Postfix: allow unlisted sender only for a specific IP/Application

on

orsomannaro asked:

To avoid backscatter emails, on Postfix I set:

smtpd_reject_unlisted_sender = true

But this prevents the Odoo from sending some particular emails, since it uses some custom aliases as sender:

SMTPRecipientsRefused: {'[email protected]': (550, b'5.1.0 <[email protected]@mydomain.com>: Sender address rejected: @mydomain.com')}

How can I whitelist the Odoo server/app?

My answer:

Instead of making this a global directive, place reject_unlisted_sender in smtpd_sender_restrictions (it must appear after permit_mynetworks and permit_sasl_authenticated, if you used that).

Now you can add the sender’s IP address to mynetworks = to whitelist it and cause it to bypass this check.

An example from my live mail server:

smtpd_sender_restrictions =
        permit_sasl_authenticated,
        permit_mynetworks,
        reject_unlisted_sender,
        reject_unauthenticated_sender_login_mismatch,
        permit

View the full question and any other answers on Server Fault.

Creative Commons License
This work is licensed under a Creative Commons Attribution-ShareAlike 3.0 Unported License.

Related Post

Limiting total number of incoming connections for a port with iptables for high loading server

Is there any reason to keep the "Server" response header in Apache

"Connection was reset" accesing apache2 virtualhost through wsl1 and /etc/hosts

How to use the ouptup of a command inside ansible ini_file value

Installing GraphicsMagick on RedHat Enterprise Linux

UFW is blocking mailserver traffic (dovecot, postfix, MariaDB, Rspamd)