On 3/30/2017 9:26 AM, John Stoffel wrote: > > Hi all, > > We're running postfix-2.6.6-6.el6_5.x86_64 on RHEL 6.6 and running > into a problem where emails that have been released from our outside > spam protection company, *.protection.outlook.com, are getting > rejected with messages like this: > > Mar 26 06:00:56 mailhost postfix/smtpd[2270]: connect from > mail-sn1nam01lp0113.outbound.protection.outlook.com[207.46.163.113] > Mar 26 06:00:56 mailhost postfix/smtpd[2270]: 51235A07D1: > client=mail-sn1nam01lp0113.outbound.protection.outlook.com[207.46.163.113] > Mar 26 06:00:56 mailhost postfix/cleanup[2279]: 51235A07D1: > message-id=<1490445496218.20153408.25880761.5137938...@backend.ttktravelinsider.com> > Mar 26 06:00:56 mailhost postfix/qmgr[27442]: 51235A07D1: > from=<ttkpub.nore...@ttktravelinsider.com>, size=40439, nrcpt=1 (queue active) > Mar 26 06:00:56 mailhost postfix/local[2278]: 51235A07D1: > to=<saba.shar...@sub.com>, relay=local, delay=0.29, delays=0.28/0/0/0.01, > dsn=5.4.6, status=bounced (mail forwarding loop for saba.shar...@sub.com) > Mar 26 06:00:56 mailhost postfix/bounce[2273]: 51235A07D1: sender > non-delivery notification: 97DF2A080B > Mar 26 06:00:56 mailhost postfix/qmgr[27442]: 51235A07D1: removed > > These emails are released by the end user and should be delivered, but are > getting bounced back. > > How would I go about figuring out if it's really a bogus "Delivered-To: " > header that's causing this rejection? >
Some things you can do... - search your logs for the message-id recorded above to see if this message has been here before. Maybe this mail arrived before, was forwarded off-site, then came back; don't do that. - You can use the HOLD action to freeze an incoming message in the queue before the local delivery agent has a chance to bounce it. Then you can examine the message. To HOLD the message, you can use a check_recipient_access map, or a check_client_access map, or a header_checks rule. (NOTE: don't be tempted to use header_checks IGNORE to remove a bogus Delivered-To header! The internet will thank you.) -- Noel Jones > > > # postconf -n > alias_database = hash:/etc/aliases > alias_maps = nis:mail.aliases > command_directory = /usr/sbin > config_directory = /etc/postfix > daemon_directory = /usr/libexec/postfix > data_directory = /var/lib/postfix > debug_peer_level = 2 > fallback_transport = > html_directory = no > inet_interfaces = all > inet_protocols = ipv4 > local_header_rewrite_clients = static:all > local_recipient_maps = > mail_owner = postfix > mailq_path = /usr/bin/mailq.postfix > manpage_directory = /usr/share/man > masquerade_domains = !hqmta.sub.com $myorigin > message_size_limit = 30240000 > mydestination = $myhostname, localhost.$mydomain, localhost, > $mydomain, sub.com, acs.sub.corp.com > mydomain = sub.corp.com > myhostname = mailhost.sub.corp.com > mynetworks = 127.0.0.0/8, 209.243.0.0/16, 10.0.0.0/8 > myorigin = $mydomain > newaliases_path = /usr/bin/newaliases.postfix > queue_directory = /var/spool/postfix > readme_directory = /usr/share/doc/postfix-2.6.6/README_FILES > relay_domains = $mydestination, other.com, otherfoobar.com > sample_directory = /usr/share/doc/postfix-2.6.6/samples > sender_canonical_maps = hash:/etc/postfix/sender_canonical > sendmail_path = /usr/sbin/sendmail.postfix > setgid_group = postdrop > transport_maps = hash:/etc/postfix/transport_maps > unknown_local_recipient_reject_code = 450 >
