nope.

I can safely say, you are on a network or LAN. The DNSBL antispam blacklist, listed all network/LAN IP addresses, so any computers in the world who are connected behind a networl/LAN will be blocked.

It's a hassle yes. But most spammers are behind a network/LAN, so it's one way to block them really early. Other than blocking their public IP addy.

mrdav, what's your (external) IP?

You can either enable the Debuglog (set $debug to 1 in /conf/_advanced.php) or replace

$error_ip_blocked = sprintf( /* TRANS: %s is the name of a DNS blacklist */ T_('Your IP address is listed in «%s».'), $ip_blocked_by );

with

$error_ip_blocked = sprintf( /* TRANS: %s is the name of a DNS blacklist */ T_('Your IP address (%s) is listed in «%s».'), $Hit->IP, $ip_blocked_by );

in /plugins/_dnsbl_antispam.plugin.php to get it displayed with the error.

Maybe editing the list of used block lists would help (in the plugin settings)?! If so, please tell us which was the bad one (list.dsbl.org and sbl-xbl.spamhaus.org should get used by defaults)

his current PUBLIC IP is not listed in any dnsbls (I used a tool to check 120 at a time)

Hmm... interesting.

Though in my blog, I noticed that all PCs behind a network/LAN get the said message but they can confirm their identity via the captcha code.

Using the same IP addy on a computer not behind a network/LAN, everything is fine.

So its not supposed to block network/LAN PCs / IP Addys?

Sorry for the delay. I've been on vacation. Laibcoms solution works. I now have the catpcha working and was able to validate with it.

Thanks.

:lol:

Technical detail: dnsbl is not antispam central. dnsbl is an external list of IPs (I think it's IPs - could be more!) and antispam central is a list of keywords specific to b2evolution.

If you are behind a proxy, this one will send a HTTP_X_FORWARDED_FOR header with your (local) IP address. But it gets no higher priortity for b2evo than the REMOTE_ADDR.

So, therefor, mrdav, please tell us what the IP is that gets reported as being blocked? Is it your public or local IP?

Oh, it's been awhile, but I am sure it was my public, which is - 69.97.192.166 . But when it first occured it was on 1.6, and the ip was different( still my public IP, a different one tho)...I made some hardware changes, which changed my mac address... which changed my IP.

The internal IP I have kept the same, but it is common to most routers of my type. I dunno if this gtes reported as a proxy or no.

I use a proxy for a server program, but it is only used for that program as far as I know, and I only use it infrequently. mIRC, for instance reports my public IP correctly.

The above IP is not listed in the default DNSBLs.

So, I guess that gethostbyname() is broken on your setup and therefor probably all IPs are considered listed there.

What does

<?php
$r = gethostbyname( '166.192.67.69.sbl-xbl.spamhaus.org' );
var_dump($r);
?>

output?

And if you have SSH/shell access on the server, what does

nslookup 166.192.67.69.sbl-xbl.spamhaus.org

say?

You may also want to try 2.0.0.127.sbl-xbl.spamhaus.org (test/always matches) and sbl-xbl.spamhaus.org alone.

hmmm...it outputs - string(13) "66.193.46.112"

You will have to clue me in...I don't know what I am looking at.

It seems everyone on the blog has needed to validate...at least all the admins I have talked to.

http://remonstrans.net/

theres a problem there, and im not entirely sure why no-one else can see and/or say that its not thiers (do we not pay attn to these things? a little forest through the trees issue?) -- thats NOT my ip its displaying (66.193.46.112).

http://network-tools.com/default.asp?prog=trace&Netnic=whois.arin.net&host=66.193.46.112

for tools sake ppl, 66.193.46.112 == remonstrans.net

The expected result would be this:

$ php -r '$r = gethostbyname( "166.192.67.69.sbl-xbl.spamhaus.org" ); var_dump($r);'
string(34) "166.192.67.69.sbl-xbl.spamhaus.org"

For a match it would look like:

$ php -r '$r = gethostbyname( "2.0.0.127.sbl-xbl.spamhaus.org" ); var_dump($r);'
string(9) "127.0.0.2"

And a no-match:

daniel@base { ~ }$ php -r '$r = gethostbyname( "1.0.0.127.sbl-xbl.spamhaus.org" ); var_dump($r);'
string(30) "1.0.0.127.sbl-xbl.spamhaus.org"

blueyed, i have to step up and say that perhaps a little more info than that might be needed -- since none of those 3 items are what he saw.

Truth be told, these are prolly the issues that cause the most frustration with users -- and always they seem to take a gazillion posts to resolve.

Here is my take: whatever is looking up the ip is only seeing the ip of the domain. So go from there..? A DNS issue on the box perhaps? Broke getaddrinfo?

He should try:

daniel@base { ~ }$ php -r '$r = gethostbyname( "1.0.0.127.sbl-xbl.spamhaus.org" ); var_dump($r);' 
 string(30) "1.0.0.127.sbl-xbl.spamhaus.org" 

If that also returns only the IP, then getaddrinfo() may be borken.

DNSBL work like this:
the reverse IP gets askes as a subdomain and if the address can be resolved it's in the BL.
127.0.0.2 should always be in. 127.0.0.1 not.

alrighty then!! I see this thread having some sort of resolution in < gazillion threads :) Might not be the best resolution we can hope for, but all the same...

Hi,

I installed this dnsbl_antispam plugin to 1.9.2 and received this error message in the tools tab.

Fatal error: Call to undefined function: param_arrayindex() in C:\Documents and Settings\HP_Administrator\My Documents\websites\b2evolution\blogs\plugins\_dnsbl_antispam.plugin.php on line 185

it installed fine and there are no other error messages...

Any ideas?

I've released version 1.9.1 of the dnsbl plugin, which fixes the error reported by dub27.

You can download it from SF.net: http://sourceforge.net/project/showfiles.php?group_id=160495&package_id=219132

will give it another try... thanks!

fyi, error message is gone in the tools tab

really nice anti-spam tool!