Hi Dear, I notice that after I reconfigure service postfix the system appends "permit" at the end of: - smtpd_helo_restrictions; - smtpd_client_restrictions. BEFORE RECONFIGURE POSTFIX smtpd_client_restrictions = permit_mynetworks, permit_sasl_authenticated, reject_unauth_pipelining, check_client_access mysql:/etc/postfix/mysql-virtual_client.cf, reject_rbl_client cbl.abuseat.org, reject_rbl_client b.barracudacentral.org, reject_unknown_client_hostname AFTER RECONFIGURE POSTFIX smtpd_client_restrictions = check_client_access proxy:mysql:/etc/postfix/mysql-virtual_client.cf, permit_inet_interfaces, permit_mynetworks, permit_sasl_authenticated, reject_rbl_client cbl.abuseat.org, reject_rbl_client b.barracudacentral.org, reject_unauth_pipelining, reject_unknown_client_hostname, permit After reconfigure RBL check stops to do RBL lookup. Thanks. BR.
permit at the end should be explicits default action ... so I don't know ... I have to check again because it should work ..
Do you use any custom config templates which might be incompatible with the ISPConfig version you use now? Check /usr/local/ispconfig/server/conf-custom/install/ folder if there are any.
The rbl checks will still be used, just with differences in the restrictions which precede them; why is it that you think they are not used? What are log entries for a message sent from a host which should have been rejected?
I have to check better but I had the impression that I no longer see logs related to ban rbl which is very strange considering that they are generally very frequent ... but I have to check
Hi, i use last stable version. No conf-custom. In the past I remember changing manually main.cf to hardening postfix https://www.howtoforge.com/hardening-postfix-for-ispconfig-3
