Re: [Exim] exim rejecting mails from sites that were ok.

Top Page
Delete this message
Reply to this message
Author: Sujit Choudhury
Date:  
To: Nico Erfurth, exim-users
CC: exim-users
Subject: Re: [Exim] exim rejecting mails from sites that were ok.
> Sujit Choudhury wrote:
> > We have recently moved from exim 2.x to exim 4.12.  We are getting lot
>                                                 ^^^^ upgrade  to 4.14
> > of mail reject.
> > Our ACL is

> >
> > check_recipient:
> >   accept  hosts = :
> >   accept  recipients = postmaster@??? : \
> >       postmaster@???
> >   deny    hosts = ! /mail/exim/files/net_reject_except : \
> >                   ! * : *

>
> "Reject anyone not in the list, and not matching *, but macthing *" HE?
>
> >   deny    hosts = ! /mail/exim/files/net_reject_except : \
> >       +include_unknown:partial-lsearch;/mail/exim/files/host_reject :
> > /mail/exi

>
> Incomplete....
>
> >
> > # address is in rbl-plus.mail-abuse.ja.net - so rejected
> >   deny    message = host is listed in $dnslist_domain
> >           dnslists = rbl-plus.mail-abuse.ja.net:rbl.maps.vix.com
> >   deny    senders = *@partial-lsearch;/mail/exim/files/sender_reject :
> > lsearch;

>
> incemplete....
>
> >   require verify = sender
> >   accept  domains = +local_domains
> >   accept  domains = +relay_domains
> >   accept  hosts = +relay_hosts
> >   deny    message = relay not permitted

>
> Well, basicly, your whole ACL looks f*cked.
>
> As the others said, show some logentries, and use
> exim -d -bh rejected.ip.address
> to find out WHY it rejects.
> And maybe you should read the part about ACLs again in your spec.txt.
>
> Nico
>



here is the ACL again - some typo occurred during first time:

check_recipient:
  accept  hosts = :
  accept  recipients = postmaster@??? : \
      postmaster@???
  deny    hosts = ! /mail/exim/files/net_reject_except : \
          ! * : *
  deny    hosts = ! /mail/exim/files/net_reject_except : \
      +include_unknown:partial-lsearch;/mail/exim/files/host_reject : \
      /mail/exim/files/net_reject


# address is in rbl-plus.mail-abuse.ja.net - so rejected
  deny    message = host is listed in $dnslist_domain
          dnslists = rbl-plus.mail-abuse.ja.net:rbl.maps.vix.com
  deny    senders = *@partial-lsearch;/mail/exim/files/sender_reject : lsearch;/
mail/exim/files/sender_reject
  require verify = sender
  accept  domains = +local_domains
  accept  domains = +relay_domains
  accept  hosts = +relay_hosts
  deny    message = relay not permitted



# ACL that is used after the DATA command
check_message:
  warn    !verify = header_sender
  accept



o.k ! *:* is very stupid. Any idea?

Sujit

----------------------
Sujit Choudhury
University of Westminster
E-Mail: S.Choudhury@???
Tel No: 020 - 7911 5000 Ext 3851

-
This e-mail and its attachments are intended for the above named
only and may be confidential. If they have come to you in error
you must not copy or show them to anyone, nor should you take any
action based on them, other than to notify the error by replying to
the sender.