On 11/18/2017 12:54 PM, Benny Pedersen wrote: > /dev/rob0 skrev den 2017-11-18 18:36: > >> Again, as Noel said twice upthread, it makes more sense to do the >> whitelisting in Postfix rather than in the policy server. Just a >> simple check_client_access lookup, an example of which was given >> already. > > why not help resolve policyd-spf-perl to have whitelist support ? >
The primary mx must never reject mail from the backup mx. The backup mx must be whitelisted in postfix so none of the other restrictions reject it. While it would be nice if the policy had whitelist support, that's not the right place to whitelist a backup mx. -- Noel Jones
