May 26, 2024 9:46 PM, "Ian Darwin" <[email protected]> wrote:
> I'd like to use the fcrdns filter but one of my users has a non-negotiable
> need to get mail from a
> site with inept administration. Is there a way to let this one site bypass
> this one filter?
>
> I have two fairly standard 'listen' clauses and the corresponding matches. I
> had fcrdns on the
> first one for a day or two until the flames started.
>
>> listen on egress inet4 port 25 \
>> tls pki darwinsys.com \
>> filter { check_dyndns, check_rdns, rspamd } \
>> tag INCOMING
>> listen on egress port submission \
>> filter { check_dyndns, check_rdns, rspamd } \
>> tls-require pki darwinsys.com \
>> auth tag AUTH
>
> TIA if anyone can help.
You need to share more than the listen lines.
You have omitted the check_rdns filter definition which is where we could plug
a bypass...
