--On Wednesday, August 28, 2013 2:22 PM -0500 Noel Jones
<njo...@megan.vbhcs.org> wrote:
On 8/28/2013 2:06 PM, Quanah Gibson-Mount wrote:
We have a client allowing auth'd submissions over port 25.
Unfortunately, the authenticated submissions are hitting their RBL
settings. The postfix release is 2.10.0, with the following
parameters:
smtpd_recipient_restrictions = reject_non_fqdn_recipient,
permit_mynetworks, reject_unlisted_recipient,
reject_unknown_sender_domain, reject_rbl_client dnsbl.njabl.org
reject_rbl_client cbl.abuseat.org reject_rbl_client bl.spamcop.net
reject_rbl_client sbl.spamhaus.org reject_rbl_client
relays.mail-abuse.org, permit
smtpd_relay_restrictions = permit_sasl_authenticated,
permit_mynetworks, reject_unauth_destination
I thought the smtpd_relay_restrictions would automatically allow the
email to pass the RBLs, but this does not appear to be the case.
Adding permit_sasl_authenticated to smtpd_recipient_restrictions in
front of permit_mynetworks allows the email to go through.
Is this simply a misconfiguration on my part?
For a message to be accepted, it must pass *each* of the
smtpd_*_restrictions sections.
As a rule of thumb, anywhere you use permit_mynetworks you'll also
need permit_sasl_authenticated.
Perfect, thanks!
--Quanah
--
Quanah Gibson-Mount
Lead Engineer
Zimbra, Inc
--------------------
Zimbra :: the leader in open source messaging and collaboration
