Seeking clue @ Cbeyond / ASN17184 and/or other suggestions

Mike Lewinski mike at rockynet.com
Fri Jun 20 13:07:01 CDT 2008


We're having some difficulties getting a lame DNS delegation and old 
email hosting configuration removed from Cbeyond's servers. According to 
  their front line tech support "We cannot work on something we do not 
host no more".

Jared's NOC list doesn't have anything on them, nor do they appear to 
participate in INOC-DBA. Additional attempts to resolve this are noted 
below.

The specific issues are:

1) lame authority on prosourcedenver.com:

$ dig +short ns prosourcedenver.com @beyond.cbeyond.net.
beyond.cbeyond.net.
infinity.cbeyond.net.
to.cbeyond.net.

vs:

$ dig +short ns prosourcedenver.com @c.gtld-servers.net
ns0.rockynet.com.
ns1.rockynet.com.
ns2.rockynet.com.


Front line tech support indicated this is a Registrar problem, and they 
would open up a ticket with Tucows to get it resolved :(

I also tried sending an email to the address in the SOA:

$ dig +short soa prosourcedenver.com @beyond.cbeyond.net.
prosourcedenver.com. hostmaster.cbeyond.com. 2004042100 86400 1800 
604800 3600
$

Unfortunately, that address is invalid :(

<hostmaster at cbeyond.com>: host mx2.cbeyond.net[64.238.96.58] said: 550 
#5.1.0
     Address rejected hostmaster at cbeyond.com (in reply to RCPT TO command)


2) The invalid MX records that Cbeyond is serving resolve to hosts that 
apparently believe they are authoritative for the prosourcedenver.com 
domain, and are in effect creating an email blackhole:

$ dig +short mx prosourcedenver.com @to.cbeyond.net.
10 mail.west.cbeyond.com.
20 smtp.atl.cbeyond.com.
$ telnet mail.west.cbeyond.com smtp
Trying 66.180.96.57...
Connected to mail.west.cbeyond.com (66.180.96.57).
Escape character is '^]'.
220 mail.east.cbeyond.com ESMTP
EHLO me
250-mail.east.cbeyond.com
250-8BITMIME
250-SIZE 20971520
250-STARTTLS
250-AUTH PLAIN LOGIN
250 AUTH=PLAIN LOGIN
mail from:<>
250 sender <> ok
rcpt to:<MUNGED at prosourcedenver.com>
250 recipient <MUNGED at prosourcedenver.com> ok
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
rcpt to:<anyone at anywhere.com>
550 #5.1.0 Address rejected anyone at anywhere.com
QUIT
221 mail.east.cbeyond.com
Connection closed by foreign host.
$

Email to postmaster at cbeyond.com hasn't resolved the issue either :( All 
of the above commands have been sent to their tech support address in an 
attempt to convince them that the problem is with their servers, but 
they refuse to accept this.

Finally, as an additional note, the whois delegation for their ASN seems 
to be broken:

$ whois -h whois.arin.net 17184
[Querying whois.arin.net]
[Redirected to rwhois.cbeyond.net:4321]
[Querying rwhois.cbeyond.net]
[rwhois.cbeyond.net]
%rwhois V-1.5:003eff:00 rwhois.cbeyond.net (by Network Solutions, Inc. 
V-1.5.9.5)
%error 230 No Objects Found
$

I'm at a loss of how to proceed now, except to tell people who are 
suffering from the email blackhole to find another ISP. Does anyone else 
have any contacts with a clue, or semblance of clue, at Cbeyond? Does 
anyone have any better ideas for me, short of this lame attempt at 
public shaming?

I won't even get into the issue of what a PITA it is to port DIDs from 
them.... :(





More information about the NANOG mailing list