On 24/03/2019 21:53, Wietse Venema wrote:
Nick Howitt:I have the follosing restrictions in main.cf: smtpd_client_restrictions = permit_mynetworks, reject_unknown_reverse_client_hostnameWhat is the output from "postconf mynetworks"? If the client matches that, then "permit_mynetworks" will override reject_unknown_reverse_client_hostname. Wietse
[root@server ~]# postconf mynetworks mynetworks = 127.0.0.0/8, [::1]/128, 172.17.2.0/23, $clearglassnetwork and: [root@server ~]# postconf clearglassnetwork clearglassnetwork = 172.19.0.0/16
I would have expected this to have been dropped by the reject_unknown_reverse_client_hostname filter as 220.191.208.116 does not have a PTR record. The logs for this transaction (amavis and opendkim removed to cut the output) are: Mar 24 10:09:30 server postfix/smtpd[8102]: warning: hostname mail.hz.cn does not resolve to address 220.191.208.116 Mar 24 10:09:30 server postfix/smtpd[8102]: connect from unknown[220.191.208.116] Mar 24 10:09:31 server postgrey[800]: action=pass, reason=triplet found, delay=724, client_name=unknown, client_address=220.191.208.116, sender=g...@hz.gov.cn, recipient=usern...@howitts.co.uk Mar 24 10:09:31 server postfix/smtpd[8102]: 6614E401361E: client=unknown[220.191.208.116]
