DNS Blacklist query

[Kris]

Hi!

Do you think it is possible to use the DNS test to query DNS blacklists?
And if so, could you please point me in the right direction for settings?

Thaaaaanks!

[KS-Soft]

I think there are many DNSBL providers, most of them support DNS protocol but you should check documentation published by specific provider, the one you are using.

Regards
Alex

[Kris]

Hi Alex,

The DNS blacklists return an IP address based on a reverse query.
If you wanted to know if 11.22.33.44 was blacklisted with Spamcop, the nslookup query would be:

NSLOOKUP 44.33.22.11.bl.spamcop.net

I can't seem to translate that to the DNS test in HM

Must be missing something (again.. )

[KS-Soft]

I cannot get any reply from bl.spamcop.net. Tried TCP and UDP.
May be they use non standard port, may be different server should be used...
Could you contact spamcop.net support team?

Regards
Alex

[KS-Soft]

If you will not find correct DNS server, you may use 8.8.8.8 or 1.1.1.1
Set "Reverse alert" test option so "no record" will set Ok test status

Regards
Alex

[Kris]

Hi Alex,

You beat me to it!

Fresh start in the morning, got it to work.

To do a DNS blacklist check, create a DNS test with the following settings:

- Server: any working DNS server (I used 8.8.8.8 )
- Query (for spamcop): <reversed IP to check>.bl.spamcop.net
- In 'Optional Status Processing', set 'Reverse Alert'

The DNS blacklists will return a value if an IP address is listed.
Most return a value in the range from 127.0.0.2 to 127.0.0.12 or something, depending of why an IP address is listed. You can look these up per DNS blacklist.
If the IP address to check is not listed, the DNS blacklist will return nothing, hence the 'Reverse Alert' setting.

Thanks!

[KS-Soft]

You are welcome

Regards
Alex