About two weeks ago, I set up a new box at work to replace our current mail gateway. After I let it run as a failover for a few days, I updated DNS to reflect that this new box was the primary MX and configured the old one as tertiary.
Two+ weeks later, mail is still streaming through the old gateway. Actually, at this point, I'd estimate that the load is about 50/50.
TTL (time-to-live) on the DNS records is 1 hour, and has been as long as I can recall. When I do a dig from outside the office, everything looks fine, so I know my DNS is responding correctly.
Removing the old gateway from DNS didn't help at all. People started moaning about not getting mail ... and tests from Yahoo confirmed that the mail was not being delivered. As soon as I brought the old gateway back online, here comes the mail ...
I thought that once the external MTA saw that the MX was offline, it would at least try to send through the failover ...
What's really weird is places such as Hotmail ... those guys are sending through both the primary and tertiary ...
I did a TCP dump on the DNS box today, and it sure looks correct to me.
How in the hell do I get external MTAs to stop sending to the old gateway ... ?
Posted from exitwound.org, comment here.
