I'm trying to understand reply maps' use. Specifically postscreen's.
If I set up config in main.cf as
default_rbl_reply = $rbl_code [P4] Service unavailable; $rbl_class
[$rbl_what] blocked using $rbl_domain${rbl_reason?; $rbl_reason}
postscreen_dnsbl_reply_map =
pcre:/etc/postfix/postscreen_dnsbl_reply_map.pcre
rbl_reply_maps = ${stress?lmdb:/etc/postfix/rbl_reply_maps}
and
/etc/postfix/rbl_reply_maps
b.barracudacentral.org=127.0.0.2 521 4.7.1 Service unavailable;
$rbl_class [TEST1] [$rbl_what] blocked using
$rbl_domain${rbl_reason?; $rbl_reason}
/etc/postfix/postscreen_dnsbl_reply_map.pcre
/barracudacentral\.org$/ [TEST2] DNSBL[Barracuda]
When postscreen hits on a Barracuda DNSBL, my logs show
Sep 3 02:12:55 virt1 postfix/postscreen[53233]: NOQUEUE: reject: RCPT from
[37.49.226.131]:5897: 550 5.7.1 Service unavailable; client [37.49.226.131]
blocked using [TEST2] DNSBL[Barracuda]; from=<[email protected]>,
to=<[email protected]>, proto=SMTP, helo=<mail.com>
So obviously the postscreen_dnsbl_reply_map is kicking in.
But it's rejecting with the default "550 5.7.1".
What do I need to edit if I want to postscreen to reject -- in this example --
Barracuda hits with "521 4.7.1", leaving the default as-is?
