From: Oscar Mauricio Cruz Lazo on
Basically this the config im running now !

Greetings !



On Fri, Feb 26, 2010 at 12:44 AM, Oscar Mauricio Cruz Lazo <
osmcruzl(a)gmail.com> wrote:

>
> thanks alot
>
> my postconf -n
>
>
> here my config postconf -n
>
> apac3:~ # mailq
> Mail queue is empty
> apac3:~ # postconf -n
> alias_maps = hash:/etc/aliases, hash:/var/lib/mailman/data/aliases
> best_mx_transport = local
> biff = no
> command_directory = /usr/sbin
> config_directory = /etc/postfix
> daemon_directory = /usr/lib/postfix
> debug_peer_level = 2
> defer_transports =
> disable_dns_lookups = no
> disable_mime_output_conversion = no
> html_directory = /usr/share/doc/packages/postfix/html
> inet_interfaces = all
> inet_protocols = all
> mail_owner = postfix
> mailbox_command =
> mailbox_size_limit = 0
> mailbox_transport = cyrus
> mailq_path = /usr/bin/mailq
> manpage_directory = /usr/share/man
> message_size_limit = 10485760
> mydestination = mysql:/etc/postfix/mysql-mydestination.cf
> myhostname = apac3.apac.org.ni
> mynetworks = 165.98.198.176/29, 200.62.90.0/24, 200.62.97.0/28,
> 200.62.97.144/28, 192.27.1.0/24, 127.0.0.0/8
> mynetworks_style = subnet
> newaliases_path = /usr/bin/newaliases
> queue_directory = /var/spool/postfix
> readme_directory = /usr/share/doc/packages/postfix/README_FILES
> receive_override_options = no_address_mappings
> relayhost =
> relocated_maps = hash:/etc/postfix/relocated
> sample_directory = /usr/share/doc/packages/postfix/samples
> sender_canonical_maps = mysql:/etc/postfix/mysql-canonical.cf
> sendmail_path = /usr/sbin/sendmail
> setgid_group = maildrop
> strict_8bitmime = no
> strict_rfc821_envelopes = yes
> transport_maps = hash:/etc/postfix/transport
> unknown_local_recipient_reject_code = 550
> virtual_alias_maps = mysql:/etc/postfix/mysql-virtual.cf
>
> ---------------------------
>
> log of the messsages !
>
> * tcarrion(a)datatex.com.ni
> SMTP error from remote mail server after RCPT TO:<tcarrion(a)datatex.com.ni> <tcarrion(a)datatex.com.ni>:
>
> host ns.datatex.com.ni [165.98.120.2]: 550 5.7.1 <tcarrion(a)datatex.com.ni> <tcarrion(a)datatex.com.ni>... bogus HELO name used:*
>
>
>
>
>
> On Fri, Feb 26, 2010 at 12:23 AM, mouss <mouss(a)ml.netoyen.net> wrote:
>
>> Oscar Mauricio Cruz Lazo a écrit :
>> >
>> > Hi all
>> >
>> > I runnig a postfix server but now i notice Emails from my server is
>> > being blocked by some ISPs because they claim it has a bogus helo,
>> > I just checked the list and my IP is not listed as a spammer,
>>
>> it has nothing to do with spammer listing. the ISP says your postfix is
>> misconfigured: it uses a bogus helo.
>>
>> by default, the helo argument is $myhostname. if you show the output of
>> 'postconf -n' as well the output of 'hostname', we may help you.
>>
>> >
>> > this only happens to certain email addresses, 97% of mail still goes
>> > through fine, just the odd one.
>> >
>> > my dns is working good
>> >
>> > not sure what is causing this ?
>> >
>> > thanks in advanced
>>
>>
>
From: Daniel Morgan on
> myhostname = apac3.apac.org.ni

In DNS: apac3.apac.org.ni = 165.98.119.11
BUT
165.98.119.11 != apac3.apac.org.ni
165.98.119.11 == pppleon11.ibw.com.ni.

From: Stan Hoeppner on
Daniel Morgan put forth on 2/26/2010 12:04 AM:
>> myhostname = apac3.apac.org.ni
>
> In DNS: apac3.apac.org.ni = 165.98.119.11
> BUT
> 165.98.119.11 != apac3.apac.org.ni
> 165.98.119.11 == pppleon11.ibw.com.ni.

Post the rejected transaction(s) from your logs please. It's likely they
are rejecting your mail due to the presence of "ppp" in the rDNS name, which
typically indicates consumer broadband IP space. I block smtp connections
based on such rDNS names myself, as do many admins.

If you are sending mail from dynamic IP consumer space, I recommend reading
this document:

http://www.hardwarefreak.com/postfix-adsl-relay-config.txt

--
Stan

From: mouss on
Oscar Mauricio Cruz Lazo a �crit :
>
> thanks alot
>
> my postconf -n
>
>
> here my config postconf -n
>
> apac3:~ # mailq
> Mail queue is empty
> apac3:~ # postconf -n
> alias_maps = hash:/etc/aliases, hash:/var/lib/mailman/data/aliases
> best_mx_transport = local
> biff = no
> command_directory = /usr/sbin
> config_directory = /etc/postfix
> daemon_directory = /usr/lib/postfix
> debug_peer_level = 2
> defer_transports =
> disable_dns_lookups = no
> disable_mime_output_conversion = no
> html_directory = /usr/share/doc/packages/postfix/html
> inet_interfaces = all
> inet_protocols = all
> mail_owner = postfix
> mailbox_command =
> mailbox_size_limit = 0
> mailbox_transport = cyrus
> mailq_path = /usr/bin/mailq
> manpage_directory = /usr/share/man
> message_size_limit = 10485760
> mydestination = mysql:/etc/postfix/mysql-mydestination.cf
> <http://mysql-mydestination.cf>
> myhostname = apac3.apac.org.ni <http://apac3.apac.org.ni>

if apac3.apac.org.ni is what the remote site sees, then it is not bogus
and the remote site error is wrong.

maybe they block you because of your "generic" reverse DNS:
$ host 165.98.119.11
11.119.98.165.in-addr.arpa domain name pointer pppleon11.ibw.com.ni.

but that's not what "bogus helo" means

> [snip]