LinuxQuestions.org
Visit Jeremy's Blog.
Go Back   LinuxQuestions.org > Forums > Linux > Linux - Server
Reload this Page Odd problem with Postfix and reject_unknown_client option
User Name
Password
Linux - Server This forum is for the discussion of Linux Software used in a server related context.

Notices

Tags used in this thread
Popular LQ Tags , ,

Reply
 
Thread Tools
Old 11-13-2008, 04:12 AM   #1
jimwillsher
LQ Newbie
 
Registered: Jan 2004
Location: Dunblane, Central Scotland
Distribution: Redhat 9
Posts: 27
Thanked: 0
Odd problem with Postfix and reject_unknown_client option

[Log in to get rid of this advertisement]
I have a strange problem with Ubunto 8.10 (Intrepid Ibex) and Postfix. In the interest of cutting down spam, I've been using the reject_unknown_client configuration setting. According to the docs, this will reject mail from servers with no PTR (e.g. reject virtually all dynamic-server stuff).

I'm getting a few issues. For example, in my log today:

Quote:
Nov 13 08:34:22 osprey postfix/smtpd[23740]: NOQUEUE: reject: RCPT from unknown[195.74.102.190]: 450 4.7.1 Client host rejected: cannot find your hostname, [195.74.102.190]; from=<bounce@senderdomain.net> to=<myemail@mydomain.co.uk> proto=ESMTP helo=<partners.enta.net>
Quote:
Nov 13 08:34:23 osprey postfix/smtpd[23749]: NOQUEUE: reject: RCPT from unknown[84.234.16.230]: 450 4.7.1 Client host rejected: cannot find your hostname, [84.234.16.230]; from=<adsl24@adsl24.co.uk> to=<myemail@mydomain.co.uk> proto=ESMTP helo=<server.adsl24.co.uk>
Yet the host command gives these responses:

Code:
root@osprey:~# host 195.74.102.190
190.102.74.195.in-addr.arpa domain name pointer partners.enta.net.
root@osprey:~# host partners.enta.net
partners.enta.net has address 195.74.102.190
Code:
root@osprey:~# host 84.234.16.230
230.16.234.84.in-addr.arpa domain name pointer server.adsl24.co.uk.
root@osprey:~# host server.adsl24.co.uk
server.adsl24.co.uk has address 84.234.16.230
So, as far as I can tell, Postfix shouldn't have had any issues.

Am I missing something?

Many thanks,


Jim
Last edited by jimwillsher; 11-13-2008 at 04:13 AM..
jimwillsher is offline  
Tag This Post , ,
Reply With Quote
Old 11-13-2008, 04:41 AM   #2
billymayday
Guru
 
Registered: Mar 2006
Location: Sydney, Australia
Distribution: Fedora, CentOS, OpenSuse, Slack, Gentoo, Debian, Arch, PCBSD
Posts: 6,678
Thanked: 126
Assuming you are using >=2.3, try using reject_unknown_reverse_client_hostname instead and see what happens.
billymayday is offline     Reply With Quote
Old 11-13-2008, 05:08 AM   #3
jimwillsher
LQ Newbie
 
Registered: Jan 2004
Location: Dunblane, Central Scotland
Distribution: Redhat 9
Posts: 27
Thanked: 0

Original Poster
Many thanks for the quick reply, I appreciate you taking the time.

I'm using 2.5.5, so I've changed my entry to:

Quote:
smtpd_client_restrictions = hash:/etc/postfix/client_restrictions,reject_unknown_helo_hostname,reject_unknown_reverse_client_hostname
Does this look to be safer?


Jim
jimwillsher is offline     Reply With Quote
Old 11-13-2008, 05:10 AM   #4
billymayday
Guru
 
Registered: Mar 2006
Location: Sydney, Australia
Distribution: Fedora, CentOS, OpenSuse, Slack, Gentoo, Debian, Arch, PCBSD
Posts: 6,678
Thanked: 126
My suggestion was more that the change I suggested limits the rejections - you can narrow down the cause this way.

Try sending an email from one of those senders that failed before and see what happens.
billymayday is offline     Reply With Quote
Old 11-13-2008, 05:14 AM   #5
jimwillsher
LQ Newbie
 
Registered: Jan 2004
Location: Dunblane, Central Scotland
Distribution: Redhat 9
Posts: 27
Thanked: 0

Original Poster
Many thanks.

I'm have to wait for one of the "problematic" senders to send me an email, as I'll want it to be a realistic test.

Thanks again for your help.


Jim
jimwillsher is offline     Reply With Quote
Old 11-13-2008, 05:40 AM   #6
billymayday
Guru
 
Registered: Mar 2006
Location: Sydney, Australia
Distribution: Fedora, CentOS, OpenSuse, Slack, Gentoo, Debian, Arch, PCBSD
Posts: 6,678
Thanked: 126
That's OK. In the meantime, read up of the differences between reject_unknown_client_hostname and reject_unknown_reverse_client_hostname at http://www.postfix.org/postconf.5.ht...lient_hostname
billymayday is offline     Reply With Quote

Reply

Bookmarks


Thread Tools

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off

Similar Threads
Thread Thread Starter Forum Replies Last Post
SU Odd Problem AsgAnquietas Linux - General 4 10-12-2008 11:44 PM
Odd Dovecot / Postfix error punker22 Red Hat 1 10-29-2007 08:50 PM
postfix - mynetwork option doronunu Linux - Software 3 08-04-2006 09:55 PM
Odd problem zitstif Linux - Networking 2 08-17-2005 02:42 PM
Postfix send mail problem(In RH9, kernal 2.4.20, postfix 2.1.5) minor Linux - General 4 07-11-2005 10:12 PM


All times are GMT -5. The time now is 07:13 AM.

Contact Us - Advertising Info - Rules - LQ Merchandise - Donations - Contributing Member - LQ Sitemap - LinuxQuestions.org - Linux Forums
Main Menu
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
RSS2  LQ Podcast
RSS2  LQ Radio
Twitter: @linuxquestions
identi.ca: @linuxquestions
Facebook: @linuxquestions
Open Source Consulting | Domain Registration