Wietse Venema put forth on 11/27/2009 5:17 PM: > Stan Hoeppner: >> I'm running my Postfix firewall behind NAT/PAT and the setup didn't >> require any non-default Postfix settings to make it work. I port >> forwarded TCP 25 from my router to my internal Postfix host IP and all >> worked without issue. What settings are you referring to? > > proxy_interfaces=external-ip-address, which is needed to avoid > "mail loops to myself" errors when you provide backup MX service, > and the primary is for some reason not available.
Thanks for the heads up Wietse. What is the effect of proxy_interfaces on a NAT'd Postfix box if I'm not running a/as backup MX? (I'm not) Any? Speaking of mail loops, note the first entry below: uribl.com. 43200 IN MX 10 mx. uribl.com. 43200 IN MX 10 mx.uribl.com. uribl.com. 43200 IN MX 100 mx2. uribl.com. 43200 IN MX 100 mx2.uribl.com. uribl.com is the only site I've ever mailed to that has a non-fqdn hostname for an MX record. When I attempt to send mail to **[email protected], I get the following: Nov 27 19:10:00 greer postfix/smtpd[8196]: connect from gffx.hardwarefreak.com[192.168.100.53] Nov 27 19:10:00 greer postfix/smtpd[8196]: 84D913DA123: client=gffx.hardwarefreak.com[192.168.100.53] Nov 27 19:10:00 greer postfix/cleanup[8199]: 84D913DA123: message-id=<[email protected]> Nov 27 19:10:00 greer postfix/qmgr[8172]: 84D913DA123: from=<[email protected]>, size=701, nrcpt=1 (queue active) Nov 27 19:10:00 greer postfix/smtpd[8196]: disconnect from gffx.hardwarefreak.com[192.168.100.53] Nov 27 19:10:01 greer postfix/smtp[8200]: 84D913DA123: to=<**[email protected]>, relay=none, delay=1.2, delays=0.1/0.03/1/0, dsn=5.4.6, status=bounced (mail for uribl.com loops back to myself) Nov 27 19:10:01 greer postfix/cleanup[8199]: B18AF3DA124: message-id=<[email protected]> Nov 27 19:10:01 greer postfix/qmgr[8172]: B18AF3DA124: from=<>, size=2537, nrcpt=1 (queue active) Nov 27 19:10:01 greer postfix/bounce[8201]: 84D913DA123: sender non-delivery notification: B18AF3DA124 Nov 27 19:10:01 greer postfix/qmgr[8172]: 84D913DA123: removed Nov 27 19:10:01 greer postfix/smtp[8200]: B18AF3DA124: to=<[email protected]>, relay=192.168.100.2[192.168.100.2]:25, delay=0.1 1, delays=0.02/0/0.02/0.07, dsn=2.0.0, status=sent (250 OK) Nov 27 19:10:01 greer postfix/qmgr[8172]: B18AF3DA124: removed I added proxy_interfaces = 65.41.216.221 to main.cf and reloaded before sending the above test message. It doesn't seem to affect/fix this particular mail loop issue I have with uribl.com. Any ideas what's causing this, or how to fix it? This is the first and only domain I've ever had this problem with when attempting delivery. -- Stan
