Whitelist... Sadly, again

T

tanjix

Member
May 12, 2021
15
3
8
41
Hi folks,

I'm running PMG (Linux 5.15.85-1-pve #1 SMP PVE 5.15.85-1 (2023-02-01T00:00Z)) and added a domain (whitelisteddomain.com in this example) name into the whitelist on both areas:

Mail-Filter --> Who Objects --> Whitelist

and

Configuration --> Mail Proxy --> Whitelist

Sadly, these entries don't seem to have an effect, as incoming mails are still being rejected as per the logs:

Mar 21 17:33:40 pmg postfix/postscreen[214711]: NOQUEUE: reject: RCPT from [40.107.105.52]:42209: 550 5.7.1 Service unavailable; client [40.107.105.52] blocked using bl.score.senderscore.com; from=<sender@whitelisteddomain.com>, to=<recipient@email.com>, proto=ESMTP, helo=<EUR03-AM7-obe.outbound.protection.outlook.com>

Why are email still rejected although the sender domain name is on both whitelists?

Thanks for any advise, this is starting to get annoying :/
 
tanjix said:
Mar 21 17:33:40 pmg postfix/postscreen[214711]: NOQUEUE: reject: RCPT from [40.107.105.52]:42209: 550 5.7.1 Service unavailable; client [40.107.105.52]
Click to expand...
this mail was blocked because the sending IP is listed on bl.score.senderscore.com (which you configured as dnsbl_site in the Mail Proxy Option)
if you want to whitelist it ... you need to whitelist the IP

I hope this helps!
 
Hi Stoiko,

thanks for your swift reply.
Isn’t there an option that skips all other checks if I add a recipient to the whitelist? If I decide to accept mails from them it shouldn’t matter from where they send and all other checks should either be bypassed or skipped, even if they would return a positive result - like in this case.

Any chance for that?
 
tanjix said:
thanks for your swift reply.
Isn’t there an option that skips all other checks if I add a recipient to the whitelist? If I decide to accept mails from them it shouldn’t matter from where they send and all other checks should either be bypassed or skipped, even if they would return a positive result - like in this case.
Click to expand...
no not really - and it also does not make sense - in this example - if a spammer uses that from address they could just send you everything they wanted - and it would be accepted - no matter where it's from
 
Agree, but the risk, a potential spammer would do so (which beforehand means, he must have knowledge on that specific email address), is relatively low.

Is there a whitelist addon etc., that whitelists all outlook.com ip ranges without adding all of them one by one?
 
You must log in or register to reply here.

About

The Proxmox community has been around for many years and offers help and support for Proxmox VE, Proxmox Backup Server, and Proxmox Mail Gateway.
We think our community is one of the best thanks to people like you!

Quick Navigation

Home Get Subscription Wiki Downloads Proxmox Customer Portal About

Get your subscription!

The Proxmox team works very hard to make sure you are running the best software and getting stable updates and security enhancements, as well as quick enterprise support. Tens of thousands of happy customers have a Proxmox subscription. Get yours easily in our online shop.

Buy now!
Community platform by XenForo® © 2010-2024 XenForo Ltd.
Top Bottom