--On Freitag, April 05, 2013 18:23:10 +0700 Sthu Deus <***@gmail.com>
wrote:
[DNS]
Don't forget to add a rule for TCP, DNS uses both UDP and TCP (even if this
may be unrelated to your current problems).

Yours sincerely,
Ralf Döblitz
--
Ralf Döblitz
***@asco.de
Phone +49 531 3906-116

asco GmbH
Inselwall 11
D-38114 Braunschweig
Germany

Phone +49 531 3906-0
Fax +49 531 3906-400
http://www.asco.de

Amtsgericht Braunschweig HRB 5035
Geschäftsführer Jochen Grote

Good time of the day.


I'm trying to make postfix resolving domain addresses through TOR
service. And it works for other programs, like, say aptitude that
resolves names then uses FTP connection or a browser - that goes to
web through privoxy+TOR, but postfix keeps giving me

Host or domain name not found. Name service error for name=HOSTNAME
type=MX: Host not found, try again)

In nat table i have:

/sbin/iptables -t nat -A OUTPUT -p udp -m udp --dport 53 -j REDIRECT
--to-ports 53

In filter/nat tables I see that postfix makes attempts to resolve the
domain: i see in filter OUTPUT chain that postfix sends packets to
127.0.0.1:53

and in nat OUTPUT i see its packets also (checked w/ "owner" module),

finally i see packets arriving in filter INPUT on 53-rd port.

So, i suppose that all should work - but it does not.

Do you have an idea what can wrong?

Or may you have experience w/ TOR and other applications that it would
not resolve names for?

Please, any ideas that may help.

Thanks for Your time.


Sthu.

Good time of the day, Szalay.
Yes, you were correct, - TOR does not support MX records. :o(

Is there a way to go diver DNS hosts for postfix and other app.s -
probably based on packets owners?


Sthu.