Results 1 to 2 of 2

Thread: MTA Restrictions

  1. #1
    wdingus is offline Member
    Join Date
    Feb 2008
    Location
    Tennessee
    Posts
    13
    Rep Power
    7

    Default MTA Restrictions

    Protocol checks
    Hostname in greeting violates RFC (reject_invalid_hostname)
    Client must greet with a fully qualified hostname (reject_non_fqdn_hostname)
    Sender address must be fully qualified (reject_non_fqdn_sender)
    DNS checks
    Client's IP address (reject_unknown_client)
    Hostname in greeting (reject_unknown_hostname)
    Sender's domain (reject_unknown_sender_domain)

    I've tried enabling them all and got complaints from employees not able to receive emails from sites where companies/ISPs had badly misconfigured servers. I have some RBLs configured and that's keeping most SPAM at bay but being able to reject more of it before the expense of all those DNS queries would still make me feel better. What is anyone else's experience with these? Which of these checks do you feel safe enabling and have a good track record of them not blocking legit connections?

    I watched logs just now for a few minutes and the quantity of connections from IPs without proper reverse DNS is amazing.

    Jul 22 11:08:04 freemail postfix/smtpd[26071]: connect from unknown[88.233.37.167]
    Jul 22 11:08:14 freemail postfix/smtpd[21906]: connect from unknown[121.182.227.88]
    Jul 22 11:08:35 freemail postfix/smtpd[25985]: connect from unknown[66.48.81.131]
    Jul 22 11:08:53 freemail postfix/smtpd[25985]: connect from unknown[94.23.106.58]
    Jul 22 11:09:02 freemail postfix/smtpd[26071]: connect from unknown[69.167.1.119]
    Jul 22 11:09:02 freemail postfix/smtpd[21906]: connect from unknown[209.249.71.139]
    Jul 22 11:09:05 freemail postfix/smtpd[25985]: connect from unknown[95.158.236.112]

    I am assuming reject_unknown_client is what would block just those? Is there a good explanation somewhere of what each of those rules does?

    Thanks...

  2. #2
    phoenix is online now Zimbra Consultant & Moderator
    Join Date
    Sep 2005
    Location
    Vannes, France
    Posts
    23,502
    Rep Power
    57

    Default

    Postfix documentation will give you all the information about those restrictions: Postfix Configuration Parameters
    Regards


    Bill


    Acompli: A new adventure for Co-Founder KevinH.

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Similar Threads

  1. Daily mail report always reports "No messages found"
    By McPringle in forum Installation
    Replies: 42
    Last Post: 06-13-2011, 08:57 AM
  2. zimbra daily reports problem - mta table is empty
    By sine in forum Administrators
    Replies: 4
    Last Post: 09-25-2008, 11:32 PM
  3. Stats problems!!
    By mmike in forum Administrators
    Replies: 7
    Last Post: 03-25-2008, 09:33 PM
  4. whitelisting mta based restrictions
    By galezer in forum Administrators
    Replies: 5
    Last Post: 03-04-2008, 12:26 PM
  5. Server Stats Cont...
    By DMRDave in forum Administrators
    Replies: 15
    Last Post: 02-16-2006, 01:16 PM

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •