peter pilsl wrote: > Our mailserver is behind a NAT-firewall (port 25 is passed through to > the internal mailserver) and I ran into the ALL_TRUSTED-problem. I > looked up the FAQ and set > > trusted_networks 127.0.0.1 (which actually gives me a warning that > 127.0.0.1 is already part of trusted_networks) > > Nevertheless spamassassin ALL_TRUSTED kicks in. > > example below. > > The exact setup here is: > > The firewall/router has a public IP to the outside and the mailserver > is with a private ip in the inside. Only port 25 is forwarded from > the firewall directely to the mailserver, which also greets with the > name of the public IP. I guess this is why trusted-networks kicks in > somehow? or is it the the line Received from phoenix.local by > phoenix.local via LMTPA ??
I could be wrong here, but I think trying to set trusted_networks to 127.0.0.1 is treated the same as not setting it at all. You really need to trust your own mail server for sanity's sake. Try setting trusted_networks to both the internal and external IP's of the mailserver. -- Bowie
