One domain we can't receive email from (even after whitelisting it)

We have a customer which is telling us that one of their clients is unable to send them email much of the time. In the logs below I have changed the domain names to protect the associated email addresses from abuse.

Here is a sample from the /var/log/mail.log.
I have separated lines with a line break for those which I consider to have particular elements of interest, to make it easier to review.

Code:

/var/log/mail.log.2.gz:Apr 25 17:54:13 s1 postfix/smtpd[12340]: NOQUEUE: filter: RCPT from mx08-00178001.pphosted.com[91.207.212.93]: <[email protected]>: Sender address triggers FILTER lmtp:[127.0.0.1]:10026; from=<[email protected]> to=<[email protected]> proto=ESMTP helo=<mx07-00178001.pphosted.com>
/var/log/mail.log.2.gz:Apr 25 17:54:13 s1 postfix/smtpd[12340]: NOQUEUE: filter: RCPT from mx08-00178001.pphosted.com[91.207.212.93]: <[email protected]>: Sender address triggers FILTER lmtp:[127.0.0.1]:10024; from=<[email protected]> to=<[email protected]> proto=ESMTP helo=<mx07-00178001.pphosted.com>
/var/log/mail.log.2.gz:Apr 25 17:54:13 s1 postfix/smtpd[12340]: AE03740401E: filter: RCPT from mx08-00178001.pphosted.com[91.207.212.93]: <[email protected]>: Sender address triggers FILTER lmtp:[127.0.0.1]:10026; from=<[email protected]> to=<[email protected]> proto=ESMTP helo=<mx07-00178001.pphosted.com>
/var/log/mail.log.2.gz:Apr 25 17:54:13 s1 postfix/smtpd[12340]: AE03740401E: filter: RCPT from mx08-00178001.pphosted.com[91.207.212.93]: <[email protected]>: Sender address triggers FILTER lmtp:[127.0.0.1]:10024; from=<[email protected]> to=<[email protected]> proto=ESMTP helo=<mx07-00178001.pphosted.com>
/var/log/mail.log.2.gz:Apr 25 17:54:13 s1 postfix/qmgr[12643]: AE03740401E: from=<[email protected]>, size=20230, nrcpt=2 (queue active)
/var/log/mail.log.2.gz:Apr 25 17:54:13 s1 amavis[12384]: (12384-11) LMTP< MAIL FROM:<[email protected]> SIZE=20230\r\n
/var/log/mail.log.2.gz:Apr 25 17:54:13 s1 amavis[12384]: (12384-11) lookup [debug_sender] => undef, "[email protected]" does not match
/var/log/mail.log.2.gz:Apr 25 17:54:13 s1 amavis[12384]: (12384-11) LMTP> 250 2.1.0 Sender <[email protected]> OK
/var/log/mail.log.2.gz:Apr 25 17:54:13 s1 amavis[12384]: (12384-11) LMTP :10024 /var/lib/amavis/tmp/amavis-20230425T170651-12384-_WDaKe9z: <[email protected]> -> <[email protected]>,<[email protected]> SIZE=20230 Received: from s1.ourServerDomain.info ([127.0.0.1]) by localhost (s1.ourServerDomain.info [127.0.0.1]) (amavisd-new, port 10024) with LMTP; Tue, 25 Apr 2023 17:54:13 +0800 (PST)

/var/log/mail.log.2.gz:Apr 25 17:54:13 s1 amavis[12384]: (12384-11) dkim: FAILED Author+Sender+MailFrom signature by d=SENDERS-DOMAIN.com, From: <[email protected]>, a=rsa-sha256, c=relaxed/relaxed, s=STMicroelectronics, [email protected], invalid (public key: DNS error: query timed out)

