question is why then the message gets passed to the recipient and doesn't get marked as blacklisted?

Thank you,

by sergela 5 years ago

@sergela: Hello,

This message reports that looking up in DNS has failed. These type of errors are actually expected, so the error handling policy of ORF is to skip the smallest possible step in the testing process on a blacklisting error. In this particular case, it means that the email testing continued with the next DNSBL, barely affecting the overall performance. Due to this, a single DNS failure will not automatically cause the email to pass checks.

The reason why this lookup has failed is that the AHBL blacklist has shut down a while ago. I recommend updating your DNSBL and SURBL definitions from and to enable the recommended DNS Blacklists and SURBLs from here:

Also, I have noticed that the DNS server from the log message is, a Level3 DNS server. We recommend setting up ORF with a dedicated local DNS server using root hints as you may run into issues with DNS servers that aggregate traffic from several clients. Please see regarding this.

by Péter Karsai (Vamsoft) 5 years ago
(in reply to this post)

New comment

Fill in the form below to add a new comment. All fields are required. If you are a registered user on our site, please sign in first.

It will not be published.
hnp1 | hnp2