In our file "errors.current", we have many tousends of such entries:
Fri Feb 1 13:24:49 2008 Warning: Received an invalid DNS Response: rcode=ServFail data="'\\x8e\\x85\\x81\\x82\\x00\\x01\\x00\\x00\\x00\\x00\\x00\\x00\\x0edrillerssupply\\x03com\\x00\\x00\\x0f\\x00\\x01'" to IP 10.168.3.24 looking up drillerssupply.com
What's about the above IP 10.168.3.24?
(Is this IP sending or receving a mail? Whats the meaning of this IP?)
Nearly all entries occures in combination with only 3 IPs. None of this IP is a mailserver or ironport.
What exactly can I do to minimize or prevent such entries?
I have this problem too.