On Mon, Mar 19, 2012 at 10:59:51AM +0200, K bharathan wrote: > with postscreen i experience the following problem: > it blocks mail from hotmal as following (from mail log) > > Mar 19 10:17:19 relay1 postfix/postscreen[10619]: NOQUEUE: reject: > RCPT from [65.55.116.21]:55820: 450 4.3.2 Service currently > unavailable; from=<x...@hotmail.com>, to=<x...@example.com>, > proto=ESMTP, helo=<blu0-omc1-s10.blu0.hotmail.com> > > this happens to mail from Gmail at random > > i'm running postfix-current-2.9.20111219,4 on freebsd
The 2.9 branch was released and is now up to 2.9.1. You should upgrade that. > postscreen config is as follows: > content_filter = amavisd-new:[127.0.0.1]:10024 > postscreen_access_list = permit_mynetworks, > cidr:/usr/local/etc/postfix/postscreen_access.cidr > > postscreen_dnsbl_threshold = 2 > postscreen_dnsbl_sites = zen.spamhaus.org*2 > bl.spamcop.net*1 > postscreen_dnsbl_action = enforce With this DNSBL configuration, Spamcop is never signficant; it is like having a Zen lookup only. If you want to have the benefit of less-safe DNSBLs like Spamcop, you must have more than one listed, enabling the lower-scored DNSBLs to reach your threshold score. > postscreen_greet_action = enforce > postscreen_pipelining_enable = yes > postscreen_non_smtp_command_enable = yes > postscreen_bare_newline_enable = yes You apparently did not understand this: http://www.postfix.org/POSTSCREEN_README.html#after_220 When you enable these after-220 or "deep protocol" tests, real MTA clients are delayed as you have shown. > is there any way to whitelist sender domain or recipient domain No, there is no such feature in postscreen. -- http://rob0.nodns4.us/ -- system administration and consulting Offlist GMX mail is seen only if "/dev/rob0" is in the Subject:
