Hi!.
I have a secondary MX server and I'm trying to configure it to "check"
recipient addresses against primary SMTP servers to reject emails
directed to non existing addresses.
I've read the following:
http://www.postfix.org/ADDRESS_VERIFICATION_README.html
So I added this to my main.cf:
address_verify_map = btree:/var/lib/postfix/verify
address_verify_positive_refresh_time = 14d
and:
smtpd_recipient_restrictions =
permit_mynetworks,
permit_sasl_authenticated,
reject_unauth_pipelining,
reject_non_fqdn_recipient,
reject_unknown_recipient_domain,
reject_unauth_destination,
reject_rbl_client bl.spamcop.net,
reject_rbl_client dnsbl.ahbl.org,
reject_rbl_client zen.spamhaus.org,
check_policy_service unix:private/policy-spf,
reject_unverified_recipient, <--------------- This
permit
This works nicely when MX1 servers are working and answering RCPT-TO
checks, but then I asked ... what happens if my server can't reach the
primary MX (server stopped, misconfiguration, power outage...) ?
In that case my server reacts rejecting ALL email because if cannot be
verified with "Recipient address rejected: unverified address: Address
verification in progress".
Is it possible to change behaviour to ACCEPT all email when the primary
MX cannot be contacted for address verification?. I mean:
- If MX can be contacted -> check it and reject if 550.
- If MX cannot be contacted -> just accept it.
This machine is a secondary MX server for some domains so I'm supposed
to accept email for them when they are not available...
I'm using postfix 2.5.1 .
Thanks a lot, and sorry if this is a very obvious question...
--
Santiago Romero
