It doesn't appear that postscreen_dnsbl_action is working correctly when set
to "drop".
The manual states "Drop the connection immediately with a 521 SMTP reply" -
but that's not happening. It's still checking the block lists.
Mar 3 08:03:50 localhost postfix/postscreen[80179]: CONNECT from
[185.234.217.223]:64507 to [xx.xx.xx.xx]:25
Mar 3 08:03:50 localhost postfix/dnsblog[80180]: addr 185.234.217.223
listed by domain zen.spamhaus.org as 127.0.0.2
Mar 3 08:03:50 localhost postfix/dnsblog[80180]: addr 185.234.217.223
listed by domain zen.spamhaus.org as 127.0.0.4
Mar 3 08:03:56 localhost postfix/postscreen[80179]: DNSBL rank 1 for
[185.234.217.223]:64507
Mar 3 08:03:56 localhost postfix/postscreen[80179]: HANGUP after 0.48 from
[185.234.217.223]:64507 in tests after SMTP handshake
Mar 3 08:03:56 localhost postfix/postscreen[80179]: DISCONNECT
[185.234.217.223]:64507
Mar 3 08:13:15 localhost postfix/postscreen[80959]: CONNECT from
[185.234.217.223]:64042 to [xx.xx.xx.xx]:25
Mar 3 08:13:16 localhost postfix/dnsblog[80961]: addr 185.234.217.223
listed by domain zen.spamhaus.org as 127.0.0.2
Mar 3 08:13:16 localhost postfix/dnsblog[80961]: addr 185.234.217.223
listed by domain zen.spamhaus.org as 127.0.0.4
Mar 3 08:13:21 localhost postfix/postscreen[80959]: DNSBL rank 1 for
[185.234.217.223]:64042
Mar 3 08:13:21 localhost postfix/postscreen[80959]: HANGUP after 0.47 from
[185.234.217.223]:64042 in tests after SMTP handshake
Mar 3 08:13:21 localhost postfix/postscreen[80959]: DISCONNECT
[185.234.217.223]:64042
*main.cf :*
postscreen_blacklist_action = drop
postscreen_greet_action = enforce
postscreen_dnsbl_action = drop
postscreen_dnsbl_threshold = 1
postscreen_dnsbl_sites =
zen.spamhaus.org,
b.barracudacentral.org
*postscreen :*
postscreen_access_list = permit_mynetworks
postscreen_bare_newline_action = ignore
postscreen_bare_newline_enable = no
postscreen_bare_newline_ttl = 30d
postscreen_blacklist_action = drop
postscreen_cache_cleanup_interval = 12h
postscreen_cache_map = btree:$data_directory/postscreen_cache
postscreen_cache_retention_time = 7d
postscreen_client_connection_count_limit =
$smtpd_client_connection_count_limit
postscreen_command_count_limit = 20
postscreen_command_filter =
postscreen_command_time_limit = ${stress?{10}:{300}}s
postscreen_disable_vrfy_command = $disable_vrfy_command
postscreen_discard_ehlo_keyword_address_maps =
$smtpd_discard_ehlo_keyword_address_maps
postscreen_discard_ehlo_keywords = $smtpd_discard_ehlo_keywords
postscreen_dnsbl_action = drop
postscreen_dnsbl_max_ttl =
${postscreen_dnsbl_ttl?{$postscreen_dnsbl_ttl}:{1}}h
postscreen_dnsbl_min_ttl = 60s
postscreen_dnsbl_reply_map =
postscreen_dnsbl_sites = zen.spamhaus.org, b.barracudacentral.org
postscreen_dnsbl_threshold = 1
postscreen_dnsbl_timeout = 10s
postscreen_dnsbl_whitelist_threshold = 0
postscreen_enforce_tls = $smtpd_enforce_tls
postscreen_expansion_filter = $smtpd_expansion_filter
postscreen_forbidden_commands = $smtpd_forbidden_commands
postscreen_greet_action = enforce
postscreen_greet_banner = $smtpd_banner
postscreen_greet_ttl = 1d
postscreen_greet_wait = ${stress?{2}:{6}}s
postscreen_helo_required = $smtpd_helo_required
postscreen_non_smtp_command_action = drop
postscreen_non_smtp_command_enable = no
postscreen_non_smtp_command_ttl = 30d
postscreen_pipelining_action = enforce
postscreen_pipelining_enable = no
postscreen_pipelining_ttl = 30d
postscreen_post_queue_limit = $default_process_limit
postscreen_pre_queue_limit = $default_process_limit
postscreen_reject_footer = $smtpd_reject_footer
postscreen_tls_security_level = $smtpd_tls_security_level
postscreen_upstream_proxy_protocol =
postscreen_upstream_proxy_timeout = 5s
postscreen_use_tls = $smtpd_use_tls
postscreen_watchdog_timeout = 10s
postscreen_whitelist_interfaces = static:all
--
Sent from: http://postfix.1071664.n5.nabble.com/Postfix-Users-f2.html
