Friday, April 05, 2013

postfix through TOR DNS.

Good time of the day.


I'm trying to make postfix resolving domain addresses through TOR
service. And it works for other programs, like, say aptitude that
resolves names then uses FTP connection or a browser - that goes to
web through privoxy+TOR, but postfix keeps giving me

Host or domain name not found. Name service error for name=HOSTNAME
type=MX: Host not found, try again)

In nat table i have:

/sbin/iptables -t nat -A OUTPUT -p udp -m udp --dport 53 -j REDIRECT
--to-ports 53

In filter/nat tables I see that postfix makes attempts to resolve the
domain: i see in filter OUTPUT chain that postfix sends packets to
127.0.0.1:53

and in nat OUTPUT i see its packets also (checked w/ "owner" module),

finally i see packets arriving in filter INPUT on 53-rd port.

So, i suppose that all should work - but it does not.

Do you have an idea what can wrong?

Or may you have experience w/ TOR and other applications that it would
not resolve names for?

Please, any ideas that may help.

Thanks for Your time.


Sthu.


--
To UNSUBSCRIBE, email to debian-firewall-REQUEST@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org
Archive: http://lists.debian.org/515eb428.04d10e0a.755c.3fe9@mx.google.com
at

5 comments:

  1. Anonymous4:24 AM

    Women will find that fashionable peep toe
    shoes are always in trend. Next on the list is the simple spring office dress.

    On the other hand, the Vince Peep Toe Booties add spice to
    a simpler outfit with their intricate buckle detail.


    my website spring shoes

    ReplyDelete
  2. Anonymous4:31 AM

    You can find weekend deals, coupons, and specials throughout the year.
    Possibly you might enjoy a one-hour relaxation massage.

    Do you know where the best deals are or do you usually brave Black Friday on a wing and a prayer.


    My web site hotdeals

    ReplyDelete
  3. Anonymous4:45 AM

    For example, the company recently added a line of womens clothing.
    Wearing white pants can be a fashionable statement, but only if you
    do it right. In this article I will give you a quick fix trick to take back control.


    My webpage general pants

    ReplyDelete
  4. Anonymous4:56 AM

    , it gives you a idea of inventiveness and uncluttered openness.
    When hasn't the Mother Monster pushed the boundaries of sensuality and fashion. Daily Mail- "Why sexy Transformers star Megan Fox is not body perfect.

    Look into my website: hot pants

    ReplyDelete
  5. NotSpam12:07 AM

    Tor's DNS currently only resolves A/AAA records, so it can't handle MX queries.

    Postfix should still work with A/AAA records -- actually, many clearnet domains don't have MX records and work okay.

    You just won't be able to set up backup mail queues.

    ReplyDelete