On Tue, Aug 21, 2012 at 7:52 PM, /dev/rob0 <r...@gmx.co.uk> wrote: > On Tue, Aug 21, 2012 at 09:03:47AM -0500, > Alfonso Alejandro Reyes Jiménez wrote: > > I've postfix working great but I cant make the rbl works, I have > > the configuration but when I test the configuration it seems not > > to be working. > > > > I'm testing with http://www.crynwr.com/spam/ Spamhaus has that ip > > address listed but I'm still getting those emails. > > > > Here's the postconf -n result: > > > > [root@mail ~]# postconf -n > > Irrelevant parts removed, possibly relevant lines here: > > > mynetworks = 127.0.0.0/8, 10.1.8.27/32, 10.1.8.23/32, > > 172.16.18.101/32, 10.1.215.26/32 > > > smtpd_recipient_restrictions = > > permit_mynetworks,permit_sasl_authenticated,reject_rbl_client > > zen.spamhaus.org,reject_rhsbl_sender > > dsn.rfc-ignorant.org,reject_unauth_destination > > > any ideas? thanks in advance for your help. > > You neglected to show the logs of the acceptance of the crynwr.com > test mail. > > Nevertheless, I do have a WAG for you. Test your server's ability to > resolve records in zen.spamhaus.org. > > [alfonso@mail ~]$ dig 2.0.0.127.zen.spamhaus.org. any > > You should see among the output: > > ;; ANSWER SECTION: > 2.0.0.127.zen.spamhaus.org. 300 IN TXT " > http://www.spamhaus.org/query/bl?ip=127.0.0.2"; > 2.0.0.127.zen.spamhaus.org. 300 IN TXT " > http://www.spamhaus.org/sbl/query/SBL233"; > 2.0.0.127.zen.spamhaus.org. 300 IN A 127.0.0.4 > 2.0.0.127.zen.spamhaus.org. 300 IN A 127.0.0.10 > 2.0.0.127.zen.spamhaus.org. 300 IN A 127.0.0.2 > > If you're using a nameserver external to you, such as Google Public > DNS or any ISP's resolver, there is a very good chance that Spamhaus > is blocking your queries. > > If my guess is right, you can possibly fix it by installing and using > your own local caching resolver, i.e., BIND named(8) or other > implementation of DNS recursion. Offer void where taxed or > restricted, or if your number of queries puts you in excess of > Spamhaus maximum allowed. (In that case, see about their paid > service; well worth the small expense per mailbox.) > -- > http://rob0.nodns4.us/ -- system administration and consulting > Offlist GMX mail is seen only if "/dev/rob0" is in the Subject: >
I never realized that I had this issue too. But, after running the tests, I found out that my queries were indeed blocked by spamhaus. So, I changed the servers as pointed out and bingo, spam was successfully being blocked. Thanks /dev/rob0
