Page 1 of 2 12 LastLast
Results 1 to 10 of 12

Thread: IP Address Whitelisting

Hybrid View

  1. #1
    Join Date
    Sep 2009
    Posts
    18
    Rep Power
    6

    Default IP Address Whitelisting

    Hi,

    I have followed the following wiki article:

    http://wiki.zimbra.com/index.php?tit...s_whitelisting

    but still the mails are rejected but now with the following message:

    name@example.com>: connect to 127.0.0.1[127.0.0.1]:10026:

    Connection refused

    This is the warning received by the sender.

    There is now firewall between (everything is on localhost, no iptables).

    Before this setup the sender received the following errors:

    <<< 450 4.7.1 Client host rejected: cannot find your hostname, [xx.xx.xx.xx]
    <name@example.com>... Deferred: 450 4.7.1 Client host rejected: cannot find your hostname, [xx.xx.xx.xx]
    But I need to keep Anti Spam settings.


    I have ZCS 6.0 on Ubuntu 8.04 64bit.
    Please advise.

    Thanks.

  2. #2
    Join Date
    Nov 2006
    Location
    UK
    Posts
    8,017
    Rep Power
    25

    Default

    Please check /var/log/zimbra.log for any error messages from postfix when it starts as you may have a error in your configuration.

  3. #3
    Join Date
    Sep 2009
    Posts
    18
    Rep Power
    6

    Default

    Quote Originally Posted by uxbod View Post
    Please check /var/log/zimbra.log for any error messages from postfix when it starts as you may have a error in your configuration.
    Nothing relevant, only:

    postfix/smtp[29915]: connect to 127.0.0.1[127.0.0.1]:10026: Connection refused

    it is like amavis doesn't listen on 10026 too.
    I didn't pay attanetion to details like how the ports should be specified:
    10024,10026; or 10024, 10026;
    in the wiki article there is a space between them, in my setup also..

    Thanks.

  4. #4
    Join Date
    Nov 2006
    Location
    UK
    Posts
    8,017
    Rep Power
    25

    Default

    Would you post the files you have changed please so that we may check the syntax.

  5. #5
    Join Date
    Sep 2009
    Posts
    18
    Rep Power
    6

    Default

    Quote Originally Posted by uxbod View Post
    Would you post the files you have changed please so that we may check the syntax.
    amavis.conf.in:

    $inet_socket_port = 10024, 10026; # listen on this local TCP port(s) (see $protocol)
    $interface_policy{'10026'} = 'CLIENTWHITELIST';
    $policy_bank{'CLIENTWHITELIST'} = {
    bypass_spam_checks_maps => [1],
    final_spam_destiny => D_PASS,
    };

    and added:
    amavis_client_whitelist (like in the article) with the following content:
    xx.xx.xx.xx FILTER smtp-amavis:[127.0.0.1]:10026 (where xx.xx.xx.xx is the IP to be whitelisted)

    and all the other details specified in the article.

    Thanks.

  6. #6
    Join Date
    Jun 2008
    Posts
    594
    Rep Power
    8

    Default

    Amavis port is changed as far as i see from 10024 to 10026. Was it intentional ?

  7. #7
    Join Date
    Nov 2006
    Location
    UK
    Posts
    8,017
    Rep Power
    25

    Default

    Code:
    $inet_socket_port = [10024, 10026];

  8. #8
    Join Date
    Sep 2009
    Posts
    18
    Rep Power
    6

    Default

    Quote Originally Posted by uxbod View Post
    Code:
    $inet_socket_port = [10024, 10026];
    Hi uxbod,

    Thanks for opening my eyes...I didn't notice the brakets because of the nose
    I will reload the config later, that must be the reason.
    I'll come back tomorrow with an update.

    Thanks!

  9. #9
    Join Date
    Sep 2009
    Posts
    18
    Rep Power
    6

    Default

    Quote Originally Posted by georgelazar View Post
    Hi uxbod,

    Thanks for opening my eyes...I didn't notice the brakets because of the nose
    I will reload the config later, that must be the reason.
    I'll come back tomorrow with an update.

    Thanks!
    No luck... the message is still rejected, here are the logs:

    NOQUEUE: filter: RCPT from unknown[xx.xx.xx.xx]: <unknown[xx.xx.xx.xx]>: Client host triggers FILTER smtp-amavis:[127.0.0.1]:10026; from=<name@domain.com> to=<recipient@example.com> proto=ESMTP helo=<localhost.localdomain>
    Oct 7 06:56:02 mx1 postfix/smtpd[9153]: NOQUEUE: reject: RCPT from unknown[xx.xx.xx.xx]: 450 4.7.1 Client host rejected: cannot find your hostname, [xx.xx.xx.xx]; from=<sender@doamin.com

    the real data was replaced with dummy data.

    PS: check_client_access hash:/opt/zimbra/postfix/conf/amavis_client_whitelist is on top of all restrictions.

  10. #10
    Join Date
    Jun 2008
    Posts
    594
    Rep Power
    8

    Default

    How can you have service listen on 2 different ports at same time ?

Similar Threads

  1. Account Lockout: How to find IP address of soap - AuthRequest
    By spikehardin in forum Administrators
    Replies: 23
    Last Post: 08-13-2014, 02:01 PM
  2. [SOLVED] Adding XP PCs to a samba domain...
    By NoDoze in forum Administrators
    Replies: 43
    Last Post: 08-13-2009, 05:22 PM
  3. Change IP address
    By ayush1440 in forum Administrators
    Replies: 5
    Last Post: 07-13-2009, 11:46 PM
  4. Zcs 5.0.13_GA Moved IP Address
    By gspearson in forum Installation
    Replies: 8
    Last Post: 06-15-2009, 11:18 AM
  5. I got Ubuntu and Zimbra working
    By pacsteel in forum Installation
    Replies: 73
    Last Post: 06-23-2008, 12:41 PM

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •