On 29/05/2024 00:27, John Hill via Postfix-users wrote:
On 5/28/24 4:50 PM, John Hill via Postfix-users wrote:
On 5/28/24 4:43 PM, Benny Pedersen via Postfix-users wrote:
John Hill via Postfix-users skrev den 2024-05-28 22:12:
On 5/28/24 3:38 PM, Benny Pedersen via Postfix-users wrote:
John Hill via Postfix-users skrev den 2024-05-28 21:14:
I had dumped the configs but here is what I had.
submission inet n - y - - smtpd
-o smtpd_tls_security_level=encrypt
-o smtpd_sasl_auth_enable=yes
-o smtpd_delay_reject=no
-o { smtpd_client_restrictions = reject_rbl_client
auth.spamrats.com=127.0.0.43, permit }
-o { smtpd_relay_restrictions = permit_mynetworks,
permit_sasl_authenticated, reject }
https://www.spamrats.com/postfix-configuration.php
works for me :)
Does this look correct. I'm not getting a error, waiting to see if
it works.!
submission inet n - n - - smtpd
2 -o smtpd_hard_error_limit=1
3 -o stress=yes
4 -o syslog_name=postfix/submission
5 -o smtpd_etrn_restrictions=reject
6 -o smtpd_sasl_auth_enable=yes
7 -o smtpd_sasl_type=dovecot
8 -o smtpd_sasl_path=private/auth
9 -o smtpd_sasl_security_options=noanonymous
10 -o smtpd_sasl_tls_security_options=noanonymous
11 -o
{smtpd_client_restrictions=permit_mynetworks,permit_sasl_authenticated,reject_rbl_client
xbl.spamhaus,org=127.0.0.4, reject}
12 -o
smtpd_recipient_restrictions=permit_mynetworks,permit_sasl_authenticated,reject
13 -o smtpd_helo_restrictions=permit_mynetworks,permit
14 -o smtpd_tls_security_level=encrypt
15 -o
smtpd_sender_login_maps=mysql:/etc/postfix/mysql-email2email.cf
16 -o milter_macro_daemon_name=ORIGINATING
17
--john
unneeded complicated
line: 2 5 7 8 9 10 13 15 fits better in main.cf
spamrats allow sending mail when recipient is only local
with your config its rejected
I have been sending mail from local/remote authenticated clients?
--john
11 -o
{smtpd_client_restrictions=permit_mynetworks,permit_sasl_authenticated,reject_rbl_client
xbl.spamhaus,org=127.0.0.4, reject}
reject_rbl_client doing nothing.
SASL logon fails ips are in manually found in XBL
Postscreen spamhaus blocks work.
postscreen_dnsbl_sites = zen.spamhaus.org=127.0.0.[2..11] for port 25
--john
Hi John
I think you are missing the following in master.cf for the submission
service
-o smtpd_delay_reject=no
Without that the smtpd_client_restrictions will not be evaluated when
the client connects and so you will allow the connected client to try
authentication.
Personally I use zen.spamhaus.org=127.0.0.4 for submission, but I'm not
sure that makes any difference respect to xbl.spamhaus.org=127.0.0.4.
Also please check your settings in the config files. In the email above
I see a comma in xbl.spamhaus,org instead of a dot. If you copied it
from the config then the config is wrong.
John
_______________________________________________
Postfix-users mailing list -- postfix-users@postfix.org
To unsubscribe send an email to postfix-users-le...@postfix.org
