Hallo zusammen,
habe ein kleines Problem bei meinem Mailserver. Gelegentlich werden E-Mails, die von uns versendet werden abgelehnt wegen dynamischen IP-Adressen. Beim Empfangen von E-Mails ist das durchaus erwünscht, aber meine eigenen User sollten natürlich nicht durch die BL geblocked werden, wenn sie sich per SASL authentifizieren.
Hat jemand eine Idee was mein Fehler ist bzw. wie ich das abstelle?
Main.cf:
maillog:
habe ein kleines Problem bei meinem Mailserver. Gelegentlich werden E-Mails, die von uns versendet werden abgelehnt wegen dynamischen IP-Adressen. Beim Empfangen von E-Mails ist das durchaus erwünscht, aber meine eigenen User sollten natürlich nicht durch die BL geblocked werden, wenn sie sich per SASL authentifizieren.
Hat jemand eine Idee was mein Fehler ist bzw. wie ich das abstelle?
Main.cf:
Code:
# See /usr/share/postfix/main.cf.dist for a commented, more complete version
# Debian specific: Specifying a file name will cause the first
# line of that file to be used as the name. The Debian default
# is /etc/mailname.
#myorigin = /etc/mailname
smtpd_banner = $myhostname ESMTP $mail_name (Debian/GNU)
biff = no
# appending .domain is the MUA's job.
append_dot_mydomain = no
# Uncomment the next line to generate "delayed mail" warnings
delay_warning_time = 4h
confirm_delay_cleared = yes
readme_directory = no
smtpd_use_tls = yes
smtpd_tls_session_cache_database = btree:${data_directory}/smtpd_scache
smtp_tls_session_cache_database = btree:${data_directory}/smtp_scache
smtpd_tls_received_header = yes
# See /usr/share/doc/postfix/TLS_README.gz in the postfix-doc package for
# information on enabling SSL in the smtp client.
smtpd_relay_restrictions = permit_mynetworks permit_sasl_authenticated defer_unauth_destination
myhostname = mail.xxx.de
alias_maps = hash:/etc/aliases, hash:/var/spool/postfix/plesk/aliases
alias_database = hash:/etc/aliases
myorigin = /etc/mailname
mydestination = localhost.xxx.de, localhost, localhost.localdomain
relayhost =
mynetworks =
mailbox_size_limit = 0
recipient_delimiter = +
inet_interfaces = all
inet_protocols = all
virtual_mailbox_domains = $virtual_mailbox_maps, hash:/var/spool/postfix/plesk/virtual_domains
virtual_alias_maps = $virtual_maps, hash:/var/spool/postfix/plesk/virtual
virtual_mailbox_maps = , hash:/var/spool/postfix/plesk/vmailbox
transport_maps = , hash:/var/spool/postfix/plesk/transport
smtpd_tls_security_level = may
virtual_alias_maps = $virtual_maps, hash:/var/spool/postfix/plesk/virtual
virtual_mailbox_maps = , hash:/var/spool/postfix/plesk/vmailbox
transport_maps = , hash:/var/spool/postfix/plesk/transport
smtpd_tls_security_level = may
smtp_tls_security_level = may
smtp_use_tls = no
smtpd_timeout = 3600s
smtpd_proxy_timeout = 3600s
disable_vrfy_command = yes
smtpd_sender_restrictions = check_sender_access hash:/var/spool/postfix/plesk/blacklists, permit_sasl_authenticated
smtpd_client_restrictions = permit_mynetworks, permit_sasl_authenticated, reject_rbl_client zen.spamhaus.org, reject_rbl_client all.bl.blocklist.de, reject_rbl_client truncate.gbudb.net
smtp_send_xforward_command = yes
smtpd_authorized_xforward_hosts = 127.0.0.0/8 [::1]/128
smtpd_sasl_auth_enable = yes
smtpd_recipient_restrictions = permit_mynetworks, permit_sasl_authenticated, reject_unauth_destination
virtual_mailbox_base = /var/qmail/mailnames
virtual_uid_maps = static:30
virtual_gid_maps = static:31
smtpd_milters = , inet:127.0.0.1:12768
sender_dependent_default_transport_maps = hash:/var/spool/postfix/plesk/sdd_transport_maps
virtual_transport = plesk_virtual
plesk_virtual_destination_recipient_limit = 1
mailman_destination_recipient_limit = 1
virtual_mailbox_limit = 0
smtpd_tls_mandatory_protocols = TLSv1 TLSv1.1 TLSv1.2
smtpd_tls_protocols = TLSv1 TLSv1.1 TLSv1.2
smtpd_tls_ciphers = medium
smtpd_tls_mandatory_ciphers = medium
tls_medium_cipherlist = HIGH:!aNULL:!MD5
message_size_limit = 104857600
maximal_queue_lifetime = 1d
bounce_queue_lifetime = 1d
minimal_backoff_time = 10m
maximal_backoff_time = 60m
queue_run_delay = 10m
recipient_canonical_maps = tcp:127.0.0.1:12346
recipient_canonical_classes = envelope_recipient,header_recipientmaillog:
Code:
Aug 13 09:19:46 mail postfix/smtpd[11165]: NOQUEUE: reject: RCPT from xxx.customers.d1-online.com[xxx]: 554 5.7.1 Service unavailable; Client host [xxx] blocked using zen.spamhaus.org; https://www.spamhaus.org/query/ip/xxx; from=<kontakt@xxx.de> to=<xxx@gmail.com> proto=ESMTP helo=<[xxx]>
Aug 13 09:19:46 mail postfix/smtpd[11165]: disconnect from xxx.customers.d1-online.com[xxx]
