I have postscreen running well after having it run in non-blocking mode for
awhile, but I continue to see ‘new’ google servers every day.
I’m not sure how many different mail servers google has (over 600 have appeared
in my logs), but it’s a large number, and each new one hits the postscreen and
delays the mail. And it appears that sometimes, the re-attempt is from a
different server, so it hits the postscreen again.
$ bzgrep " 450 " /var/log/maillog.* | sed 's/.*helo=//' | grep google.com |sort
-u | wc -l
660
$
My mailserver is very low volume, so I am afraid that this is a problem that
will never go away as google servers drop-off the whitelist and then messages
hit the postscreen again.
Other than disabling postscreen which I’m not going to do, is there anything I
can do to whitelist all the google.com domains? I mean, I trust them to be
delivering mail that is desired and will aways pass. Is there a list of the
google mail servers that I can add to the postscreen cidr list and can keep
up-to-date easily?
--
Quis custodiet opsos custodes
