IMB's questions

尝试firewalld在新的 AlmaLinux 9 VPS (OpenVZ) 上运行。只做了ff。至今：

dnf upgrade
systemctl start firewalld
systemctl enable firewalld
systemctl status firewalld

我立即收到这些错误：

Oct 26 06:58:14 myserver firewalld[1097]: ERROR: '/usr/sbin/iptables -w10 -t mangle -X' failed: iptables v1.8.7 (nf_tables):  CHAIN_USER_DEL failed (Device or resource busy): chain POSTROUTING_direct
Oct 26 06:58:15 myserver firewalld[793]: ERROR: '/usr/sbin/iptables -w10 -t nat -A PREROUTING -j PREROUTING_direct' failed: iptables v1.8.7 (nf_tables):  CHAIN_ADD failed (No such file or directory): chain PREROUTING
Oct 26 06:58:16 myserver firewalld[793]: ERROR: '/usr/sbin/iptables -w10 -t nat -A PREROUTING -j PREROUTING_direct' failed: iptables v1.8.7 (nf_tables):  CHAIN_ADD failed (No such file or directory): chain PREROUTING
Oct 26 06:58:17 myserver firewalld[1097]: ERROR: '/usr/sbin/ip6tables -w10 -t raw -X' failed: ip6tables v1.8.7 (nf_tables):  CHAIN_USER_DEL failed (Device or resource busy): chain PREROUTING_direct
Oct 26 06:58:17 myserver firewalld[1097]: ERROR: '/usr/sbin/ip6tables -w10 -t raw -X' failed: ip6tables v1.8.7 (nf_tables):  CHAIN_USER_DEL failed (Device or resource busy): chain PREROUTING_direct
Oct 26 06:58:18 myserver firewalld[793]: ERROR: '/usr/sbin/ip6tables -w10 -t nat -A PREROUTING -j PREROUTING_direct' failed: ip6tables v1.8.7 (nf_tables):  CHAIN_ADD failed (No such file or directory): chain PREROUTING
Oct 26 06:58:20 myserver firewalld[793]: ERROR: '/usr/sbin/ip6tables -w10 -t nat -A PREROUTING -j PREROUTING_direct' failed: ip6tables v1.8.7 (nf_tables):  CHAIN_ADD failed (No such file or directory): chain PREROUTING
Oct 26 06:58:20 myserver firewalld[1097]: ERROR: COMMAND_FAILED: '/usr/sbin/iptables -w10 -t mangle -X' failed: iptables v1.8.7 (nf_tables):  CHAIN_USER_DEL failed (Device or resource busy): chain POSTROUTING_direct
Oct 26 06:58:23 myserver firewalld[793]: ERROR: COMMAND_FAILED: '/usr/sbin/ip6tables -w10 -t nat -A PREROUTING -j PREROUTING_direct' failed: ip6tables v1.8.7 (nf_tables):  CHAIN_ADD failed (No such file or directory): chain PREROUTING

有任何想法吗？

说你有ff。电子邮件服务器：

server1.com有邮箱[email protected]

server2.com有邮箱[email protected]

如果 MX 优先级设置为：

Priority: 0
Destination: server1.com

Priority: 10
Destination: server2.com

发送电子邮件[email protected]最终会到达server2.com还是会因为它不存在而立即失败server1.com？

我们的电子邮件被欺骗了。我们已经制定了 SPF/DKIM/DMARC p="quarantine" 政策，但我们的收件箱中仍然收到数千封未送达收据 (NDR)。

更改为 DMARC p="reject" 会阻止 NDR 反向散射吗？

关于如何防止 NDR 反向散射的任何其他建议？

注意：我们使用的是 OpenSRS 托管的电子邮件。

作为他非常受欢迎的问题的后续问题：为什么不推荐 DNS 故障转移？，我认为大家一致认为，由于缓存，DNS 故障转移并非 100% 可靠。

然而，投票最高的答案并没有真正讨论在两个不同数据中心之间实现故障转移的更好解决方案。提出的唯一解决方案是本地负载平衡（单个数据中心）。

所以我的问题很简单，跨数据中心故障转移的真正解决方案是什么？