Jonathan Tripathy a écrit : > Hi Everyone, > > I'm using tumgreyspf. I need to add the following line to my main.cf to > make it work: > > check_policy_service unix:private/tumgreyspf > > Some servers arn't being greylisted. For example, the following appeared > in my log on the backup mx: > > Feb 20 19:26:09 usa1 postfix/smtpd[7951]: connect from unknown[75.80.18.52] > Feb 20 19:26:10 usa1 tumgreyspf[7956]: domain owner discourages use of > this host: QUEUE_ID=""; identity=mailfrom; client-ip=75.80.18.52; > helo=rr.com; [email protected]; [email protected]; > Feb 20 19:26:10 usa1 postfix/smtpd[7951]: 5292910C632: > client=unknown[75.80.18.52] > Feb 20 19:26:10 usa1 postfix/cleanup[7958]: 5292910C632: > message-id=<[email protected]> > Feb 20 19:26:10 usa1 postfix/qmgr[7602]: 5292910C632: > from=<[email protected]>, size=2195, nrcpt=1 (queue active) > Feb 20 19:26:10 usa1 postfix/smtpd[7951]: disconnect from > unknown[75.80.18.52] > Feb 20 19:26:11 usa1 postfix/smtp[7959]: 5292910C632: > to=<[email protected]>, relay=mail2[mail2]:25, delay=1.2, > delays=0.32/0.01/0.63/0.22, dsn=5.1.1, status=bounced (host mail2[mail2] > said: 550 5.1.1 <[email protected]>: Recipient address rejected: User > unknown in virtual mailbox table (in reply to RCPT TO command)) > Feb 20 19:26:11 usa1 postfix/cleanup[7958]: 7B98410C633: > message-id=<[email protected]> > Feb 20 19:26:11 usa1 postfix/qmgr[7602]: 7B98410C633: from=<>, > size=4230, nrcpt=1 (queue active) > Feb 20 19:26:11 usa1 postfix/bounce[7960]: 5292910C632: sender > non-delivery notification: 7B98410C633 > Feb 20 19:26:11 usa1 postfix/qmgr[7602]: 5292910C632: removed > Feb 20 19:26:11 usa1 postfix/smtp[7959]: 7B98410C633: > to=<[email protected]>, > relay=hrndva-postmx01.mail.rr.com[71.74.56.227]:25, delay=0.43, > delays=0/0/0.38/0.05, dsn=5.1.1, status=bounced (host > hrndva-postmx01.mail.rr.com[71.74.56.227] said: 550 5.1.1 > <[email protected]>... User unknown (in reply to RCPT TO command)) > Feb 20 19:26:11 usa1 postfix/qmgr[7602]: 7B98410C633: removed > > As you can see from the log from my backup mx, it complained that the > DNS record "discourages" use, accepted the mail, then tried to relay it > via my primary server. Shoudn't this server have been greylisted first?
postfix doesn't care. it'll return whatever your policy server returns. if your tumpgreyspf returns a DEFER, postfix will defer. > I don't see an entry in tumgreyspf's data directory for this IP, > suggesting that it's never tried to connect before. > > Also, does it matter whether or not I put check_policy_service > unix:private/tumgreyspf in sender restrictions or reciepient > restrictions? The readme says put it in sender, but I've put it in > reciepient, yet SPF filters does still seem to work... > > Help is very much appreciated > > Thanks
