I have recently begun getting blocks from dbl.spamhaus.org for "valid"
email. I thought a single instance was an aberration but in all I've
seen half a dozen emails blocked - a large number for my small system.
The original setup was...
smtpd_helo_restrictions =
...
reject_rhsb
On 03.08.22 10:39, Linkcheck wrote:
I have recently begun getting blocks from dbl.spamhaus.org for "valid"
email. I thought a single instance was an aberration but in all I've
seen half a dozen emails blocked - a large number for my small system.
The original setup was...
smtpd_he
I reconfigured one of my VPS to use the proxy protocol instead of NAT to
forward external traffic to my postfix (postscreen). I have set up nginx to
forward the TCP stream to port 10025 using proxy_protocol v1 (afaik v2 is not
yet supported by nginx), and when connecting I am getting back the re
On 03.08.22 14:59, Matus UHLAR - fantomas wrote:
I have moved towards postscreen a long time ago.
postscreen supports multiple scored blocklists and/or allowlists,
block clients from configured score and with pregreet test helps with
blocking many bots and can even replace greylisting protecti
Thank you, Matus. I have considered pstscreen in the past but decided it
was an extra layer of complexity I could manage without.
I also find zen.spamhaus reliable but is the spamhaus suggestion for
postfix a) good and b) all that is needed? For example, is dbl.spamhaus,
as they suggest, a goo
On Wed, Aug 03, 2022 at 10:39:04AM +0100, Linkcheck wrote:
> Spamhaus has a page for setting up postfix and recommends...
>
> smtpd_recipient_restrictions =
>...
>reject_rbl_client zen.spamhaus.org=127.0.0.[2..11]
>reject_rhsbl_sender dbl.spamhaus.org=127.0.1.[2..99]
>
On Wed, Aug 03, 2022 at 03:11:33PM +0200, Joachim Lindenberg wrote:
> I reconfigured one of my VPS to use the proxy protocol instead of NAT
> to forward external traffic to my postfix (postscreen). I have set up
> nginx to forward the TCP stream to port 10025 using proxy_protocol v1
> (afaik v2 is
On 8/3/22 10:24, Linkcheck wrote:
Thank you, Matus. I have considered pstscreen in the past but decided it
was an extra layer of complexity I could manage without.
I also find zen.spamhaus reliable but is the spamhaus suggestion for
postfix a) good and b) all that is needed? For example, is dbl.
On 03/08/2022 3:35 pm, Viktor Dukhovni wrote:
Looks sensible. I'd keep these.
Despite previously blocking valid emails with dbl?
I notice that the spamhaus solution places all the tests into the
smtpd_recipient_restrictions section, whereas I had them in different
sections plus an extra one
On Wed, Aug 03, 2022 at 04:51:04PM +0100, Linkcheck wrote:
> On 03/08/2022 3:35 pm, Viktor Dukhovni wrote:
> > Looks sensible. I'd keep these.
>
> Despite previously blocking valid emails with dbl?
YMMV. My comment was mostly on detailed syntax and placement, which of
the lists you want to use
Hello Viktor,
thanks for looking into it.
I do have inet_protocols=ipv4 in main.cf, everything else should support ipv6
as mailcow in general does support ipv6, but due my NAT setup I decided not to
support ipv6 so far, and also I don´t believe ipv4 will go away soon for smtp
in general. Movin
On Wed, Aug 03, 2022 at 10:39:17PM +0200, Joachim Lindenberg wrote:
> I do have inet_protocols=ipv4 in main.cf, everything else should
> support ipv6 as mailcow in general does support ipv6, but due my NAT
> setup I decided not to support ipv6 so far, and also I don´t believe
> ipv4 will go away
Viktor Dukhovni:
> On Wed, Aug 03, 2022 at 10:39:17PM +0200, Joachim Lindenberg wrote:
>
> > I do have inet_protocols=ipv4 in main.cf, everything else should
> > support ipv6 as mailcow in general does support ipv6, but due my NAT
> > setup I decided not to support ipv6 so far, and also I don?t b
13 matches
Mail list logo
