Prev: building Postfix 2.7 from source Help!
Next: Postfix compile on OS X 10.6
From: Stephen Carville on 12 Apr 2010 15:13
I need user non-delivery notifications to be CCed to postmaster. At
least the headers need to be sent. Right I have the double bounces
being sent by adding "2bounce" to notify_classes. I tried adding
"bounce" to notify_classes but that seemed to send an email for every
time postfix rejected a message. Considering over 25,000 messages get
rejected a day that's not too useful to me.

How do I get non-delivery notifications -- at least the headers --
sent to postmaster too? Without thousands of transaction snippets
flooding the inbox?

mail_version = 2.3.3

$ postconf -n
alias_database = hash:/etc/aliases
alias_maps = hash:/etc/aliases
alternate_config_directories = /etc/postfix-mars
command_directory = /usr/sbin
config_directory = /etc/postfix
daemon_directory = /usr/libexec/postfix
debug_peer_level = 2
delay_warning_time = 1h
disable_vrfy_command = yes
home_mailbox = Maildir/
html_directory = no
inet_interfaces = localhost, 172.21.6.9
mail_owner = postfix
mailq_path = /usr/bin/mailq.postfix
manpage_directory = /usr/share/man
message_size_limit = 26214400
minimal_backoff_time = 300s
mydestination = $myhostname, localhost.$mydomain, localhost cadmzmx01.lereta.com
mydomain = lereta.com
myhostname = mx01.lereta.com
mynetworks = cidr:/etc/postfix/mynetworks
newaliases_path = /usr/bin/newaliases.postfix
notify_classes = resource, software, 2bounce
queue_directory = /var/spool/postfix
readme_directory = /usr/share/doc/postfix-2.3.3/README_FILES
recipient_canonical_maps = hash:/etc/postfix/recipient_canonical_map
relay_domains = closetheloan.com
dpsi-corp.com
it.lereta.com
lereta.com
lereta.net
lereta.org
source.totalflood.com
taxandflood.com
taxandflood.net
taxandflood.org
totalflood.com
totalflood.net
totalflood.org
relay_recipient_maps = hash:/etc/postfix/relay_recipients
sample_directory = /usr/share/doc/postfix-2.3.3/samples
sendmail_path = /usr/sbin/sendmail.postfix
setgid_group = postdrop
smtp_tls_note_starttls_offer = yes
smtp_tls_policy_maps = hash:/etc/postfix/tls_policy_map
smtpd_delay_reject = yes
smtpd_helo_required = yes
smtpd_recipient_restrictions = check_recipient_access
pcre:/etc/postfix/drop_list
permit_mynetworks
reject_unauth_destination
check_client_access cidr:/etc/postfix/accept_by_ip
reject_invalid_helo_hostname
reject_non_fqdn_helo_hostname
reject_unknown_sender_domain
check_helo_access pcre:/etc/postfix/helo_check
reject_unauth_pipelining
check_sender_access hash:/etc/postfix/accept_by_domain
reject_rbl_client zen.spamhaus.org
check_client_access cidr:/etc/postfix/reject_by_ip
check_client_access hash:/etc/postfix/reject_by_client
check_sender_access hash:/etc/postfix/reject_by_domain
check_recipient_access hash:/etc/postfix/filtered_domains
permit
smtpd_reject_unlisted_recipient = yes
smtpd_tls_CAfile = /etc/pki/tls/certs/gd_bundle.crt
smtpd_tls_cert_file = /etc/pki/tls/certs/wildcard.lereta.com.crt
smtpd_tls_key_file = /etc/pki/tls/private/wildcard.lereta.com.key
smtpd_tls_loglevel = 1
smtpd_tls_mandatory_protocols = TLSv1,SSLv3
smtpd_tls_security_level = may
tls_random_source = dev:/dev/urandom
unknown_local_recipient_reject_code = 550

--
Stephen Carville

From: Wietse Venema on 12 Apr 2010 15:30
Stephen Carville:
> I need user non-delivery notifications to be CCed to postmaster. At
> least the headers need to be sent. Right I have the double bounces
> being sent by adding "2bounce" to notify_classes. I tried adding
> "bounce" to notify_classes but that seemed to send an email for every
> time postfix rejected a message. Considering over 25,000 messages get
> rejected a day that's not too useful to me.
>
> How do I get non-delivery notifications -- at least the headers --
> sent to postmaster too? Without thousands of transaction snippets
> flooding the inbox?

Assuming that you aren't sending these to your primary inbox, you
could use a simple pipe-to-command filter that drops "transcript
of session follows" notices if you don't want to see bounce reports
for inbound mail.

When I built notify_classes, it did not seem necessary to have a
different bounce option for different bounce types. Now, everyone
would have their favorite way of selecting them (inbound, remote,
local, different settings for different protocols, and more).

Wietse

From: Stephen Carville on 12 Apr 2010 17:22
On Mon, Apr 12, 2010 at 12:30 PM, Wietse Venema <wietse(a)porcupine.org> wrote:

> Assuming that you aren't sending these to your primary inbox, you
> could use a simple pipe-to-command filter that drops "transcript
> of session follows" notices if you don't want to see bounce reports
> for inbound mail.

Thank you. FTTB, I'm redirecting them to my inbox so I can devise a
proper filter.

--
Stephen Carville

From: Stephen Carville on 13 Apr 2010 13:37
FWIW, it looks like the copies of non-delivery notifications go to
bounce_notice_recipient but the messages with the SMTP transactions
go to error_notice_recipient. By setting these to different addresses
I can separate the non-delivery notices from the error messages.

--
Stephen Carville

 | 
Pages: 1
Prev: building Postfix 2.7 from source Help!
Next: Postfix compile on OS X 10.6