* on the Mon, Apr 02, 2007 at 10:22:17AM +0200, Konstantin Kletschke wrote:
> I am stuck with pimping my exim ACLs.
>
> exim is denying in "acl_check_connect:" connections whose reverse dns
> lookup fails:
>
> deny message = Warning - Reverse DNS lookup failed for host $sender_host_address.
> !verify = reverse_host_lookup
> !hosts = xxx.xxx.xxx.xxx
>
> The !hosts is an exception for my friend whose reverse dns lookup will
> always fail but he has an fixed ip address.
>
> My customers log in vie smtp-auth and deliver their mails to this exim
> as a smarthost. The ussue is, with t-online this check always fails (I
> encourage these to use their t-online smarthost), and recently
> osnanet.de is not able to let it reverse dns check their dial in
> customers correct. What I want to achieve is, that for my customers,
> who always do smtp-auth, this check is skipped.
>
> Who can apply such an exception with exim ACLs?
Move the check into the scl_smtp_mail acl rather than the connect acl.
By this point, the client will have authenticated or not and you can
just do:
deny message = Warning - Reverse DNS lookup failed for host $sender_host_address.
!authenticated = *
!verify = reverse_host_lookup
!hosts = xxx.xxx.xxx.xxx
Mike
