Ping a Specific Port

Question

user981178

Asked: 2013-10-08 10:52:06 +0800 CST2013-10-08 10:52:06 +0800 CST 2013-10-08 10:52:06 +0800 CST

Should I put SPF checks before or after RBL checks in Postfix SMTP server?

772

I am setting up a Postfix SMTP server (pre v2.10) and was thinking to put the smtpd_recipient_restrictions as follows.

smtpd_recipient_restrictions=
    permit_mynetworks,
    reject_non_fqdn_recipient,
    reject_unknown_recipient_domain,
    reject_unauth_destination,
    reject_rbl_client sub.domain.tld,
    reject_rhsbl_reverse_client sub.domain.tld,
    reject_rhsbl_helo sub.domain.tld,
    reject_rhsbl_sender sub.domain.tld,
    check_policy_service unix:private/policyd-spf

Would it work, and might it be an even better idea, to put the SPF checks before the RBL and RHSBL checks, so as to limit (if the SPF check might block something before reaching the RBL and RHSBL checks) the number of queries to the RBL and RHSBL lists/services?

Thank you.

1 Answers

Voted

jerm · Answer 1 · 2013-10-08T11:02:28+08:00

jerm

2013-10-08T11:02:28+08:002013-10-08T11:02:28+08:00

RBL checks happen based on the incoming IP of the connection and can dispatch a 'bad' connection very quickly. SPF checks must wait for the SMTP conversation to begin and are therefore require more resources. In a high-volume situation, doing RBL first is "cheaper"

4

Should I put SPF checks before or after RBL checks in Postfix SMTP server?

Can you pass user/pass for HTTP Basic Authentication in URL parameters?

Ping a Specific Port

Check if port is open or closed on a Linux server?

How to automate SSH login with password?

How do I tell Git for Windows where to find my private RSA key?

What's the default superuser username/password for postgres after a new install?

What port does SFTP use?

Command line to list users in a Windows Active Directory group?

What is a Pem file and how does it differ from other OpenSSL Generated Key File Formats?

How to determine if a bash variable is empty?