On Thu, 08 Dec 2005 15:24:29 -0500, you wrote:
>On 08/12/2005 12:01 AM, Russ Ringer wrote: >> I have: >> internal_networks 10.0.0 > >As long as your trusted_networks are the same (or blank as >internal_networks will be copied if I remember correctly), that setting >is fine as long as, on the machine running SpamAssassin, >mail.avtcorp.com resolves to 10.0.0.x and NOT 198.135.234.36. > mail.avtcorp.com does resolve to a 10.0.0.x ip > >> and >> score ALL_TRUSTED 0 > >What prompted you to zero the score for ALL_TRUSTED? If you are seeing >external mail with this rule hitting something IS wrong. You should >only see this in mail from your trusted_networks. > I think I did this a long time ago when I got scores lowered from ALL_TRUSTED. Nothing is trusted, it only gets mail from outside. I took it out and will see what happens. > >> whitelist_from_rcvd does seem to be working. > >A good sign, but not an entirely positive indicator of a correct trust >path. Again, if ALL_TRUSTED is hitting correctly I'd say you're alright. > > >> The server receives mail static NATed from the outside > >I like to put both the server's internal NATed address and the external >public address in the trusted_networks configuration just in case >changes are made to your DNS topology and for clarity. If your setup is >as my first paragraph describes though, it's not necessary (but nice). > I've been using dul.dnsbl.sorbs.net with rblsmtpd to block at the front door with good results. I'm trying to move all processing inside and I'd like to get the same behavior.
