Hi!
I've made changes to work off of virtual users with IMAP to dovecot.
All of that works great.
But I haven't been able to get auth to work yet, so I'm just sending
through smtpd from the server that contains the mail or mx domains and
also some of the regular domains also.
Delivery is sorta working.
I have been able to get delivery to work properly now only by changing
to a mail. hostname and the same in /etc/myname. The server's primary IP
is a non mail IP, the rest are IP aliases.
However, something strange is happening that I don't understand.
My subscription to neomutt-users wasn't working all of a sudden.
After changing the email and contacting the list owner, he was able to
approve the current situation and sending and receiving from the list
worked.
Then I changed the hostname to a different mail. and delivery was once
again blocked by policy of the mailing list.
(I'll also mention that using the shithole table totally failed until I
moved the match for it way up to where it is now, so I think I'm really
having problems also with ordering match rules.)
What is happening here? How can I see what is going on?
I can send anything else helpful, just ask.
Thanks for any help.
Chris Bennett
The main IP address here is:
172.107.198.226 cowboyup.xyz
172.107.198.227 no-seas-necio.ninja
172.107.198.228 consulting-diy-construction.com
172.107.198.229 mail.consulting-diy-construction.com
172.107.198.230 mx.no-seas-necio.ninja
172.107.198.231 mail.freedomforlife.rocks
172.107.198.232 mail.bennettconstruction.us
172.107.198.233 bennettconstruction.us
172.107.198.234 capuchado.com
172.107.198.235 strengthcouragewisdom.rocks
/etc/hosts
127.0.0.1 localhost
::1 localhost
172.107.198.226 cowboyup.xyz cowboyup
172.107.198.227 no-seas-necio.ninja no-seas-necio
172.107.198.228 consulting-diy-construction.com
172.107.198.229 mail.consulting-diy-construction.com
172.107.198.230 mx.no-seas-necio.ninja
172.107.198.231 mail.freedomforlife.rocks
172.107.198.232 mail.bennettconstruction.us
172.107.198.233 bennettconstruction.us
172.107.198.234 capuchado.com
172.107.198.235 strengthcouragewisdom.rocks
/etc/mail/smtpd.conf
# $OpenBSD: smtpd.conf,v 1.14 2019/11/26 20:14:38 gilles Exp $
# This is the smtpd server system-wide configuration file.
# See smtpd.conf(5) for more information.
######################### TABLES ######################################
table aliases file:/etc/mail/aliases
table vdomains file:/etc/mail/vdomains
table vusers file:/etc/mail/vusers
table passwd file:/etc/mail/passwd
table vaddr file:/etc/mail/vaddr
table addrnames file:/etc/mail/addrnames
table shithole { "@your.riteaid.com", "@abacusnext.com", "@immo-eden.com",
"@cofferman.net", \
"@cmitsolutions.com", "@mail-seruices.cf", "@advantrack.com",
"@e.officedepot.com", \
"@bts-tx.com", "@protectivesupplyplus.com", "@cointelegraph.com",
"@jets.com", \
"@digitalluxuryagency.com", "@abbeywealth-news.com",
"@findrussianbuyers.ru", \
"@summitshirts.net", "@bookkeepingandfinancials.com",
"@phsmobilesolutions.com", \
"@inquiry.haizol.com", "@info.geappliances.com", "@planhub.com",
"@refundguide.io" }
########################## PKI ########################################
pki mail.consulting-diy-construction.com cert
"/etc/ssl/mail.consulting-diy-construction.com.fullchain.pem"
pki mail.consulting-diy-construction.com key
"/etc/ssl/private/mail.consulting-diy-construction.com.key"
pki mx.no-seas-necio.ninja cert "/etc/ssl/mx.no-seas-necio.ninja.fullchain.pem"
pki mx.no-seas-necio.ninja key "/etc/ssl/private/mx.no-seas-necio.ninja.key"
pki mail.freedomforlife.rocks cert
"/etc/ssl/mail.freedomforlife.rocks.fullchain.pem"
pki mail.freedomforlife.rocks key
"/etc/ssl/private/mail.freedomforlife.rocks.key"
pki mail.bennettconstruction.us cert "/etc/ssl/mail.bennettconstruction.us.crt"
pki mail.bennettconstruction.us key
"/etc/ssl/private/mail.bennettconstruction.us.key"
######################### FILTERS AND FILTER CHAINS ###################
filter check_dyndns phase connect match rdns regex { '.*\.dyn\..*',
'.*\.dsl\..*' } \
disconnect "550 no residential connections"
filter check_rdns phase connect match !rdns \
disconnect "550 no rDNS is so 80s"
filter check_fcrdns phase connect match !fcrdns \
disconnect "550 no FCrDNS is so 80s"
filter senderscore \
proc-exec "filter-senderscore -blockBelow 10 -junkBelow 70 -slowFactor
5000"
filter c01 chain { check_dyndns, check_rdns, check_fcrdns, senderscore }
############################ LISTEN ###################################
listen on socket filter { check_dyndns, check_rdns, check_fcrdns, senderscore }
listen on lo0
listen on 172.107.198.229 hostname "mail.consulting-diy-construction.com" tls
pki mail.consulting-diy-construction.com filter { check_dyndns, check_rdns,
check_fcrdns, senderscore }
listen on 172.107.198.230 hostname "mx.no-seas-necio.ninja" tls pki
mx.no-seas-necio.ninja filter { check_dyndns, check_rdns, check_fcrdns,
senderscore }
listen on 172.107.198.231 hostname "mail.freedomforlife.rocks" tls pki
mail.freedomforlife.rocks filter { check_dyndns, check_rdns, check_fcrdns,
senderscore }
listen on 172.107.198.232 hostname "mail.bennettconstruction.us" tls pki
mail.bennettconstruction.us filter { check_dyndns, check_rdns, check_fcrdns,
senderscore }
########################### ACTIONS ###################################
match from any mail-from <shithole> for any reject
action a01 lmtp "/var/dovecot/lmtp" rcpt-to alias <aliases>
action a02 lmtp "/var/dovecot/lmtp" rcpt-to virtual <vusers>
action a03 relay
########################### MATCHES ###################################
match from any for local action "a01"
match from any for domain <vdomains> rcpt-to <vaddr> action a02
match from local for any action a03
