Hello
The reason behind to apply smtpd_client_restriction is to control the spammers, now what is happening spammers (even those doesn't belongs to our network) are configuring our fake email address of our domain and sending spam emails to the internet which causing our. server black list in many organization. It means that if someone wants to send message through our server they should have to connect through our valid IP address. I want restrict based on the IP address not on the domain level. Many many thanks in advance for your help. Ejaz From: owner-postfix-us...@postfix.org [mailto:owner-postfix-us...@postfix.org] On Behalf Of mejaz Sent: Monday, April 11, 2011 9:08 AM To: 'postfix users' Subject: RE: smptd_client_restriction Hello, Many thanks for your feedback it works for me after replacing "hash" with "cidr" but after that whenever I was trying to send emails to outside domains it says relay access denied although the trusted IPs are listed in my network file. Please help Ejaz -----Original Message----- From: owner-postfix-us...@postfix.org [mailto:owner-postfix-us...@postfix.org] On Behalf Of Noel Jones Sent: Saturday, April 09, 2011 11:36 PM To: postfix-users@postfix.org Subject: Re: smptd_client_restriction On 4/9/2011 9:47 AM, Ejaz wrote: > Hello, > > I was trying to add this "*smtpd_client_restrictions = > check_client_access hash:/etc/postfix/access, > hash:/etc/postfix/mynetworks, reject_rbl_client > bl.spamcop.vnet, reject_rbl_client list.dsbl.org*" in postfix > main.cf file it won't work out for me. > > After adding this smtpd_clients restriction, all emails didn't > go thorugh and get stuck in my outlook outbox. > > FYI my /etc/postfix/mynetworks file contents my own subnet. > > 127.0.0.0/8 OK > > 212.107.96.0/19 OK > > 212.118.96.0/19 OK > > 195.88.244.0/23 OK > > Would any one have an idea where I went wrong? You're using cidr: syntax with a hash: table. This doesn't (and shouldn't) cause an error, but the lookup will never match. better: smtpd_client_restrictions = check_client_access hash:/etc/postfix/access, check_client_access cidr:/etc/postfix/mynetworks, reject_rbl_client bl.spamcop.vnet, list.dsbl.org has been inactive for years. Remove it from your config. Consider adding zen.spamhaus.org instead. -- Noel Jones -- This message has been scanned for viruses and dangerous content by MailScanner, and is believed to be clean. -- This message has been scanned for viruses and dangerous content by <http://www.mailscanner.info/> MailScanner, and is believed to be clean. -- This message has been scanned for viruses and dangerous content by MailScanner, and is believed to be clean.
