Hi there, The context is: Ubuntu 19.10 postfix 3.4.7-1 in /etc/postfix/main.cf smtpd_recipient_restrictions = permit_mynetworks, permit_sasl_authenticated, permit_auth_destination
This setting should accept the e-mail sent to my domain from google.com. Yet, I get in the log: *>>> START Recipient address RESTRICTIONS <<<generic_checks: name=permit_mynetworkspermit_mynetworks: mail-il1-f173.google.com <http://mail-il1-f173.google.com/> 209.85.166.173match_hostname: mynetworks: mail-il1-f173.google.com <http://mail-il1-f173.google.com/> ~? D.D.D.D/Dmatch_hostaddr: mynetworks: 209.85.166.173 ~? D.D.D.D/Dmatch_hostname: mynetworks: mail-il1-f173.google.com <http://mail-il1-f173.google.com/> ~? D.D.D.D/Dmatch_hostaddr: mynetworks: 209.85.166.173 ~? D.D.D.D/Dmatch_list_match: mail-il1-f173.google.com <http://mail-il1-f173.google.com/>: no matchmatch_list_match: 209.85.166.173 <http://209.85.166.173/>: no matchgeneric_checks: name=permit_mynetworks status=0generic_checks: name=permit_sasl_authenticatedgeneric_checks: name=permit_sasl_authenticated status=0generic_checks: name=permit_auth_destinationpermit_auth_destination: recipi...@example.org <recipi...@example.org>ctable_locate: move existing entry key sen...@gmail.com?recipi...@example.org <http://sen...@gmail.com/?recipi...@example.org>smtpd_acl_permit: checking smtpd_log_access_permit_actions settingsmatch_list_match: permit_auth_destination: no matchsmtpd_acl_permit: smtpd_log_access_permit_actions: no matchgeneric_checks: name=permit_auth_destination status=1>>> END Recipient address RESTRICTIONS <<<>>> START Recipient address RESTRICTIONS <<<generic_checks: name=permit_mynetworkspermit_mynetworks: mail-il1-f173.google.com <http://mail-il1-f173.google.com/> 209.85.166.173match_hostname: mynetworks: mail-il1-f173.google.com <http://mail-il1-f173.google.com/> ~? D.D.D.D/Dmatch_hostaddr: mynetworks: 209.85.166.173 ~? D.D.D.D/Dmatch_hostname: mynetworks: mail-il1-f173.google.com <http://mail-il1-f173.google.com/> ~? D.D.D.D/Dmatch_hostaddr: mynetworks: 209.85.166.173 ~? D.D.D.D/Dmatch_list_match: mail-il1-f173.google.com <http://mail-il1-f173.google.com/>: no matchmatch_list_match: 209.85.166.173 <http://209.85.166.173/>: no matchgeneric_checks: name=permit_mynetworks status=0generic_checks: name=permit_sasl_authenticatedgeneric_checks: name=permit_sasl_authenticated status=0generic_checks: name=rejectNOQUEUE: reject: RCPT from mail-il1-f173.google.com <http://mail-il1-f173.google.com/>[209.85.166.173]: 554 5.7.1 <recipi...@example.org <recipi...@example.org>>: Recipient address rejected: Access denied; from=<sen...@gmail.com <sen...@gmail.com>> to=<recipi...@example.org <recipi...@example.org>> proto=ESMTP helo=<mail-il1-f173.google.com <http://mail-il1-f173.google.com/>>generic_checks: name=reject status=2>>> END Recipient address RESTRICTIONS <<<* The first time the "Recipient address RESTRICTIONS" are applied, the mail is accepted (status=1), the second time, the permit_auth_destination is not applied and the mail is finally rejected. Unless I'm missing something, this double check does not sound correct. Any suggestion? -- Jean-Christophe
