On Thu, Nov 25, 2010 at 10:24:32AM -0600, Noel Jones wrote:
>> However, you can't use reject_rbl_client in these tables (see man 5
>> access).
>
> Yes, you can use reject_rbl_client (or any other built-in restriction) as a
> result of a table lookup. Restriction classes are only required if you
> need nested lookup tables or a list of actions. See postconf(5) for
> details.
Actually, lists are OK too, it is just new tables that can't be introduced
on the right hand side of an access(5) lookup.
You just can't start a list with one of the built-in access(5) keywords
that is also a restriction list building block:
reject
defer
defer_if_reject
defer_if_permit
since these will be treated as an "ACTION <optional text>" form rather
than a "restriction, restriction, ..." list.
--
Viktor.
