On 2010-09-08 06:02, pf at alt-ctrl-del.org wrote: > Am I missing something obvious? > > With many ISPs providing generic PTR, > reject_unknown_reverse_client_hostname is too gentle. > > I'd really like to implement reject_unknown_client_hostname, but I've > seen too many cases where address->name mapping = exists, the > name->address mapping = exists, BUT the name->address mapping is in > the same /24 - but off by a couple of IPs. > > Is there a test that I'm missing out on that is simply address->name > mapping = exists, and name->any address mapping = exists? > Or a chain of tests that can accomplish the same thing?
You can use a policy server for implementing more complicated restrictions than Postfix supports internally. Postfwd <http://www.postfwd.org> has a very flexible configuration syntax and can probably do what you want. You could also write your own custom policy server. See also <http://www.postfix.org/SMTPD_POLICY_README.html>
