This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Sender verify callout (4.107)

Greetings Astarians,

I've created a network group named "blacklist" which contains hosts which have repeatedly failed exim callouts. This "blacklist" gets a packet filter rule which says Log Reject. However, I see exim is still giving me the message "Sender verify callout did not complete"

Does the SMTP Proxy have priorty over packet filtering?

What I'm trying to achieve here is to keep known spam sources from making ANY connection whatsoever to my network.

Cheers,
-zeek

This thread was automatically locked due to age.

0 Moby over 22 years ago

Yes, SMTP proxy is enabled for all source addresses and this is checked before the packet filter.  There was a post about a month ago from someone trying to restrict access to the SMTP proxy, but I do not remember if anyone knew how to block individual access.

I believe someone mentioned making a change to the iptables config (although I'm not sure how the firewall would react if you ever tried to disable or re-enable the SMTP proxy from WebAdmin), or as an alternative try to figure out how to change the exim configs to deny particular addresses.

Sorry I don't have a better answer for you.
Cancel
Vote Up 0 Vote Down

Cancel
0 zeek over 22 years ago in reply to Moby

Thanks again Moby. This is what I thought...

It would be really nice to block networks and ipaddrs from the SMTP proxy though --in addition to using RBL.

Cheers,
-zeek
Cancel
Vote Up 0 Vote Down

Cancel