Hi, I have two postfix-v2.8.5 hosts for one domain and have configured postscreen on both of them using 'ignore' for all options while I experiment. I have a few questions that I hoped someone could help me to answer:
- Do I still need the reject_rbl_client commands in smtpd_recipient_restrictions? - Is PREGREET always a sign of a zombie connection or misconfigured client, or is it possible for properly configured clients to also speak before their turn? - Is something like this pregreet enough to reject the client and blacklist them? Nov 19 23:45:06 mail02 postfix/postscreen[12487]: PREGREET 16 after 0.36 from [113.177.86.240]:1974: HELO localhost\r\n - I don't fully understand the "MX Policy test" section of the HOWTO. How do I configure postscreen to listen on both the primary and backup MX addresses? Is this referring to create a virtual interface for the backup MX on the actual primary server? So there would be two IPs for the backup MX host? - Is this the sign of a problem or does this error occur normally? Nov 19 23:46:08 mail02 postfix/master[5814]: warning: process /usr/libexec/postfix/postscreen pid 12487 exit status 1 - I believe something I did during testing was rejecting valid mail. I enabled pipelining and bare_newline, but both were only ever set to 'ignore': postscreen_pipelining_enable = yes postscreen_pipelining_action = ignore postscreen_bare_newline_enable = yes postscreen_bare_newline_action = ignore Could one of these options have caused this error below? If not, any idea how this could have happened? Will clients resend, or have I lost mail here and the sender notified? Nov 20 00:02:55 mail02 postfix/postscreen[20334]: NOQUEUE: reject: RCPT from [93.74.115.187]:64752: 450 4.3.2 Service currently unavailable; from=<n1e...@yahoo.com>, to=<mkchantal.k...@example.com>, proto=SMTP, helo=<server.auff.dns.yahoo.com> Thanks so much. Best, Alex
