On 10/04/16 15:00, Curtis Villamizar wrote: > This is a workaround that shouldn't be needed. > > Any idea what the cause of this is? So far no legit mail except gmail > gets caught here.
gmail uses hundreds, or thousands of MTAs and has the unique property that when they retry after a deferral it is almost always from a different server (IP). So postfix clears one IP and they retry from another which postfix did not clear yet. Rinse and repeat ad-nauseum. The only workaround is to either receive so much mail from google that you eventually get most of their servers on your temporary whitelist, or to whitelist them in some other way. newer versions of postfix allow you to whitelist based on DNSWLS and if you use dnswl.org it will include the google servers. In older versions of postfix you will need to whitelist them manually like you have already done, but they change from time to time so you need to keep the list up to date. Peter
