roehling
commented
1 year ago Off the top of my head, the fact that the SRS MTA treats srsdomain.tld as a relay domain looks fishy. If I understand your setup correctly, one of two things should happen for any mail addressed to that domain:
- The recipient is a valid SRS alias, PostSRSd rewrites it to the actual destination, and the SRS MTA relays it to your antispam system.
- The recipient is not a valid SRS alias, PostSRSd will not touch it, and the SRS MTA should either deliver it locally (if it is addressed to a valid local mailbox) or reject it.
What definitely should not happen is that the SRS MTA relays emails for srsdomain.tld which it cannot deliver locally.
Hi,
I'm using postsrsd since some years now on several MTAs, but today I had a strange behavior (the daemon is configured as documented btw.). This is how an incoming email is being processed:
Today a spam email found its way trough the antispam system, targeting a non-existing alias of the used SRS domain (which should bounce, actually). Now this happened:
Then this loops endless from point 3. Usually I assumed if the recipient email alias wasn't found at the SRS MTA, the email should be bounced here (this is how it is configured and it works with non-SRS domains). But instead the sender is being rewritten, if required, and the email is being sent again - so Postfix stops the processing at that point, and there is no local recipient alias validation using the virtual maps anymore.
Now I try to find a way to fix that problem... Do you have any idea what could be wrong, why that nasty loop happens?