Autor: Chris Data: A: Tabor J. Wells CC: exim-users Assumpte: Re: [Exim] host_accept_relay questions
Tabor, thanks for the response.
> Chris <caudo@???> is thought to have said:
> > host_accept_relay = *.dom1.com : *.dom2.com : /exim/iplist
>
> This is the correct form. > > But both result in
> > 550 relaying to <address> prohibited by administrator (failed to find host > > name from IP address)
>
> The paths listed above are different (/exim vs /opt/exim). A typo?
A typo, sorry.
> Also did you HUP the daemon after changing your config file? What's the
> contents of your iplist file look like? It should be something like:
>
> 10.0.0.0/8
> 192.168.123.0/24
> 192.168.124.25/32
>
> etc.
>
> What does a 'exim -d9 -bh <ip addr>' for one of the IPs in question tell
> you?
Here's the output from testing 207.217.34.34, a customer IP with nonexistant
DNS.
rcpt to: <caudo@???>
SMTP<< rcpt to: <caudo@???>
yahoo.com in local_domains? no (end of list)
yahoo.com in relay_domains? no (end of list)
local host found for non-MX address
localhost 127.0.0.1 mx=-1
host in host_accept_relay? no (failed to find host name or lookup deferred) SMTP>> 550 relaying to <caudo@???> prohibited by administrator (failed to find host name from IP address)
550 relaying to <caudo@???> prohibited by administrator (failed to
find host name from IP address)
LOG: 1 MAIN REJECT
refused relay (host) to <caudo@???> from <caudo@???>
H=(there) [207.217.34.34] (failed to find host name from IP address)
My host_accept_relay looks similar to:
host_accept_relay = *.domain.com : 207.217.0.0/16 :
/opt/exim/etc/relay.netblocks
(I tested with the IP block present in the configure file as well for
testing)
And in /opt/exim/etc/relay.netblocks:
$ grep 207.217 /opt/exim/etc/relay.netblocks
# 2001/08 NETBLK-COMPANY-CIDR 207.217.0.0 - 207.217.255.255
207.217.0.0/16
It's apparently not matching the host_accept_relay line, or the file match.
Oh and, um, #-comments are valid in these types of files, right? Either
way, the configure line should match?
# grep 207.217 /opt/exim/etc/relay.netblocks
### the address space. For example, 'whois -h whois.arin.net 207.217.91.0'
# 2001/08 NETBLK-EARTHLINK-CIDR 207.217.0.0 - 207.217.255.255
207.217.0.0/16