From owner-freebsd-pf@FreeBSD.ORG Mon Nov 6 03:23:47 2006 Return-Path: X-Original-To: freebsd-pf@freebsd.org Delivered-To: freebsd-pf@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 2A85D16A412 for ; Mon, 6 Nov 2006 03:23:47 +0000 (UTC) (envelope-from dan@langille.org) Received: from m21.unixathome.org (m21.unixathome.org [205.150.199.217]) by mx1.FreeBSD.org (Postfix) with ESMTP id BE85743D49 for ; Mon, 6 Nov 2006 03:23:46 +0000 (GMT) (envelope-from dan@langille.org) Received: from localhost (localhost [205.150.199.217]) by m21.unixathome.org (Postfix) with ESMTP id 2B6A7BF85; Sun, 5 Nov 2006 22:23:57 -0500 (EST) Received: from m21.unixathome.org ([205.150.199.217]) by localhost (m21.unixathome.org [205.150.199.217]) (amavisd-new, port 10024) with ESMTP id 09673-06; Sun, 5 Nov 2006 22:23:51 -0500 (EST) Received: from bast.unixathome.org (bast.unixathome.org [70.26.229.230]) by m21.unixathome.org (Postfix) with ESMTP id C301DBF16; Sun, 5 Nov 2006 22:23:51 -0500 (EST) Received: from [10.55.0.99] (wocker.unixathome.org [10.55.0.99]) by bast.unixathome.org (Postfix) with ESMTP id 75A2DB857; Sun, 5 Nov 2006 22:23:40 -0500 (EST) From: "Dan Langille" To: LI Xin Date: Sun, 05 Nov 2006 22:23:40 -0500 MIME-Version: 1.0 Message-ID: <454E646C.31658.319E3BBA@dan.langille.org> Priority: normal In-reply-to: <454E8C2A.8090301@delphij.net> References: <454E307D.9351.30D3616E@dan.langille.org> X-mailer: Pegasus Mail for Windows (4.31) Content-type: text/plain; charset=US-ASCII Content-transfer-encoding: 7BIT Content-description: Mail message body X-Virus-Scanned: by amavisd-new-20030616-p10 (Debian) at unixathome.org Cc: freebsd-pf@freebsd.org Subject: Re: whitelists clients still being greylisted X-BeenThere: freebsd-pf@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Technical discussion and general questions about packet filter \(pf\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 06 Nov 2006 03:23:47 -0000 On 6 Nov 2006 at 9:13, LI Xin wrote: > Dan Langille wrote: > > Hi folks, > > > > I'm setting up spamd with pf, and I'm finding that whitelisted IP > > addresses are still being greylisted. For example: > > Er? Have you mounted fdescfs as /dev/fd? I think this should be > documented. Hmmm, this is interesting... it is still greylisting that client. My rules look right: # pfctl -s nat No ALTQ support in kernel ALTQ related functions disabled rdr pass inet proto tcp from to 64.147.113.42 port = smtp -> 127.0.0.1 port 25 rdr pass inet proto tcp from to 64.147.113.42 port = smtp -> 127.0.0.1 port 8025 rdr pass inet proto tcp from ! to 64.147.113.42 port = smtp -> 127.0.0.1 port 8025 # host 64.147.113.42 42.113.147.64.in-addr.arpa domain name pointer nyi.example.org. # pfctl -t spamd-white -T show No ALTQ support in kernel ALTQ related functions disabled 12.152.184.25 66.35.250.206 205.150.199.217 216.136.204.119 # pfctl -t spamd-white -T show | grep 205.150.199.217 No ALTQ support in kernel ALTQ related functions disabled 205.150.199.217 # host m21 m21.example.org has address 205.150.199.217 # So why does m21 continue to be greylisted? For those wondering, I've changed the domain name to example, the rest is real. -- Dan Langille : Software Developer looking for work my resume: http://www.freebsddiary.org/dan_langille.php