Hi, I am trying to replace an old barracuda spam filter application with proxmox mail gateway. To test the setup, mail is being sent to a barracuda application then forwarded to PMG which is then relayed to the mail server. Some mail is being accepted but accompanying it are DNSBL warnings citing blocks due to too many queries. Some other mail is being rejected.
host : pmg
hostname.abc.edu : barracuda
support.abc.org : relay domain
* Rejected mail *
2024-08-07T01:24:46.265200-05:00 host postfix/smtpd[44231]: connect from hostname.abc.edu[192.168.0.1]
2024-08-07T01:24:46.325731-05:00 host postfix/smtpd[44231]: NOQUEUE: reject: RCPT from hostname.abc.edu [192.168.0.1]: 554 5.7.1 <contact+1b6d2c66e488bf4c6c1b36ffe7dfa316@support.abc.org>: Recipient address rejected: Rejected by SPF: 192.168.0.1 is not a designated mailserver for domain%40student.university.edu (context mfrom, on hostname.abc.edu); from=<student@university.edu> to=<contact+1b6d2c66e488bf4c6c1b36ffe7dfa316@support.abc.org> proto=ESMTP helo=<hostname.abc.edu>
2024-08-07T01:24:46.325788-05:00 host postfix/smtpd[44231]: using backwards-compatible default setting smtpd_relay_before_recipient_restrictions=no to reject recipient "contact+1b6d2c66e488bf4c6c1b36ffe7dfa316@support.abc.org" from client "hostname.abc.edu[192.168.0.1]"
2024-08-07T01:24:46.332120-05:00 host postfix/smtpd[44231]: disconnect from hostname.abc.edu[192.168.0.1] ehlo=1 mail=1 rcpt=0/1 data=0/1 rset=1 quit=1 commands=4/6
* Accepted Mail w/ DNSBL warnings *
Aug 07 09:48:22 hostname pmg-smtp-filter[45457]: WARNING: check: dns_block_rule RCVD_IN_VALIDITY_CERTIFIED_BLOCKED hit, creating /root/.spamassassin/dnsblock_sa-trusted.bondedsender.org (This means DNSBL blocked you due to too many queries. Set all affected rules score to 0, or use "dns_query_restriction deny sa-trusted.bondedsender.org" to disable queries)
Aug 07 09:48:22 hostname pmg-smtp-filter[45457]: WARNING: check: dns_block_rule RCVD_IN_VALIDITY_RPBL_BLOCKED hit, creating /root/.spamassassin/dnsblock_bl.score.senderscore.com (This means DNSBL blocked you due to too many queries. Set all affected rules score to 0, or use "dns_query_restriction deny bl.score.senderscore.com" to disable queries)
Aug 07 09:48:22 hostname pmg-smtp-filter[45457]: WARNING: check: dns_block_rule RCVD_IN_VALIDITY_SAFE_BLOCKED hit, creating /root/.spamassassin/dnsblock_sa-accredit.habeas.com (This means DNSBL blocked you due to too many queries. Set all affected rules score to 0, or use "dns_query_restriction deny sa-accredit.habeas.com" to disable queries)
Aug 07 09:48:22 hostname pmg-smtp-filter[45457]: 14036766B3893644E72: SA score=0/5 time=0.439 bayes=undefined autolearn=disabled hits=ARC_SIGNED(0.001),ARC_VALID(0.001),DKIM_SIGNED(0.1),DKIM_VALID(-0.1),DKIM_VALID_AU(-0.1),DMARC_PASS(-0.1),HEADER_FROM_DIFFERENT_DOMAINS(0.001),HTML_MESSAGE(0.001),RCVD_IN_DNSWL_HI(-5),RCVD_IN_VALIDITY_CERTIFIED_BLOCKED(0.001),RCVD_IN_VALIDITY_RPBL_BLOCKED(0.001),RCVD_IN_VALIDITY_SAFE_BLOCKED(0.001),SPF_HELO_NONE(0.001),SPF_PASS(-0.001)
host : pmg
hostname.abc.edu : barracuda
support.abc.org : relay domain
* Rejected mail *
2024-08-07T01:24:46.265200-05:00 host postfix/smtpd[44231]: connect from hostname.abc.edu[192.168.0.1]
2024-08-07T01:24:46.325731-05:00 host postfix/smtpd[44231]: NOQUEUE: reject: RCPT from hostname.abc.edu [192.168.0.1]: 554 5.7.1 <contact+1b6d2c66e488bf4c6c1b36ffe7dfa316@support.abc.org>: Recipient address rejected: Rejected by SPF: 192.168.0.1 is not a designated mailserver for domain%40student.university.edu (context mfrom, on hostname.abc.edu); from=<student@university.edu> to=<contact+1b6d2c66e488bf4c6c1b36ffe7dfa316@support.abc.org> proto=ESMTP helo=<hostname.abc.edu>
2024-08-07T01:24:46.325788-05:00 host postfix/smtpd[44231]: using backwards-compatible default setting smtpd_relay_before_recipient_restrictions=no to reject recipient "contact+1b6d2c66e488bf4c6c1b36ffe7dfa316@support.abc.org" from client "hostname.abc.edu[192.168.0.1]"
2024-08-07T01:24:46.332120-05:00 host postfix/smtpd[44231]: disconnect from hostname.abc.edu[192.168.0.1] ehlo=1 mail=1 rcpt=0/1 data=0/1 rset=1 quit=1 commands=4/6
* Accepted Mail w/ DNSBL warnings *
Aug 07 09:48:22 hostname pmg-smtp-filter[45457]: WARNING: check: dns_block_rule RCVD_IN_VALIDITY_CERTIFIED_BLOCKED hit, creating /root/.spamassassin/dnsblock_sa-trusted.bondedsender.org (This means DNSBL blocked you due to too many queries. Set all affected rules score to 0, or use "dns_query_restriction deny sa-trusted.bondedsender.org" to disable queries)
Aug 07 09:48:22 hostname pmg-smtp-filter[45457]: WARNING: check: dns_block_rule RCVD_IN_VALIDITY_RPBL_BLOCKED hit, creating /root/.spamassassin/dnsblock_bl.score.senderscore.com (This means DNSBL blocked you due to too many queries. Set all affected rules score to 0, or use "dns_query_restriction deny bl.score.senderscore.com" to disable queries)
Aug 07 09:48:22 hostname pmg-smtp-filter[45457]: WARNING: check: dns_block_rule RCVD_IN_VALIDITY_SAFE_BLOCKED hit, creating /root/.spamassassin/dnsblock_sa-accredit.habeas.com (This means DNSBL blocked you due to too many queries. Set all affected rules score to 0, or use "dns_query_restriction deny sa-accredit.habeas.com" to disable queries)
Aug 07 09:48:22 hostname pmg-smtp-filter[45457]: 14036766B3893644E72: SA score=0/5 time=0.439 bayes=undefined autolearn=disabled hits=ARC_SIGNED(0.001),ARC_VALID(0.001),DKIM_SIGNED(0.1),DKIM_VALID(-0.1),DKIM_VALID_AU(-0.1),DMARC_PASS(-0.1),HEADER_FROM_DIFFERENT_DOMAINS(0.001),HTML_MESSAGE(0.001),RCVD_IN_DNSWL_HI(-5),RCVD_IN_VALIDITY_CERTIFIED_BLOCKED(0.001),RCVD_IN_VALIDITY_RPBL_BLOCKED(0.001),RCVD_IN_VALIDITY_SAFE_BLOCKED(0.001),SPF_HELO_NONE(0.001),SPF_PASS(-0.001)