I found that Quotas work so the policy is verified. But Access Control is ignored.
-- I have installed V2 and verified my policy is matched: [2009/03/17-16:10:45 - 28093] [POLICIES] INFO: [ID:1/Name:Default]: Source matching result: matched=1 [2009/03/17-16:10:45 - 28093] [POLICIES] INFO: [ID:2/Name:Default Outbound]: Source matching result: matched=1 [2009/03/17-16:10:45 - 28093] [POLICIES] INFO: [ID:3/Name:Default Inbound]: Source matching result: matched=0 [2009/03/17-16:10:45 - 28093] [POLICIES] INFO: [ID:4/Name:Default Internal]: Source matching result: matched=0 [2009/03/17-16:10:45 - 28093] [POLICIES] INFO: [ID:5/Name:kosmosisland dot com]: Source matching result: matched=1 [2009/03/17-16:10:45 - 28093] [POLICIES] DEBUG: [ID:5/Name:kosmosisland dot com]=>(group:domain_kosmosisland_com): Destination group result: matched=1 However, the access control associated with this policy is ignored: # echo "select * from access_control" | mysql policyd -t +----+----------+-------------+---------+------------------------------+---------+----------+ | ID | PolicyID | Name | Verdict | Data | Comment | Disabled | +----+----------+-------------+---------+------------------------------+---------+----------+ | 1 | 5 | Kosmos Test | REJECT | Relay for Kosmos not allowed | | 0 | +----+----------+-------------+---------+------------------------------+---------+----------+ I am at loss as to how to troubleshoot this. The email is going through but I expect it to be rejected. Quotas fail the same way. BTW, this is for an outbound relay running on Debian Lenny. My main.cf: 1 queue_directory = /var/spool/postfix-out 2 data_directory = /var/lib/postfix-out 3 inet_interfaces = 65.183.xxx.9 4 5 mydestination = 6 local_transport = error:5.1.1 Mailbox unavailable 7 alias_database = 8 alias_maps = 9 local_recipient_maps = 10 11 smtpd_banner = Outbound Relay $myhostname ESMTP $mail_name (Debian/GNU) 12 biff = no 13 14 append_dot_mydomain = no 15 16 myorigin = /etc/mailname 17 mynetworks = 127.0.0.0/8, 65.183.xxx.xxx/24 18 mailbox_size_limit = 0 19 20 21 smtpd_recipient_restrictions = 22 check_policy_service inet:127.0.0.1:10031, 23 permit_mynetworks, 24 reject 25 26 smtpd_end_of_data_restrictions = 27 check_policy_service inet:127.0.0.1:10031, 28 permit 29 30 smtpd_sender_restrictions = 31 permit_mynetworks, 32 reject 33 Regards, David Koski [email protected] _______________________________________________ Users mailing list [email protected] http://lists.policyd.org/mailman/listinfo/users
