HowtoForge Forums | HowtoForge - Linux Howtos and Tutorials

HowtoForge Forums | HowtoForge - Linux Howtos and Tutorials (http://www.howtoforge.com/forums/index.php)
-   Server Operation (http://www.howtoforge.com/forums/forumdisplay.php?f=5)
-   -   my nat IP in postfix headers is blacklisted (http://www.howtoforge.com/forums/showthread.php?t=2923)

toastmaster 6th March 2006 19:37

my nat IP in postfix headers is blacklisted
 
Hello,

I connect to my mail server through my ISPs NAT router, whose IP address is constantly being blacklisted because of virus activity within the network. When I send an email using my server, postfix inserts the header

Code:

Received: from HOSTNAME (Unknown[<My nats IP>])
which usually causes the outbound message to have a very high score because I get these:

Code:

RCVD_IN_XBL: <my NATs IP> listed insbl-xbl.spamhaus.org
in my @spam_admin notifications.

My question is what is the best practice so that my outbound email is not getting blocked by anyone using the spamhaus blacklist.

I have thought about using postfix to strip the headers out, using the postfix command header_checks, but just curious if you have any advice on the subject.

till 6th March 2006 20:13

Quote:

Originally Posted by toastmaster
I have thought about using postfix to strip the headers out, using the postfix command header_checks, but just curious if you have any advice on the subject.

This wont help at all, because other mailservers are performing these checks themself. Today all dynamic IP addresses from DSL and dialin lines are blacklisted.

The solution is to use a mail relay server from your ISP as smartrelay for your local mailserver. So all outgoing mail is sent by the Mailserver from your ISP which is hopefully not blacklisted ;)

toastmaster 7th March 2006 02:18

follow-up question
 
Till,

I am not sure that I understand. My server is using a static(Public) IP address. It is outside of the NAT router. My workstation is inside the NAT router. When I send an email, the first header that gets inserted is:

Code:

Received: from GERDES (unknown [64.146.168.140]) by cronos.homenetnw.com (Postfix) with ESMTP id 49E92474472 for <jason.gerdes@yahoo.com>; Mon, 6 Mar 2006 16:09:53 -0800 (PST)
The NAT ip is 64.146.168.140. If I remove or replace that IP, won't that stop spamassassin from checking that IP for blacklisting?

I work for the ISP whose NAT router is always being blacklisted. Should I instead restrict port 25 access so that I won't get that IP address blacklisted anymore. I'm confused about how to proceed. Any help you can provide would be greatly appreciated.

Jason:confused:

falko 7th March 2006 10:19

Quote:

Originally Posted by toastmaster
Till,

I am not sure that I understand. My server is using a static(Public) IP address. It is outside of the NAT router.

IT is possible that even static IPs are blacklisted if they belong to a DSL line, dial-up accout, etc.

Quote:

Originally Posted by toastmaster
I'm confused about how to proceed. Any help you can provide would be greatly appreciated.

Jason:confused:

You can use another mailserver (one that isn't blacklisted) for relaying your mail: http://www.howtoforge.com/forums/showthread.php?t=72


All times are GMT +2. The time now is 23:34.

Powered by vBulletin® Version 3.8.7
Copyright ©2000 - 2014, vBulletin Solutions, Inc.