Trying in vain here to block a cidr address range, and yet whitelist certain email addresses on postfix on freebsd 7 ... any tips would be greatly appreciated... postfix just keeps blocking my CIDR and ignoring my whitelist ...
main.cf:
Code:
# STOP UCE AND SPAM
smtpd_recipient_restrictions =
permit_mynetworks,
permit_sasl_authenticated,
reject_unauth_destination,
check_sender_access hash:/usr/local/etc/postfix/maps/sender_access,
reject_invalid_hostname,
reject_unauth_pipelining,
reject_non_fqdn_recipient,
reject_unknown_recipient_domain,
#reject_rhsbl_client blackhole.securitysage.com,
#reject_rbl_client relays.ordb.org,
reject_rbl_client blackholes.easynet.nl,
reject_rbl_client cbl.abuseat.org,
reject_rbl_client proxies.blackholes.wirehub.net,
#reject_rbl_client bl.spamcop.net,
reject_rbl_client sbl.spamhaus.org,
reject_rbl_client opm.blitzed.org,
reject_rbl_client dnsbl.njabl.org,
#reject_rbl_client list.dsbl.org,
reject_rbl_client multihop.dsbl.org,
#reject_rbl_client t1.dnsbl.net.au,
reject_rbl_client dnsbl.njabl.org,
reject_rbl_client blackholes.mail-abuse.org,
reject_rbl_client relays.mail-abuse.org,
#reject_rbl_client list.dsbl.org,
reject_rbl_client multihop.dsbl.org,
#reject_rhsbl_client relays.ordb.org,
reject_rhsbl_client dnsbl.njabl.org,
reject_rhsbl_client blackholes.mail-abuse.org,
reject_rhsbl_client relays.mail-abuse.org,
#reject_rhsbl_client list.dsbl.org,
reject_rhsbl_client multihop.dsbl.org,
reject_non_fqdn_sender,
reject_unknown_sender_domain,
permit
header_checks = regexp:/usr/local/etc/postfix/maps/header_checks
body_checks = regexp:/usr/local/etc/postfix/maps/body_checks
smtpd_client_restrictions = check_client_access cidr:/usr/local/etc/postfix/maps/ip.cidr
sender_access :
Code:
#always POSTMAP sender_access when done
iinet.net.au OK
ip.cidr :
Code:
61.9.0.0/16 REJECT (Err.cidr0) Temporary rejection - IT guys are testing ... retry in a minute ...