Re: [exim] skip reverse DNS lookup if smtp-authenticated

Top Page
Delete this message
Reply to this message
Author: Mike Cardwell
Date:  
To: exim-users
Subject: Re: [exim] skip reverse DNS lookup if smtp-authenticated
* on the Mon, Apr 02, 2007 at 10:22:17AM +0200, Konstantin Kletschke wrote:

> I am stuck with pimping my exim ACLs.
>
> exim is denying in "acl_check_connect:" connections whose reverse dns
> lookup fails:
>
> deny message = Warning - Reverse DNS lookup failed for host $sender_host_address.
>      !verify = reverse_host_lookup
>      !hosts = xxx.xxx.xxx.xxx

>
> The !hosts is an exception for my friend whose reverse dns lookup will
> always fail but he has an fixed ip address.
>
> My customers log in vie smtp-auth and deliver their mails to this exim
> as a smarthost. The ussue is, with t-online this check always fails (I
> encourage these to use their t-online smarthost), and recently
> osnanet.de is not able to let it reverse dns check their dial in
> customers correct. What I want to achieve is, that for my customers,
> who always do smtp-auth, this check is skipped.
>
> Who can apply such an exception with exim ACLs?


Move the check into the scl_smtp_mail acl rather than the connect acl.
By this point, the client will have authenticated or not and you can
just do:

deny message        = Warning - Reverse DNS lookup failed for host $sender_host_address.
     !authenticated = *
     !verify        = reverse_host_lookup
     !hosts         = xxx.xxx.xxx.xxx


Mike