Cpanel14b associates with wrong IP address

Collapse
X
 
  • Time
  • Show
Clear All
new posts
  • clia@email.com
    Junior Member
    • Apr 2004
    • 1

    Cpanel14b associates with wrong IP address

    I have a client reported bounced email in early March. I found that the cpanel14b.gzo.com associated with a strange IP (in email header):

    from cpanel14b.gzo.com (58.69-93-111.reverse.theplanet.com [69.93.111.58] (may be forged)

    Both theplanet.com and 69.93.111.58 are on SpanCop.net black list. When having an IP check by nslookup cmd, I can get the correct IP address.

    > cpanel14b.gzo.com
    Server: sun.belviewtech.local
    Address: 192.168.16.2

    Name: cpanel14b.gzo.com
    Address: 64.5.51.25

    I have reported the issue to Andrew but as of today the problem is still unsolved. Is anyone else on Cpanel14 has same problem? Any suggestion?
  • AndrewT
    Administrator
    • Mar 2004
    • 3653

    #2
    cpanel14b and it's IP's are setup perfectly fine. It resolves to the correct IP and the reverse DNS is setup correctly.

    root@cpanel24 [~]# traceroute cpanel14b.gzo.com
    traceroute to cpanel14b.gzo.com (64.5.51.25), 30 hops max, 38 byte packets
    1 c1-f00.b1-e21.stl1.rackmy.com (63.246.15.1) 1.042 ms 1.083 ms 1.069 ms
    2 c1-f00.b1-e21.stl1.rackmy.com (63.246.15.1) 1.134 ms 1.151 ms 0.880 ms
    3 ge-5-1-113.hsa1.StLouis1.Level3.net (63.208.32.177) 0.955 ms 1.350 ms 1.200 ms
    4 ge-6-0-0.mp1.StLouis1.Level3.net (64.159.0.61) 3.530 ms 1.268 ms 1.087 ms
    5 so-2-0-0.bbr2.Dallas1.Level3.net (64.159.4.221) 35.915 ms 33.034 ms 35.641 ms
    6 so-6-0.ipcolo2.Dallas1.Level3.net (4.68.112.186) 33.037 ms 32.941 ms 32.841 ms
    7 unknown.Level3.net (63.209.48.110) 32.357 ms 31.070 ms 31.045 ms
    8 car2-4-v1.dllstx2.theplanet.com (12.96.160.20) 92.116 ms 284.820 ms 263.766 ms
    9 cpanel14b (64.5.51.25) 31.787 ms 30.793 ms 30.919 ms

    Comment

    • carlos
      Junior Member
      • Jul 2005
      • 4

      #3
      Strange IP on cpanel14b...

      Originally posted by clia@email.com
      I have a client reported bounced email in early March. I found that the cpanel14b.gzo.com associated with a strange IP (in email header):

      from cpanel14b.gzo.com (58.69-93-111.reverse.theplanet.com [69.93.111.58] (may be forged)

      Both theplanet.com and 69.93.111.58 are on SpanCop.net black list. When having an IP check by nslookup cmd, I can get the correct IP address.

      > cpanel14b.gzo.com
      Server: sun.belviewtech.local
      Address: 192.168.16.2

      Name: cpanel14b.gzo.com
      Address: 64.5.51.25

      I have reported the issue to Andrew but as of today the problem is still unsolved. Is anyone else on Cpanel14 has same problem? Any suggestion?
      Hi y'all:

      I have the exact same problem. This is what my netstat report when I connet from cpanel14b to another server:

      tcp 0 0 mail.myserver.com:ssh 58.69-93-111.reverse.:37096 ESTABLISHED

      Now, what is that IP???

      I'm trying to setup myserver.com's firewall to accept connections only from cpanel14b's real address, but it doesn't work because cpanel14b doesn't have the correct IP.

      Any thoughts?

      If I traceroute, ping it, whois it or whatever, it reports it's correct IP, but netstat (which is NEVER wrong) says that cpanel14b's address is bogus.

      Help me, please...


      Cheers,



      Carlos...

      Comment

      • AndrewT
        Administrator
        • Mar 2004
        • 3653

        #4
        Please submit a trouble ticket for support.

        Comment

        Working...