I wasn't even aware that this notfirsthop argument existed; as far as I can tell in a few minutes of testing, the argument has no effect. I've had to disable all dynamic-IP RBLs because of this problem...
Dan.. Are you using an internal mailserver with a non-routable internal IP address? This particular problem is very common when you have SA running on an internal mailserver which has a NATed IP address in the 192.168.*.*, 10.*.*.*, etc type address blocks.
In this situation you have to manually set the trusted_networks variable in your local.cf.
By default SA will trust the IP of the host it runs on, but only if it's a real IP and it can verify forward/reverse DNS. In the case of an internal IP, it doesn't generate a trusted_networks list and the "notfirsthop" check fails to skip the first hop.
so just do something like:
trusted_networks 192.168.1.2/32
and you should be OK
-------------------------------------------------------
This SF.net email sponsored by: Enterprise Linux Forum Conference & Expo
The Event For Linux Datacenter Solutions & Strategies in The Enterprise Linux in the Boardroom; in the Front Office; & in the Server Room http://www.enterpriselinuxforum.com
_______________________________________________
Spamassassin-talk mailing list
[EMAIL PROTECTED]
https://lists.sourceforge.net/lists/listinfo/spamassassin-talk
