Am 03.06.26 um 14:26 schrieb Joel Carnat:
Hi,
Someone send me hints in PM.
It is all about creating an extra filter like:
```
(...)
table fcrdns_bogus file:/etc/mail/fcrdns_bogus
(...)
filter "fcrdns_bogus" phase connect match src <fcrdns_bogus> bypass
```
and it now works as expected.
Oh man I'm rusty! I forgot the < > signs in my try. When I add them my
example works too.
Cheers,
Joel C.
Le Tue, Jun 02, 2026 at 01:42:32AM +0200, Thomas Bohl a écrit :
Hi
I have setup a filter that drops bad FCrDNS using:
filter "fcrdns" phase connect match !fcrdns disconnect "550 Bad FCrDNS."
That filter is used by my public listen directive. But I have a particular
server/domain that fails that test - and they won’t configure it properly.
Still I need to receive email from them.
Can I (and how) setup a rule (or condition) that bypasses this check for their
particular domain name or server IP?
I thought it works like this:
table goodip file:/etc/mail/good-ips
filter "bypass" phase connect match src goodip bypass
listen on ... port 25 ... filter { "bypass", "fcrdns" }
But I did some testing and it doesn't work. It's like the table isn't
considered at all. If I write "!src" everyone bypasses fcrdns. Which is at
least consistent.
https://man.openbsd.org/table#Source_tables says:
"Source tables are lists of IPv4 and IPv6 addresses. They can only be used
in the following context:
action name relay src <table>"
..what format is "src <table>" from
https://man.openbsd.org/smtpd.conf#MAIL_FILTERING then?
