I have set up rbl_override for the sender's domain. However it occasionally gets blocked by spamcop. The user owns a domain but relays the mail from outlook.
Here is the bounce message the user received: ************** Remote server returned '550 5.7.514 Decision Engine classified the mail item was rejected because of IP Block (from outbound normal IP pools) -> 554 5.7.1 Service unavailable; Client host [40.107.93.98] blocked using bl.spamcop.net; Blocked - see https://www.spamcop.net/bl.shtml?40.107.93.98' ************** Here is the the related area from maillog with minimal sanitizing due to google reading these posts. ************** Feb 22 18:25:18 MYDOMAIN postfix/smtpd[12010]: connect from mail-dm6nam10on2098.outbound.protection.outlook.com[40.107.93.98] Feb 22 18:25:18 MYDOMAIN postfix/smtpd[12010]: Anonymous TLS connection established from mail-dm6nam10on2098.outbound.protection.outlook.com[40.107.93.98]: TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits) Feb 22 18:25:19 MYDOMAIN postfix/smtpd[12010]: NOQUEUE: reject: RCPT from mail-dm6nam10on2098.outbound.protection.outlook.com[40.107.93.98]: 554 5.7.1 Service unavailable; Client host [40.107.93.98] blocked using bl.spamcop.net; Blocked - see https://www.spamcop.net/bl.shtml?40.107.93.98; from=<otherper...@senderdomain.com> to=<m...@mydomain.com> proto=ESMTP helo=<NAM10-DM6-obe.outbound.protection.outlook.com> Feb 22 18:25:19 MYDOMAIN postfix/smtpd[12010]: using backwards-compatible default setting smtpd_relay_before_recipient_restrictions=no to reject recipient "m...@mydomain.com" from client "mail-dm6nam10on2098.outbound.protection.outlook.com[40.107.93.98]" Feb 22 18:25:19 MYDOMAIN postfix/smtpd[12010]: disconnect from mail-dm6nam10on2098.outbound.protection.outlook.com[40.107.93.98] ehlo=2 starttls=1 mail=1 rcpt=0/1 quit=1 commands=5/6 Feb 22 18:28:39 MYDOMAIN postfix/anvil[12013]: statistics: max connection rate 1/60s for (smtp:40.107.93.98) at Feb 22 18:25:18 **************** This is the relevant part of my postfix main.cf. I am only showing the spamcop rbl. **************** smtpd_sasl_security_options = noanonymous smtpd_recipient_restrictions = permit_sasl_authenticated, permit_mynetworks, reject_unauth_destination, reject_unauth_pipelining, reject_non_fqdn_sender, reject_unknown_sender_domain, reject_unknown_recipient_domain, reject_non_fqdn_recipient, check_client_access hash:/etc/postfix/client_checks, check_sender_access hash:/etc/postfix/sender_checks, check_client_access hash:/etc/postfix/rbl_override, reject_rbl_client bl.spamcop.net, check_policy_service unix:private/policy ***************** _______________________________________________ Postfix-users mailing list -- postfix-users@postfix.org To unsubscribe send an email to postfix-users-le...@postfix.org
