Results 1 to 3 of 3

Thread: SMTP restrictions

  1. #1
    Join Date
    Sep 2005
    Location
    Toulouse (France)
    Posts
    8
    Rep Power
    10

    Default SMTP restrictions

    Hello,
    I have to tune my SMTP restictions because sone users complains.
    So I want to know the differences between "Client host rejected: cannot find your hostname" and "Helo command rejected: Host not found".

    My MTA restrictions are :
    [zimbra@mail2 ~]$ zmprov gacf | grep zimbraMtaRestriction
    zimbraMtaRestriction: reject_non-fqdn_hostname
    zimbraMtaRestriction: reject_non_fqdn_sender
    zimbraMtaRestriction: reject_unknown_client
    zimbraMtaRestriction: reject_unknown_hostname
    zimbraMtaRestriction: reject_unknown_sender_domain
    zimbraMtaRestriction: reject_rbl_client dnsbl.njabl.org
    zimbraMtaRestriction: reject_rbl_client opm.blitzed.org
    zimbraMtaRestriction: reject_rbl_client relays.ordb.org
    zimbraMtaRestriction: reject_rbl_client cbl.abuseat.org
    zimbraMtaRestriction: reject_rbl_client bl.spamcop.net

    But now I want "Helo command rejected: Host not found" to pass through but I want to open the minimum !

  2. #2
    Join Date
    Mar 2006
    Location
    L'Aquila, ITALIA
    Posts
    59
    Rep Power
    9

    Default

    Quote Originally Posted by Yvonne
    Hello,
    I have to tune my SMTP restictions because sone users complains.
    So I want to know the differences between "Client host rejected: cannot find your hostname" and "Helo command rejected: Host not found".
    1) Postifix make a dns query to find the hostname related to the ip address of the client
    2) Postifix make a dns query to find the ip address related the the hostname given at EHLO prompt

    My MTA restrictions are :
    [zimbra@mail2 ~]$ zmprov gacf | grep zimbraMtaRestriction
    zimbraMtaRestriction: reject_non-fqdn_hostname
    zimbraMtaRestriction: reject_non_fqdn_sender
    zimbraMtaRestriction: reject_unknown_client
    zimbraMtaRestriction: reject_unknown_hostname
    zimbraMtaRestriction: reject_unknown_sender_domain
    zimbraMtaRestriction: reject_rbl_client dnsbl.njabl.org
    zimbraMtaRestriction: reject_rbl_client opm.blitzed.org
    zimbraMtaRestriction: reject_rbl_client relays.ordb.org
    zimbraMtaRestriction: reject_rbl_client cbl.abuseat.org
    zimbraMtaRestriction: reject_rbl_client bl.spamcop.net

    But now I want "Helo command rejected: Host not found" to pass through but I want to open the minimum !

    As to me you are blocking too match, I'm using these settings:
    zimbraMtaRestriction: reject_invalid_hostname
    zimbraMtaRestriction: reject_non_fqdn_hostname
    zimbraMtaRestriction: reject_non_fqdn_sender
    zimbraMtaRestriction: reject_unknown_sender_domain
    zimbraMtaRestriction: reject_rbl_client dnsbl.njabl.org
    zimbraMtaRestriction: reject_rbl_client relays.ordb.org
    zimbraMtaRestriction: reject_rbl_client sbl.spamhaus.org
    zimbraMtaRestriction: check_policy_service inet:127.0.0.1:2501

    The last settings is related to this hack:
    Connecting to SqlGrey

    Ciao

  3. #3
    Join Date
    Sep 2005
    Location
    Toulouse (France)
    Posts
    8
    Rep Power
    10

    Default

    OK, I will try your settings ... except for the grey-listing !

Similar Threads

  1. sms zimlet troubleshooting
    By switchnetworks in forum Zimlets
    Replies: 19
    Last Post: 09-09-2009, 05:37 AM
  2. need advice on configuring zimbra to work with fax server
    By pheonix1t in forum Administrators
    Replies: 0
    Last Post: 07-11-2007, 08:46 PM
  3. Open Relay Help & Telnet Security Issue
    By OfMacAndMen in forum Installation
    Replies: 17
    Last Post: 07-10-2007, 08:51 PM
  4. Graylisting smtp outside of server
    By Theophilus in forum Administrators
    Replies: 1
    Last Post: 09-24-2006, 12:55 AM
  5. Is it started or not
    By kwelipatton in forum Installation
    Replies: 10
    Last Post: 03-28-2006, 11:11 PM

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •