Russ Ringer wrote: >>Is your trusted_networks set correctly? Note: if you have a NATed mailserver >>you >>MUST set this manually, otherwise SA will mis-detect external mailservers as >>being a part of your network and this rule will misfire. >> >>Other common signs of incorrect trusted_networks are ALL_TRUSTED matching >>spam, >>and whitelist_from_rcvd not working. > > > I have: > internal_networks 10.0.0
Ok, where's your trusted_networks statement? It's really bad form to manually declare internal, but not manually declare trusted. Usually people only need to declare trusted. The only time you should declare internal is if you have a MTA that needs to accept mail direct from dialup users. > and > score ALL_TRUSTED 0 If you had a trusted_networks set properly you'd not need this. > > whitelist_from_rcvd does seem to be working. > > The server receives mail static NATed from the outside Suggestion: 1) remove internal_networks, unless you need to have it be different than your trusted_networks. Few people need this. 2) Declare trusted_networks 10.0.0.0/24 3) get rid of your score statement for ALL_TRUSTED. You're not fixing a problem, just covering up something that's telling you about a big problem.
