Go Back   HowtoForge Forums | HowtoForge - Linux Howtos and Tutorials > Linux Forums > Server Operation

Do you like HowtoForge? Please consider supporting us by becoming a subscriber.
Thread Tools Display Modes
Old 15th February 2011, 21:58
Scott.Paananen Scott.Paananen is offline
Junior Member
Join Date: Feb 2011
Posts: 1
Thanks: 0
Thanked 0 Times in 0 Posts
Exclamation Postfix mail server. Please help

Hi everyone,
I am new to postfix, and i am having an issue.
We are not able to get mail from a certain company, our post fix logs show the following.

Note: i've removed personal information from the logs

Feb 14 15:10:54 SERVER02 postfix/smtpd[20199]: connect from mail.example.net[xx.xx.xxx.xxx]
Feb 14 15:11:10 SERVER02 postfix/policy-spf[20201]: handler sender_policy_framework: is decisive.
Feb 14 15:11:10 SERVER02 postfix/policy-spf[20201]: : Policy action=DEFER_IF_PERMIT SPF-Result=mail-server.eaxmple.net: 'SERVFAIL' error on DNS 'SPF' lookup of 'mail-server.eaxmple.net'
Feb 14 15:11:10 SERVER02 postfix/smtpd[20199]: warning: restriction `smtpd_data_restrictions' after `permit' is ignored
Feb 14 15:11:10 SERVER02 postfix/smtpd[20199]: NOQUEUE: reject: RCPT from mail.eaxmple.net[xx.xx.xxx.xxx]: 450 4.7.1 <me@us.com>: Recipient address rejected: SPF-Result=mail-server.eaxmple.net: 'SERVFAIL' error on DNS 'SPF' lookup of 'mail-server.eaxmple.net'; from=<them@example.net> to=<me@us.com> proto=ESMTP helo=<mail-server.eaxmple.net>
Feb 14 15:11:11 SERVER02 postfix/smtpd[20199]: disconnect from mail.example.net[xx.xx.xxx.xxx]

Now, their front end mail server is mail.example.net and their new back end server is mail-server.eaxmple.com

The first thing i noticed was the misspelling of their domain name in the mail-server (mail-server.eaxmple.com) So i told the it, was thier issue, and not ours. The problem is this.

eaxmple.net is in the domain example.net, The mistake was made a while ago, and never fixed.

Is there anyway i can get postfix to allow mail from this company with out them fixing their problem, as it they claim it is our problem.

here is a copy of my postfix config.

# Requirements for the HELO statement
smtpd_helo_restrictions = permit_mynetworks, warn_if_reject reject_non_fqdn_hostname, reject_invalid_hostname, permit
# Requirements for the sender details
smtpd_sender_restrictions = permit_mynetworks, warn_if_reject reject_non_fqdn_sender, reject_unknown_sender_domain, reject_unauth_pipelining, permit
# Requirements for the connecting server
smtpd_client_restrictions = reject_rbl_client sbl.spamhaus.org, reject_rbl_client blackholes.easynet.nl, reject_rbl_client dnsbl.njabl.org
# Requirement for the recipient address
smtpd_recipient_restrictions = reject_unauth_pipelining, permit_mynetworks, reject_non_fqdn_recipient, reject_unknown_recipient_domain, reject_unauth_destination, check_policy_service unixrivate/policy, check_policy_service inet:, permit smtpd_data_restrictions = reject_unauth_pipelining

# require proper helo at connections
smtpd_helo_required = yes

Can someone please help me out?
Apperenlty, we are the only place they can not send mail to, and I would like to make a work around so we can receive mail from them without waiting on them to fix thier problem.

Thank you in advance.
Reply With Quote
Sponsored Links
Old 15th February 2011, 22:38
Hans Hans is offline
Join Date: Dec 2005
Location: Montfoort, The Netherlands
Posts: 2,263
Thanks: 216
Thanked 649 Times in 295 Posts

Hi You've implemented SPF within Postfix which is fine.
Ik think the email of the sender can not pass as it seems that their domain DNS-settings does not contain a SPF-record.

If they define a SPF-record, i do think email will pass through.
So this is the best option.

The other possibility is that you remove the line:
check_policy_service unixrivate/policy from your Postfix configuration file and restart Postfix afterwards.
In that case your system does not check for SPF-records anymore, but i don't recommend that.

MrHostman | Managed Hosting
Reply With Quote


Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump

Similar Threads
Thread Thread Starter Forum Replies Last Post
Getting Email Working ISPConfig3 Squirrelmail and Courier etc Ian Wilson Installation/Configuration 17 19th June 2013 23:58
sneaking suspicion my postfix config has gone awry mjbarfoot Installation/Configuration 7 24th August 2010 13:23
ERROR: Connection dropped by IMAP server. [Centos 5.4, courier imap,squirrel, etc] darevil HOWTO-Related Questions 7 9th June 2010 15:49
421 Unexpected failure Lizard King Installation/Configuration 20 7th July 2009 21:43
Postfix + postfixadmin = SMTP errors... Rashef Server Operation 4 25th June 2009 17:12

All times are GMT +2. The time now is 03:16.

Powered by vBulletin® Version 3.8.7
Copyright ©2000 - 2014, vBulletin Solutions, Inc.