Hi, I have configuration problems with trusted_networks and internal_networks when forwarding my office mails to my private server, because one server in the trust chain is also a submission server.
My current setup is simple (SA runs on my private server = MY_SERVER_IP): trusted_networks MY_SERVER_IP Forwarded mails via the office mail servers go this way, headers from to to down: Received: from smtp-out.myoffice.de by MY_SERVER_IP Received: from mx.myoffice.de by smtp-out.myoffice.de Received: from spamhost.de by mx.myoffice.de To get a trusty path I put mx.myoffice.de and smtp-out.myoffice.de to trusted_networks on my server: trusted_networks MY_SERVER_IP trusted_networks smtp-out.myoffice.de trusted_networks mx.myoffice.de The problem is, that smtp-out.myoffice.de is also a submission server for dialup clients. Headers from to to down: Received: from smtp-out.myoffice.de by MY_SERVER_IP Received: from dialup-client-IP by smtp-out.myoffice.de So if I set smtp-out.myoffice.de to trusted_networks without having internal_networks defined, internal_networks is set to trusted_networks which means dialup client IPs, that connect to smtp-out.myoffice.de will be checked against RBL/DUL lists by my SA and get blocked. I tried to remove the submission server from internal_networks to set trusted_networks and internal_networks, but in that case RBL checks seem not to run on the originate spamhost IP in case for forwarding: trusted_networks MY_SERVER_IP trusted_networks smtp-out.myoffice.de trusted_networks mx.myoffice.de internal_networks MY_SERVER_IP internal_networks mx.myoffice.de Any ideas? Ciao Marcus
