Mail Proxy - White list problem
- Thread starter Goldy
- Start date
You are describing the SMTP whitelist. Here, certain checks are only deactivated in the SMTP dialog, i.e. when the mail is received. For example, greylisting, SPF check & DSNBL checks for the sender or the domain you have specified.
If you want to ensure that senders or domains are provided without a flag, you must also create a rule under Mail Filter and set the sender/domain to Accept. These rules only take effect after the mail has been accepted and processed by Spamassassin.
If you want to ensure that senders or domains are provided without a flag, you must also create a rule under Mail Filter and set the sender/domain to Accept. These rules only take effect after the mail has been accepted and processed by Spamassassin.
Have you applied the rule accordingly? In the places in your screenshots, you only create them for the time being, so they are not yet applied:
Please also provide a log of a whitelisted e-mail that is declared as spam.
Please also provide a log of a whitelisted e-mail that is declared as spam.
You can find the log in the same place, we only need the log from a sender on the whitelist, which is nevertheless blocked.
It is clear from the log that your query is being blocked by Spamhaus:
This is because your PMG uses a DNS server that is blocked by Spamhaus. Many RBLs block public DNS resolvers. It could also be that PMG flagged the mail as spam because it could not reach the RBL.
It is clear from the log that your query is being blocked by Spamhaus:
URIBL_DBL_BLOCKED_OPENDNS 0.001 ADMINISTRATOR NOTICE: The query to dbl.spamhaus.org was blocked due to usage of an open resolver. See https://www.spamhaus.org/returnc/pub/ [Commax.com,u2274819.ct.sendgrid.net]This is because your PMG uses a DNS server that is blocked by Spamhaus. Many RBLs block public DNS resolvers. It could also be that PMG flagged the mail as spam because it could not reach the RBL.
Hi,
I've noticed this issue and am unsure how to fix it, especially since the PMG DNS settings are 9.9.9.9 and 8.8.8.8.
Nevertheless, if I understand the PMG mechanism correctly, all entries in the 'Mail Proxy -> Whitelist' should bypass any and all spam checks.
I've noticed this issue and am unsure how to fix it, especially since the PMG DNS settings are 9.9.9.9 and 8.8.8.8.
Nevertheless, if I understand the PMG mechanism correctly, all entries in the 'Mail Proxy -> Whitelist' should bypass any and all spam checks.
It is best to send DNS requests from your PMG via DNS servers that are not blocked by Spamhaus. However, Google's public servers are among them. This means that you should be able to send round robin requests via the two DNS servers you have specified and sometimes not; QUAD9 is not blocked.
You can either enter alternative DNS servers in the PMG, namely those of your provider, or pass the DNS traffic of the PMG to certain DNS servers via the firewall.
You can test it via CLI:
Code:
host 2.0.0.127.zen.spamhaus.orgAs far as I know, Postfix always flags mails as spam if RBL lists are entered but not accessible.
Have you adjusted the sender in your log? In contrast to the other data, a part of the sender address does not seem to have been anonymised, which means that it does not match your whitelist entry.
Then I don't know what to do.
I asked because you are working with e-mail addresses in the screenshots above. The address given here in the log as the sender did not appear in your screenshots. I myself currently only work with domains and not individual e-mail addresses.
I asked because you are working with e-mail addresses in the screenshots above. The address given here in the log as the sender did not appear in your screenshots. I myself currently only work with domains and not individual e-mail addresses.
Thank you so much for all your efforts.
Normally, with other gateway I had, adding a domain to the whitelist exempts it from all spam checks, ensuring that all emails from that sender/domain are accepted.
For some reason, it doesn't seem to work with PMG. If I find a resolution for this, I'll update you here.
Normally, with other gateway I had, adding a domain to the whitelist exempts it from all spam checks, ensuring that all emails from that sender/domain are accepted.
For some reason, it doesn't seem to work with PMG. If I find a resolution for this, I'll update you here.
OK.
We found a resolution for this issue.
Go to Mail Filter - Rules - Whitelist and increase the priority to 98.
it seems to work for us.
By default, the Blacklist rule and spam filtering rules have higher priority than the whitelist rule, meaning a whitelisted sender can still be checked for spam. Increasing the priority ensures that whitelisted emails are accepted before spam checks are applied.
We found a resolution for this issue.
Go to Mail Filter - Rules - Whitelist and increase the priority to 98.
it seems to work for us.
By default, the Blacklist rule and spam filtering rules have higher priority than the whitelist rule, meaning a whitelisted sender can still be checked for spam. Increasing the priority ensures that whitelisted emails are accepted before spam checks are applied.