Douglas Mortensen
2010-11-17 21:30:33 UTC
The IRS has an automated email that goes out to Professional Independent tax preparers when they sign up on the IRS website. It does not retry after SQLGrey initial defers them.
Is it is advisable to whitelist them by IP or FQDN? Is the only advantage of one or the other the fact that IP is quicker because it doesn't require a DNS lookup (is a DNS lookup even done, or is the FQDN based only on the SMTP HELO hostname?), however FQDN is dynamic & will continue to work in case IPs are ever changed?
66.77.65.237 is the only IP I've seen, out of about 4 connection attempts over 2 days. The FQDN shown I the postfix connection logs is vaftp03.qai.irs.gov. Its DNS record also resolves to the IP just mentioned (66.77.65.237). The PTR record for this IP, also resolves to the same hostname.
So is it recommended to whitelist 66.77.65.237, 66.77.65, or vaftp03.qai.irs.gov?
Thanks,
-
Doug Mortensen
Network Consultant
Impala Networks Inc
CCNA, MCSA, Security+, A+
Linux+, Network+, Server+
.
www.impalanetworks.com<http://www.impalanetworks.com>
P: (505) 327-7300
F: (505) 327-7545
Is it is advisable to whitelist them by IP or FQDN? Is the only advantage of one or the other the fact that IP is quicker because it doesn't require a DNS lookup (is a DNS lookup even done, or is the FQDN based only on the SMTP HELO hostname?), however FQDN is dynamic & will continue to work in case IPs are ever changed?
66.77.65.237 is the only IP I've seen, out of about 4 connection attempts over 2 days. The FQDN shown I the postfix connection logs is vaftp03.qai.irs.gov. Its DNS record also resolves to the IP just mentioned (66.77.65.237). The PTR record for this IP, also resolves to the same hostname.
So is it recommended to whitelist 66.77.65.237, 66.77.65, or vaftp03.qai.irs.gov?
Thanks,
-
Doug Mortensen
Network Consultant
Impala Networks Inc
CCNA, MCSA, Security+, A+
Linux+, Network+, Server+
.
www.impalanetworks.com<http://www.impalanetworks.com>
P: (505) 327-7300
F: (505) 327-7545