On 8/28/2013 2:06 PM, Quanah Gibson-Mount wrote: > We have a client allowing auth'd submissions over port 25. > Unfortunately, the authenticated submissions are hitting their RBL > settings. The postfix release is 2.10.0, with the following > parameters: > > smtpd_recipient_restrictions = reject_non_fqdn_recipient, > permit_mynetworks, reject_unlisted_recipient, > reject_unknown_sender_domain, reject_rbl_client dnsbl.njabl.org > reject_rbl_client cbl.abuseat.org reject_rbl_client bl.spamcop.net > reject_rbl_client sbl.spamhaus.org reject_rbl_client > relays.mail-abuse.org, permit > > smtpd_relay_restrictions = permit_sasl_authenticated, > permit_mynetworks, reject_unauth_destination > > > I thought the smtpd_relay_restrictions would automatically allow the > email to pass the RBLs, but this does not appear to be the case. > > Adding permit_sasl_authenticated to smtpd_recipient_restrictions in > front of permit_mynetworks allows the email to go through. > > Is this simply a misconfiguration on my part?
For a message to be accepted, it must pass *each* of the smtpd_*_restrictions sections. As a rule of thumb, anywhere you use permit_mynetworks you'll also need permit_sasl_authenticated. -- Noel Jones > > Thanks, > Quanah > > -- > > Quanah Gibson-Mount > Lead Engineer > Zimbra, Inc > -------------------- > Zimbra :: the leader in open source messaging and collaboration
