Configure Postfix for DNS Blackhole Lists such as dsbl.org / spamhaus.org database
Q. How do I configure my Postfix mail server to scan incoming mail for spam using DNS Blackhole List such as:
a) The Spamhaus
b) Open Relay Database etc
A. To discard spam or garbage email you can use 3rd party services such as Spamhaus. These are realtime database of IP addresses of verified spam sources and spam operations (including spammers, spam gangs and spam support services), maintained by the Spamhaus or other project team and supplied as a free service to help email administrators better manage incoming email streams.
Postfix MTA DNS Blackhole Lists Configuration
Under Postfix mail server you need to define DNSRBLs in main.cf file using the smtpd_recipient_restrictions configuration directive. Open main.cf file:
# vi /etc/postfix/main.cf
Locate smtpd_recipient_restrictions line and setup reject_rbl_client as follows:
smtpd_recipient_restrictions = .... ..... reject_rbl_client list.dsbl.org, reject_rbl_client sbl-xbl.spamhaus.org, reject_rbl_client cbl.abuseat.org, reject_rbl_client dul.dnsbl.sorbs.net, .... permit
Here is my complete configuration:
smtpd_recipient_restrictions = reject_invalid_hostname, reject_non_fqdn_hostname, reject_non_fqdn_sender, reject_non_fqdn_recipient, reject_unknown_sender_domain, reject_unknown_recipient_domain, reject_unauth_destination, permit_mynetworks, reject_rbl_client list.dsbl.org, reject_rbl_client sbl-xbl.spamhaus.org, reject_rbl_client cbl.abuseat.org, reject_rbl_client dul.dnsbl.sorbs.net, permit
Save and close the file. Restart / reload postfix mail server:
# /etc/init.d/postfix restart
Subscribe to our free e-mail newsletter or RSS feed to get all updates.
You can Email this page to a friend.
Related Other Helpful FAQs:
- Bind Postfix Mail Server To Localhost or Specific IP Address Only
- Howto: Linux Dovecot Secure IMAPS / POP3S SSL Server configuration
- Postfix block PDF or ZIP files attachments
- Postfix setup catch-all email accounts using /etc/postfix/virtual
- Postfix blacklist or reject an email address
Discussion on This FAQ
Leave a Reply
We encourage your comments, and suggestions. But please stay on topic, be polite, and avoid spam. Thank you very much for stopping by our site!
Tags: blackhole, cf, configuration_directive, incoming_email, incoming_mail, ip_addresses, mail_server, mta, open_relay_database, postfix, realtime_database, spamhaus, spam_sources, spam_support_services, stop_spam_with_dns_blacklist
October 23rd, 2007 at 3:37 pm
plz. can any one tell me how to configure pop3 and smtp base mail server step by step i am new to it.
March 6th, 2008 at 10:08 am
A little late, but in case you haven’t switched
to exchange already:
http://www.workaround.org
Really nice mailserver setup.
A little late I know, but in case others find this post and wondering the same.