From: Noel Jones (no email)
Date: Thu Feb 01 2007 - 15:03:33 EST
At 01:44 PM 2/1/2007, Curt LeCaptain wrote:
>Postconf -n output:
No glaring errors, couple little things.
>relay_domains = $mydestination
If you don't relay for subdomains of $mydestination, you should set
relay_domains =
ie. empty value. If you do have subdomains of $mydestination, you
should populate relay_recipient_maps with a list of valid recipient names.
>smtpd_recipient_restrictions = permit_mynetworks
>permit_sasl_authenticated check_client_access
>hash:/etc/postfix/pop-before-smtp reject_unauth_destination
>check_sender_access hash:/etc/postfix/spamfriends
>reject_non_fqdn_hostname reject_non_fqdn_sender
>reject_non_fqdn_recipient reject_unknown_sender_domain
>check_sender_access hash:/etc/postfix/spamfriends reject_rbl_client
>combined.njabl.org reject_rbl_client bl.spamcop.net
>reject_rbl_client list.dsbl.org reject_rbl_client zen.spamhaus.org
>permit
You have your spamfriends listed twice, remove the second occurrence.
>smtpd_use_tls = no
If you are using SASL, it's common to also use TLS to protect
plain-text passwords from being sniffed.
>Log Entry:
>Feb 1 13:37:36 admin postfix/smtpd[24392]: connect from
>CPE-ip-add-re-ss.new.res.rr.com[ip.add.re.ss]
>Feb 1 13:37:48 admin postfix/smtpd[24392]: NOQUEUE: reject: RCPT from
>CPE-ip-add-re-ss.new.res.rr.com[ip.add.re.ss]: 554
> Service unavailable; Client host [ip.add.re.ss] blocked using
>combined.njabl.org; Dynamic/Residential IP range listed by N
>JABL dynablock - http://njabl.org/dynablock.html;
>from=<> to=<> proto=SMTP helo=<itol.com>
>Feb 1 13:37:51 admin postfix/smtpd[24392]: disconnect from
>CPE-ip-add-re-ss.new.res.rr.com[ip.add.re.ss]
Is this you from home trying to send mail to the local system?
Test your spamfriends map with postmap:
# postmap -q hash:spamfriends
should return "OK". Make sure you "postfix reload" after making
changes to main.cf.
-- Noel Jones
|
|
|