/var/log/mail.log.2.gz:Apr 25 17:54:13 s1 amavis[12384]: (12384-11) Checking: Z-t2aU3eEnPG [127.0.0.1] <[email protected]> -> <[email protected]>,<[email protected]>
/var/log/mail.log.2.gz:Apr 25 17:54:13 s1 amavis[12384]: (12384-11) 2822.From: <[email protected]>, 2821.Mail_From: <[email protected]>
/var/log/mail.log.2.gz:Apr 25 17:54:13 s1 amavis[12384]: (12384-11) wbl: checking sender <[email protected]>, <[email protected]>
/var/log/mail.log.2.gz:Apr 25 17:54:13 s1 amavis[12384]: (12384-11) lookup_acl([email protected]), no match
/var/log/mail.log.2.gz:Apr 25 17:54:13 s1 amavis[12384]: (12384-11) lookup [local_domains] => undef, "[email protected]" does not match
/var/log/mail.log.2.gz:Apr 25 17:54:13 s1 amavis[12384]: (12384-11) query_keys: [email protected], @SENDERS-DOMAIN.com, @.SENDERS-DOMAIN.com, @.com, @.
/var/log/mail.log.2.gz:Apr 25 17:54:13 s1 amavis[12384]: (12384-11) lookup_sql sel_wblist "[email protected]", query args: "13", [[email protected],12], [@SENDERS-DOMAIN.com,12], [@.SENDERS-DOMAIN.com,12], [@.com,12], [@.,12]
/var/log/mail.log.2.gz:Apr 25 17:54:13 s1 amavis[12384]: (12384-11) lookup_sql, "[email protected]" no match
/var/log/mail.log.2.gz:Apr 25 17:54:13 s1 amavis[12384]: (12384-11) lookup_sql_field(wb), "[email protected]" no matching records
/var/log/mail.log.2.gz:Apr 25 17:54:13 s1 amavis[12384]: (12384-11) lookup => undef, "[email protected]" does not match
/var/log/mail.log.2.gz:Apr 25 17:54:13 s1 amavis[12384]: (12384-11) lookup [blacklist_sender<[email protected]>,blacklist_sender] => undef, "[email protected]" does not match
/var/log/mail.log.2.gz:Apr 25 17:54:13 s1 amavis[12384]: (12384-11) lookup_acl([email protected]), no match
/var/log/mail.log.2.gz:Apr 25 17:54:13 s1 amavis[12384]: (12384-11) lookup [whitelist_sender<[email protected]>,whitelist_sender] => undef, "[email protected]" does not match
/var/log/mail.log.2.gz:Apr 25 17:54:13 s1 amavis[12384]: (12384-11) lookup_re("[email protected]"), no matches
/var/log/mail.log.2.gz:Apr 25 17:54:13 s1 amavis[12384]: (12384-11) lookup [score_sender<[email protected]>] => undef, "[email protected]" does not match
/var/log/mail.log.2.gz:Apr 25 17:54:13 s1 amavis[12384]: (12384-11) lookup_acl([email protected]), no match
/var/log/mail.log.2.gz:Apr 25 17:54:13 s1 amavis[12384]: (12384-11) lookup [local_domains] => undef, "[email protected]" does not match
/var/log/mail.log.2.gz:Apr 25 17:54:13 s1 amavis[12384]: (12384-11) query_keys: [email protected], @SENDERS-DOMAIN.com, @.SENDERS-DOMAIN.com, @.com, @.

