我有一个使用Postfix的邮件服务器(iRedMail)。 我收到很多垃圾邮件,所以我修改了/etc/postfix/main.cf文件,并将smtpd_recipient_restrictions设置为:
smtpd_recipient_restrictions = reject_rbl_client zen.spamhaus.org, reject_rbl_client bl.spamcop.net, reject_rbl_client cbl.abuseat.org, reject_rbl_client b.barracudacentral.org, reject_invalid_hostname, reject_unknown_sender_domain, reject_unknown_recipient_domain, check_policy_service inet:127.0.0.1:7777, check_policy_service inet:127.0.0.1:10031, reject_non_fqdn_sender, reject_non_fqdn_hostname, reject_non_fqdn_recipient, reject_unlisted_recipient, permit_mynetworks, permit_sasl_authenticated, reject_unauth_destination, permit 然而,垃圾邮件仍然来自这些黑名单上的IP。
如果我看看我的/var/log/mail.log文件,我看到消息通过。 这是一个例子:
Jan 11 01:09:19 mailhost postfix/smtpd[935]: DA5736B578: client=localhost[127.0.0.1] Jan 11 01:09:19 mailhost postfix/cleanup[922]: DA5736B578: message-id=<ObreptitiousSoundness_300b221f33a2b213a8dc0ee683baadacnick@mydomain.com> Jan 11 01:09:19 mailhost postfix/qmgr[31818]: DA5736B578: from=<[email protected]>, size=6081, nrcpt=1 (queue active) Jan 11 01:09:19 mailhost postfix/smtpd[935]: disconnect from localhost[127.0.0.1] Jan 11 01:09:19 mailhost amavis[737]: (00737-01) Passed CLEAN, LOCAL [89.185.243.3] [89.185.243.3] <[email protected]> -> <[email protected]>, Message-ID: <ObreptitiousSoundness_300b221f33a2b213a8dc0ee683baadacnick@mydomain.com>, mail_id: NBO0lwDs11eq, Hits: -1.097, size: 5620, queued_as: DA5736B578, 647 ms Jan 11 01:09:19 mailhost postfix/smtp[930]: D662C6B575: to=<[email protected]>, relay=127.0.0.1[127.0.0.1]:10024, delay=2.1, delays=1.5/0.01/0.02/0.65, dsn=2.0.0, status=sent (250 2.0.0 from MTA([127.0.0.1]:10025): 250 2.0.0 Ok: queued as DA5736B578)
当我在MXToolBox上查找89.185.243.3时,它在Spamhaus Zen上列出。
我的configuration不正确? 我注意到,显然这些项目的顺序是有差别的。
谢谢!
您的configuration不是最佳的,更好地在客户端限制中使用RBL。 这是我会build议,虽然有些是有点限制,我不知道你的完整的Postfix的设置。 这是一个例子,请参阅Postfix的手册和build议,了解有关参数的更多信息。
smtpd_helo_restrictions = permit_mynetworks, permit_sasl_authenticated, reject_unauth_pipelining, reject_non_fqdn_hostname smtpd_client_restrictions = permit_mynetworks, permit_sasl_authenticated, reject_unauth_destination, reject_rbl_client zen.spamhaus.org, reject_rbl_client bl.spamcop.net, reject_rbl_client cbl.abuseat.org, reject_rbl_client b.barracudacentral.org smtpd_sender_restrictions = reject_non_fqdn_sender, reject_unknown_sender_domain, permit_mynetworks, permit_sasl_authenticated, reject_authenticated_sender_login_mismatch, reject_sender_login_mismatch smtpd_recipient_restrictions = reject_unknown_recipient_domain, check_policy_service inet:127.0.0.1:7777, check_policy_service inet:127.0.0.1:10031, reject_non_fqdn_recipient, reject_unlisted_recipient, permit