Alex:
> Hi,
>
> > I have a postfix-3.7.3 fedora37 system and have a few users who want me to
> > > disable reject_non_fqdn_sender because it seems many of their users have
> > > DNS problems. For example, email from nore...@info.apr.gov.rs fails to
> > > resolve with:
> > >
> > > $ host info.apr.gov.rs
> > > Host info.apr.gov.rs not found: 2(SERVFAIL)
> >
> > $ host info.apr.gov.rs
> > info.apr.gov.rs has address 195.178.56.17
> >
> > Looks like you have a *local* DNS problem. Check your routing,
> > including netmasks.
> >
>
> There's definitely a problem with their name servers, but it also seems my
> version of bind is not permissive enough for such failures, although my
> bind-9.16.38 system is, using the same configuration. Public name servers
> also appear to have no issues. I'm currently researching these FORMERR
> messages.
>
> Is there a way to control smtpd_recipient_restrictions on a per-domain
> basis so I can relax some of these restrictions for cases like this,
> instead of a more reactive approach where I'm always adding
> sender_checks.pcre entries?
Instead of
/etc/postfix/main.cf:
smtpd_recipient_restrictions =
... reject_unknown_sender_domain ...
Use
/etc/postfix/main.cf:
smtpd_recipient_restrictions =
... check_sender_access pcre:/etc/postfix/sender_access.pcre ...
/etc/postfix/sender_access.pcre:
/\.example\.com$/ DUNNO
/./ reject_unknown_sender_domain
Though I wonder how one would ever be able to reply to the sender.
Wietse
_______________________________________________
Postfix-users mailing list -- postfix-users@postfix.org
To unsubscribe send an email to postfix-users-le...@postfix.org
