On 24-May-2009, at 15:02, mouss wrote:
LuKreme a écrit :
May 23 14:48:17 mail postfix/smtpd[30899]: NOQUEUE: warn: RCPT from
201-88-100-143.gnace704.dsl.brasiltelecom.net.br[201.88.100.143]:
Dynamic DSL looking address; from=<subsidize...@maww.com>
to=<consorti...@domain3.example> proto=ESMTP helo=<speedtouch.lan>
note that the IP is listed in zen (PBL and XBL via CBL), spamcop,
Barracuda, ...
Right, but those checks come much much later. I've tried to have the
order of the restrictions make some sort of sense, with the quick and
easy rejections at the top and the RBLs (well, the RBL, singular)
last. A _LOT_ of stuff gets rejected or greylisted before it ever
reaches checking zen. This is specifically why I have the helo checks
so early.
reject_unknown_sender_domain,
better move this one later in the chain. it is an expensive check.
How much later? After the pcre checks? I thought I had the
restrictions in a pretty good order based on last time I asked about
them.
Did you reload postfix after changing the pcre map? if not, you'll
need
to wait until it is loaded by a new child.
I hadn't made changes to the pcre map, I just went to check the logs
for DSL messages and noticed these .lan (and some .home) that were not
hitting. Oddly enough, I must have done SOMETHING though (I did add
'example' to the pcre and save the file), because they are hitting
solidly now.
May 24 17:09:15 mail postfix/smtpd[77331]: NOQUEUE: reject: RCPT from
host-84-221-137-3.cust-adsl.tiscali.it[84.221.137.3]: 554 5.7.1
<speedtouch.lan>: Helo command rejected: Mailserver name in private
namespace; from=<counterrevolut...@snowjensen.com> to=<bertha.pillsn...@domain8.example
> proto=ESMTP helo=<speedtouch.lan>
--
Battlemage? That's not a profession. It barely qualifies as a
hobby. 'Battlemage' is about impressive a title as 'Lord of the
Dance'. <PAUSE> I'm adding Lord of the Dance to my titles.
