Hello milter-greylist gurus,
not sure where I do mistake or how correctly solve this issue.
My /var/log/maillog logs is filled with lines as:
"milter-greylist: GeoIP failed to lookup ip '192.168.1.123'"
messages for outgoing mails.
My LAN is 192.168.1.0/24, milter-greylist-4.2.7-1600.fc16.i686 (from
Fedora 16 i686 distro, with GeoIP support) with sendmail-8.14.5.
Relevant part of my "/etc/mail/greylist.conf" is:
...
list "my network" addr { 127.0.0.1/8 192.168.1.0/24 }
list "broken mta" addr { \
12.5.136.141/32 \ # Southwest Airlines (unique sender)
...
217.158.50.178/32 \ # AXKit mailing list (unique sender)
}
list "okgeoip" geoip { "CZ" "SK" }
list "maillisty" from { /@.*kernel\.org/ /@.*fedoraproject\.org/ }
...
racl whitelist list "my network"
racl whitelist list "broken mta"
racl whitelist list "maillisty"
racl whitelist spf pass
racl greylist not list "okgeoip"
...
racl whitelist default
...
Same result I will get when if instead of
"racl whitelist list "my network"" I specify
racl whitelist addr 127.0.0.1/8
racl whitelist addr 192.168.1.0/24
With 'Milter.LogLevel=22' maillog shows:
...
May 27 00:00:05 ns sendmail[1234]: q4QM05J5001234: Milter (greylist): init
success to negotiate
May 27 00:00:05 ns sendmail[1234]: q4QM05J5001234: Milter: connect to filters
May 27 00:00:05 ns milter-greylist: GeoIP failed to lookup ip '192.168.1.223'
May 27 00:00:05 ns sendmail[1234]: q4QM05J5001234: milter=greylist,
action=connect, continue
May 27 00:00:05 ns sendmail[1234]: q4QM05J5001234: milter=greylist,
action=helo, continue
May 27 00:00:05 ns sendmail[1234]: STARTTLS=server, relay=ws223.hanzlici.cz
[192.168.1.223], version=TLSv1/SSLv3, verify=NO, cipher=DHE-RSA-AES256-SHA,
bits=256/256
May 27 00:00:05 ns sendmail[1234]: q4QM05J6001234: milter=greylist,
action=helo, continue
May 27 00:00:05 ns sendmail[1234]: q4QM05J6001234: Milter: sender:
<apache@...>
May 27 00:00:05 ns sendmail[1234]: q4QM05J6001234: milter=greylist,
action=mail, continue
May 27 00:00:05 ns sendmail[1234]: q4QM05J6001234: Milter: rcpts:
<sysreport@...>
May 27 00:00:05 ns milter-greylist: q4QM05J6001234: skipping greylist
because address 192.168.1.223 is whitelisted, (from=<apache@...>,
rcpt=<sysreport@...>,
addr=ws223.hanzlici.cz[192.168.1.223]) ACL 173
May 27 00:00:05 ns sendmail[1234]: q4QM05J6001234: milter=greylist,
action=rcpt, continue
May 27 00:00:05 ns sendmail[1234]: q4QM05J6001234: from=<apache@...>,
size=1095, class=0, nrcpts=1,
msgid=<201205262200.q4QM02f6022246@...>, proto=ESMTP,
daemon=MTA, relay=ws223.hanzlici.cz [192.168.1.223]
May 27 00:00:05 ns sendmail[1234]: q4QM05J6001234: Milter (greylist):
headers, send
May 27 00:00:05 ns sendmail[1234]: q4QM05J6001234: milter=greylist,
action=header, continue
May 27 00:00:05 ns sendmail[1234]: q4QM05J6001234: milter=greylist,
action=header, continue
May 27 00:00:05 ns sendmail[1234]: q4QM05J6001234: milter=greylist,
action=header, continue
May 27 00:00:05 ns sendmail[1234]: q4QM05J6001234: milter=greylist,
action=header, continue
May 27 00:00:05 ns sendmail[1234]: q4QM05J6001234: milter=greylist,
action=header, continue
May 27 00:00:05 ns sendmail[1234]: q4QM05J6001234: milter=greylist,
action=header, continue
May 27 00:00:05 ns sendmail[1234]: q4QM05J6001234: milter=greylist,
action=header, continue
May 27 00:00:05 ns sendmail[1234]: q4QM05J6001234: milter=greylist,
action=header, continue
May 27 00:00:05 ns sendmail[1234]: q4QM05J6001234: milter=greylist,
action=header, continue
May 27 00:00:05 ns sendmail[1234]: q4QM05J6001234: milter=greylist,
action=header, continue
May 27 00:00:05 ns sendmail[1234]: q4QM05J6001234: milter=greylist,
action=header, continue
May 27 00:00:05 ns sendmail[1234]: q4QM05J6001234: milter=greylist,
action=header, continue
May 27 00:00:05 ns sendmail[1234]: q4QM05J6001234: milter=greylist,
action=header, continue
May 27 00:00:05 ns sendmail[1234]: q4QM05J6001234: milter=greylist,
action=header, continue
May 27 00:00:05 ns sendmail[1234]: q4QM05J6001234: milter=greylist,
action=header, continue
May 27 00:00:05 ns sendmail[1234]: q4QM05J6001234: Milter (greylist):
headers, sent
May 27 00:00:05 ns sendmail[1234]: q4QM05J6001234: milter=greylist,
action=eoh, continue
May 27 00:00:05 ns sendmail[1234]: q4QM05J6001234: Milter (greylist): body,
send
May 27 00:00:05 ns sendmail[1234]: q4QM05J6001234: milter=greylist,
action=body, continue
May 27 00:00:05 ns sendmail[1234]: q4QM05J6001234: Milter (greylist): body,
sent
May 27 00:00:05 ns sendmail[1234]: q4QM05J6001234: Milter add: header:
X-Greylist: Sender IP whitelisted, not delayed by milter-greylist-4.2.7
(hanzlici.cz [90.179.170.17]);
Sun, 27 May 2012 00:00:05 +0200 (CEST)
May 27 00:00:05 ns sendmail[1234]: q4QM05J6001234: Milter accept: message
May 27 00:00:05 ns sendmail[1234]: q4QM05J7001234: Milter (greylist): quit
filter
May 27 00:00:05 ns sendmail[1239]: q4QM05J6001234:
to=<sysreport@...>, delay=00:00:00, xdelay=00:00:00, mailer=local,
pri=31489, dsn=2.0.0, stat=Sent
...
Should milter-greylist search in GeoIP DB for local addresses, when
there is earlier access-list entry "racl whitelist list "my network""
(or "racl whitelist addr 192.168.1.0/24") which match for these local
private addresses? IMO this is solved at CONNECT phase in both cases
("racl XX addr" and "racl XX geoip").
Or I must add my local private addresses to GeoIP database (with some
of my allowed country code)?
Or I did any mistake which I not see?
Thanks in advance, Franta HanzlikMessage
GeoIP failed to lookup ip 'PRIVATE_IP'
2012-06-13 by Frantisek Hanzlik