* David C. Rankin <drankinatty@suddenlinkmail.com> [12-14-13 17:43]:
On 12/14/2013 12:45 PM, Patrick Shanahan wrote:
Rebuilt crashed server from scratch to 13.1 and made a mess of postfix.
Currently have functional postfix, I can send and receive, but access blocks and rbl lookups/blocks are not happening and I have been unable to determine why. I have twice return to the bare postfix main.cf and set base system using yast, but adding access blocks and/or rbl blocks to main.cf appears to have no effect. Yes, after editing I restart postfix and also run postmap first if warranted.
I performed the telnet test to determine that access lookups were not working.
That probably means that you are hitting some type of concluding check criteria prior to reaching the smtpd_client_restrictions list. What are the relevant parts of postconf -n?
alias_maps = hash:/etc/aliases biff = no canonical_maps = hash:/etc/postfix/canonical command_directory = /usr/sbin config_directory = /etc/postfix content_filter = daemon_directory = /usr/lib/postfix data_directory = /var/lib/postfix debug_peer_level = 2 debugger_command = PATH=/bin:/usr/bin:/usr/local/bin:/usr/X11R6/bin ddd $daemon_directory/$process_name $process_id & sleep 5 defer_transports = delay_warning_time = 1h disable_dns_lookups = no disable_mime_output_conversion = no html_directory = /usr/share/doc/packages/postfix-doc/html inet_interfaces = all inet_protocols = all mail_owner = postfix mail_spool_directory = /var/mail mailbox_command = /usr/bin/procmail mailbox_size_limit = 0 mailbox_transport = mailq_path = /usr/bin/mailq manpage_directory = /usr/share/man masquerade_classes = envelope_sender, header_sender, header_recipient masquerade_domains = masquerade_exceptions = root message_size_limit = 0 message_strip_characters = \0 mydestination = $myhostname,localhost.$mydomain,$mydomain myhostname = wahoo.wahoo.no-ip.org mynetworks_style = subnet newaliases_path = /usr/bin/newaliases queue_directory = /var/spool/postfix readme_directory = /usr/share/doc/packages/postfix-doc/README_FILES relay_clientcerts = relay_domains = $mydestination, hash:/etc/postfix/relay relayhost = smtp-server.indy.rr.com relocated_maps = hash:/etc/postfix/relocated sample_directory = /usr/share/doc/packages/postfix-doc/samples sender_canonical_maps = hash:/etc/postfix/sender_canonical sendmail_path = /usr/sbin/sendmail setgid_group = maildrop smtp_enforce_tls = no smtp_sasl_auth_enable = no smtp_sasl_password_maps = smtp_sasl_security_options = smtp_tls_CAfile = smtp_tls_CApath = smtp_tls_cert_file = smtp_tls_key_file = smtp_tls_session_cache_database = smtp_use_tls = no smtpd_client_restrictions = check_client_access hash:/etc/postfix/access, permit smtpd_helo_required = no smtpd_helo_restrictions = smtpd_recipient_restrictions = permit_mynetworks, permit_sasl_authenticated, reject_unauth_destination, reject_invalid_hostname, reject_unauth_pipelining, reject_non_fqdn_sender, reject_unknown_sender_domain, reject_non_fqdn_recipient, reject_unknown_recipient_domain, check_client_access hash:/etc/postfix/access, reject_rbl_client cbl.abuseat.org, reject_rbl_client b.barracudacentral.org, reject_rbl_client zen.spamhaus.org, reject_rbl_client psbl.surriel.com, reject_rbl_client l2.apews.org, reject_rbl_client blackholes.five-ten-sg.com, permit smtpd_sasl_auth_enable = no smtpd_sender_restrictions = hash:/etc/postfix/access smtpd_tls_CAfile = smtpd_tls_CApath = smtpd_tls_ask_ccert = no smtpd_tls_cert_file = smtpd_tls_key_file = smtpd_tls_received_header = no smtpd_use_tls = no strict_8bitmime = no strict_rfc821_envelopes = no transport_maps = hash:/etc/postfix/transport unknown_local_recipient_reject_code = 550 virtual_alias_domains = hash:/etc/postfix/virtual virtual_alias_maps = hash:/etc/postfix/virtual
When I'm stuck I usually start with http://www.postfix.org/SMTPD_ACCESS_README.html -- then I yell for Sandy on the list :p
Yes, he helped me get start serving mail *many* years ago. Haven't seen him around for a while.
You have postfix 2.10 or newer right? Take a look at the new changes in 2.10 in the link above. Specifically smtpd_relay_restrictions.
postfix-2.9.6-7.4.1.x86_64 Looking at the url now. Will probably be in your neighborhood in the next several days. Might visit the Alamo. Have a U98 soccer tournament in Orlando day after Christmas and am making a trip of it. tks, -- (paka)Patrick Shanahan Plainfield, Indiana, USA @ptilopteri http://en.opensuse.org openSUSE Community Member facebook/ptilopteri http://wahoo.no-ip.org Photo Album: http://wahoo.no-ip.org/gallery2 Registered Linux User #207535 @ http://linuxcounter.net -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org To contact the owner, e-mail: opensuse+owner@opensuse.org