Joey J skrev den 2022-07-21 22:58:
Hello,
Is there a way for me to block mail that claims its from a certain
domain, based on my own valid ip address list?
Example:
myserver.com [1] - IP address 1.2.3.4
If a messages comes in from any server other than 1.2.3.4 for domain
myserver.com [1] reject it?
I know SPF/DKIM/DMARC would also help here, but trying to almost make
my own ACL.
in mta stage i just reject local domains as sender envelope, this is
safe since local domains must sasl auth, bingo no more problems of
spoffed senders
try keep ips out of it
need more help ?, then show sample logs from postfix
my own problem is to know my custommers asn numbers :)
only known asn numbers can sasl auth, there is too much insane servers
to lift that
