Charles Sprickman:
> Hi all,
>
> Looking for some help on troubleshooting postscreen?
>
> I was recently reworking the list of rbls that I use with postscreen and
> realized that quite a bit of spam that was getting through was in fact on
> enough blacklists to hit my postscreen threshold. I?m not seeing anything
> obvious in the logs (checking the dnsblog entries), and I?m not sure where to
> start.
>
> I?d really like to get full logging of postscreen and all dnsblog activity
> for a few minutes - is it possible to see all queries and their results? I?m
> not seeing a way to increase verbosity while perusing the dnsblog or
> postscreen manpages. If I?m hitting some odd resource limit (I have like 18
> rbls setup), will some piece of postfix complain about that? Maybe some
> internal caching is why I?m seeing things pass (I?m very specifically looking
> at very fresh spamhosts).
>
> More generally, anyone have any tips/advice on troubleshooting beyond
> Postfix? I?m pointing all my rbl queries at an instance of dnscache (which is
> admittedly quite old, probably abandoned)? Recs on a lightweight dnscache
> replacement?
>
Please post output of:
postconf -n | grep postscreen
If you set your greet-wait too small then it will there will not
be enough time for the DNS lookups to arrive.
Otherwise, dnsblog will log all the answers when a host is listed.
If you think that dnsblog misses things, then I would start with
debugging the DNS setup.
Wietse