/var/log/mail.log.2.gz:Apr 25 17:54:13 s1 amavis[12384]: (12384-11) lookup_sql sel_wblist "[email protected]", query args: "13", [[email protected],12], [@SENDERS-DOMAIN.com,12], [@.SENDERS-DOMAIN.com,12], [@.com,12], [@.,12]
/var/log/mail.log.2.gz:Apr 25 17:54:13 s1 amavis[12384]: (12384-11) lookup_sql, "[email protected]" no match
/var/log/mail.log.2.gz:Apr 25 17:54:13 s1 amavis[12384]: (12384-11) lookup_sql_field(wb), "[email protected]" no matching records
/var/log/mail.log.2.gz:Apr 25 17:54:13 s1 amavis[12384]: (12384-11) lookup => undef, "[email protected]" does not match
/var/log/mail.log.2.gz:Apr 25 17:54:13 s1 amavis[12384]: (12384-11) lookup [blacklist_sender<[email protected]>,blacklist_sender] => undef, "[email protected]" does not match
/var/log/mail.log.2.gz:Apr 25 17:54:13 s1 amavis[12384]: (12384-11) lookup_acl([email protected]), no match
/var/log/mail.log.2.gz:Apr 25 17:54:13 s1 amavis[12384]: (12384-11) lookup [whitelist_sender<[email protected]>,whitelist_sender] => undef, "[email protected]" does not match
/var/log/mail.log.2.gz:Apr 25 17:54:13 s1 amavis[12384]: (12384-11) lookup_re("[email protected]"), no matches
/var/log/mail.log.2.gz:Apr 25 17:54:13 s1 amavis[12384]: (12384-11) lookup [score_sender<[email protected]>] => undef, "[email protected]" does not match
/var/log/mail.log.2.gz:Apr 25 17:54:13 s1 amavis[12384]: (12384-11) lookup_acl([email protected]), no match
/var/log/mail.log.2.gz:Apr 25 17:54:13 s1 amavis[12384]: (12384-11) lookup [local_domains] => undef, "[email protected]" does not match
/var/log/mail.log.2.gz:Apr 25 17:54:13 s1 amavis[12384]: (12384-11) query_keys: cached [email protected]
/var/log/mail.log.2.gz:Apr 25 17:54:13 s1 amavis[12384]: (12384-11) lookup_sql sel_wblist "[email protected]", query args: "13", [[email protected],12], [@SENDERS-DOMAIN.com,12], [@.SENDERS-DOMAIN.com,12], [@.com,12], [@.,12]
/var/log/mail.log.2.gz:Apr 25 17:54:13 s1 amavis[12384]: (12384-11) lookup_sql, "[email protected]" no match
/var/log/mail.log.2.gz:Apr 25 17:54:13 s1 amavis[12384]: (12384-11) lookup_sql_field(wb), "[email protected]" no matching records
/var/log/mail.log.2.gz:Apr 25 17:54:13 s1 amavis[12384]: (12384-11) lookup => undef, "[email protected]" does not match
/var/log/mail.log.2.gz:Apr 25 17:54:13 s1 amavis[12384]: (12384-11) lookup [blacklist_sender<[email protected]>,blacklist_sender] => undef, "[email protected]" does not match
/var/log/mail.log.2.gz:Apr 25 17:54:13 s1 amavis[12384]: (12384-11) lookup_acl([email protected]), no match
/var/log/mail.log.2.gz:Apr 25 17:54:13 s1 amavis[12384]: (12384-11) lookup [whitelist_sender<[email protected]>,whitelist_sender] => undef, "[email protected]" does not match
/var/log/mail.log.2.gz:Apr 25 17:54:13 s1 amavis[12384]: (12384-11) lookup_re("[email protected]"), no matches
/var/log/mail.log.2.gz:Apr 25 17:54:13 s1 amavis[12384]: (12384-11) lookup [score_sender<[email protected]>] => undef, "[email protected]" does not match
/var/log/mail.log.2.gz:Apr 25 17:54:13 s1 amavis[12384]: (12384-11) lookup_acl([email protected]), no match
/var/log/mail.log.2.gz:Apr 25 17:54:13 s1 amavis[12384]: (12384-11) lookup [local_domains] => undef, "[email protected]" does not match
/var/log/mail.log.2.gz:Apr 25 17:54:13 s1 amavis[12384]: (12384-11) query_keys: cached [email protected]
/var/log/mail.log.2.gz:Apr 25 17:54:13 s1 amavis[12384]: (12384-11) lookup_sql sel_wblist "[email protected]", query args: "13", [[email protected],12], [@SENDERS-DOMAIN.com,12], [@.SENDERS-DOMAIN.com,12], [@.com,12], [@.,12]
/var/log/mail.log.2.gz:Apr 25 17:54:13 s1 amavis[12384]: (12384-11) lookup_sql, "[email protected]" no match
/var/log/mail.log.2.gz:Apr 25 17:54:13 s1 amavis[12384]: (12384-11) lookup_sql_field(wb), "[email protected]" no matching records
/var/log/mail.log.2.gz:Apr 25 17:54:13 s1 amavis[12384]: (12384-11) lookup => undef, "[email protected]" does not match
/var/log/mail.log.2.gz:Apr 25 17:54:13 s1 amavis[12384]: (12384-11) lookup [blacklist_sender<[email protected]>,blacklist_sender] => undef, "[email protected]" does not match
/var/log/mail.log.2.gz:Apr 25 17:54:13 s1 amavis[12384]: (12384-11) lookup_acl([email protected]), no match
/var/log/mail.log.2.gz:Apr 25 17:54:13 s1 amavis[12384]: (12384-11) lookup [whitelist_sender<[email protected]>,whitelist_sender] => undef, "[email protected]" does not match
/var/log/mail.log.2.gz:Apr 25 17:54:13 s1 amavis[12384]: (12384-11) lookup_re("[email protected]"), no matches
/var/log/mail.log.2.gz:Apr 25 17:54:13 s1 amavis[12384]: (12384-11) lookup [score_sender<[email protected]>] => undef, "[email protected]" does not match
/var/log/mail.log.2.gz:Apr 25 17:54:14 s1 amavis[12384]: (12384-11) about to connect to smtp:127.0.0.1:*, Z-t2aU3eEnPG FWD from <[email protected]> -> <[email protected]>,<[email protected]>
/var/log/mail.log.2.gz:Apr 25 17:54:14 s1 amavis[12384]: (12384-11) smtp cmd> MAIL FROM:<[email protected]> BODY=7BIT
/var/log/mail.log.2.gz:Apr 25 17:54:14 s1 amavis[12384]: (12384-11) rw_loop sent 173> MAIL FROM:<[email protected]> BODY=7BIT\r\nRCPT TO:<[email protected]> ORCPT=rfc822;[email protected]\r\nRCPT TO:<[email protected]> ORCPT=rfc822;[email protected]\r\nDATA\r\n

