On 6/10/2014 2:59 PM, uffe wrote: > Hello, > > Subject: Problem understanding check_client_access and tcp_table > > I have a problem understanding how to properly use check_client_access with > an external tcp_table (daemon) > > in my main.cf i have put the following: > > smtpd_client_restrictions = check_client_access tcp:[127.0.0.1]:11111 > > The lookup process itself works - but I was under the impression that my > tcp_table "daemon" would receive a "get " lookup requests with the source ip > address as argument... > > What I am receiving is lots of lookup "get" requests with argument "unknown" > and nothing else. > > My guess is that the "unknown" string represents unresolvable reverse > lookups - because I'm testing with loopback 127.0.0.x addresses > > But what I was expecting was to receive lookup "get" requests with the raw > source ip address as argument - as "unknown" is not of much use for spam > analysis. > > Did I misunderstand the check_client_access ? > > How do I get the raw source ip address to my tcp_table lookup "daemon" ? > > I'm using Postfix 2.11.1 on FreeBSD 10 > > Thanks in advance > > Kind regards Uffe
check_client_access will test the hostname first, then if not found, the IP address. This behavior is independent of table lookup type. So your tcp table will need to respond to all hostname queries with 500 Not Found followed by a newline. This will allow the IP query to happen. -- Noel Jones