/var/log/mail.log.2.gz:Apr 25 17:54:14 s1 postfix/qmgr[12643]: 77C0A404A40: from=<[email protected]>, size=20777, nrcpt=2 (queue active)
/var/log/mail.log.2.gz:Apr 25 17:54:14 s1 amavis[12384]: (12384-11) Z-t2aU3eEnPG FWD from <[email protected]> -> <[email protected]>,<[email protected]>, BODY=7BIT 250 2.0.0 from MTA(smtp:[127.0.0.1]:10025): 250 2.0.0 Ok: queued as 77C0A404A40

/var/log/mail.log.2.gz:Apr 25 17:54:14 s1 amavis[12384]: (12384-11) DSN: sender NOT credible, SA: -0.588, <[email protected]>
/var/log/mail.log.2.gz:Apr 25 17:54:14 s1 amavis[12384]: (12384-11) lookup [spam_dsn_cutoff_level_bysender] => true,  "[email protected]" matches, result="100", matching_key="(constant:100)"

/var/log/mail.log.2.gz:Apr 25 17:54:14 s1 amavis[12384]: (12384-11) dsn: from MTA 250 NonBlocking:Clean <[email protected]> -> <[email protected]>: on_succ=0, on_dly=1, on_fail=1, never=0, warn_sender=, DSN_passed_on=1, destiny=1, mta_resp: "250 2.0.0 from MTA(smtp:[127.0.0.1]:10025): 250 2.0.0 Ok: queued as 77C0A404A40"

/var/log/mail.log.2.gz:Apr 25 17:54:14 s1 amavis[12384]: (12384-11) DSN: SUCC from MTA 250 NonBlocking:Clean, no DSN requested: <[email protected]> -> <[email protected]>
/var/log/mail.log.2.gz:Apr 25 17:54:14 s1 amavis[12384]: (12384-11) dsn: from MTA 250 NonBlocking:Clean <[email protected]> -> <[email protected]>: on_succ=0, on_dly=1, on_fail=1, never=0, warn_sender=, DSN_passed_on=1, destiny=1, mta_resp: "250 2.0.0 from MTA(smtp:[127.0.0.1]:10025): 250 2.0.0 Ok: queued as 77C0A404A40"
/var/log/mail.log.2.gz:Apr 25 17:54:14 s1 amavis[12384]: (12384-11) DSN: SUCC from MTA 250 NonBlocking:Clean, no DSN requested: <[email protected]> -> <[email protected]>
/var/log/mail.log.2.gz:Apr 25 17:54:14 s1 amavis[12384]: (12384-11) one_response_for_all <[email protected]>: success, r=0,b=0,d=0, ndn_needed=0, '250 2.0.0 from MTA(smtp:[127.0.0.1]:10025): 250 2.0.0 Ok: queued as 77C0A404A40'
/var/log/mail.log.2.gz:Apr 25 17:54:14 s1 amavis[12384]: (12384-11) Passed CLEAN {RelayedInbound}, [127.0.0.1] [104.47.11.44] <[email protected]> -> <[email protected]>,<[email protected]>, Message-ID: <AS2PR10MB7477AB89B2564C723C9094D2F9649@as2pr10mb7477.eurprd10.prod.outlook.com>, mail_id: Z-t2aU3eEnPG, Hits: -0.588, size: 20223, queued_as: 77C0A404A40, 736 ms

I have setup the following (you can see the domain names there too, in case you wish to check the DNS:

The reason for the multiple entries, when really all we wanted was "*.st.com" is because we could not find adequate documentation on the feature or what formats it wanted or could handle, so we've attempted to cover all bases here! Any clarification on this would be appreciated, so we can clean it up.





Any assistance would be dearly appreciated, since this has been raised to us many times over the last couple of months and nothing we do seems to help. Thanks!

 

Sorry for the delay.

The senders domain is

Code:

st.com

.
Regards,
Peter

 

We've seen this Till, but it specifies how to add individual email addresses, rather than how to enter a domain as a wild-card. Our client converses with many individuals at the external domain and we need to be able to allow them all by default.
We do appreciate the manual, but most times, we find that it is not detailed enough for our needs (could also do with an update - which of course we'll be happy to pay again for if ever)
Regards,
Peter

 

You're right. My apologies, upon closer inspection, I'd missed that. I've just cleaned up the whitelisting, and now "st.com" is the only entry for the domain.

While I was there, I also noticed a link in the manual to this page, which I have implemented also, treating the domain like the "free-mailer" described. I'll wait for feedback from the client.