Postscreen sometimes stops the mail with 450 4.3.2 Service currently unavailable

postfix spam postscreen
6,699

Those error was appeared in your log because you have enabled deep protocol tests as documented in POSTSCREEN_README. Because postscreen isn't proxy, then it will become sort of greylisting when you defer client connection in first attempt. More info in these two mailing list thread, this one and this one.

  • If you don't know/understand what happened in deep protocol tests, don't enable it. Disable it via change these parameter in main.cf

    postscreen_bare_newline_enable = no
postscreen_non_smtp_command_enable = no
postscreen_pipelining_enable = no

  • If you want to enable it while whitelisting some client, take a look of parameter postscreen_access_list in this page. In short, add parameter postscreen_access_list in main.cf

    postscreen_access_list = cidr:/etc/postfix/postscreen_access.cidr

    Then in /etc/postfix/postscreen_access.cidr, define the acl

    # Rules are evaluated in the order as specified.
# Blacklist 192.168.* except 192.168.0.1.
192.168.0.1          permit
192.168.0.0/16       reject
Share:
6,699

Related videos on Youtube

drovak11
Author by

drovak11

Updated on September 18, 2022

Comments

  • drovak11
    drovak11 almost 2 years

    I have a problem with postfix sometimes, inconsistently rejecting client mails:

    Sep 15 09:24:07 mail postfix/postscreen[16209]: NOQUEUE: reject: RCPT from [x.x.x.x]:15037: 450 4.3.2 Service currently unavailable; from=<[email protected]>, to=<[email protected]>, proto=ESMTP, helo=<mail.external.com>
Sep 16 07:41:01 mail postfix/postscreen[16209]: NOQUEUE: reject: RCPT from [x.x.x.x]:13720: 450 4.3.2 Service currently unavailable; from=<[email protected]>, to=<[email protected]>, proto=ESMTP, helo=<mail.external.com>
Sep 16 09:08:22 mail postfix/postscreen[16209]: NOQUEUE: reject: RCPT from [x.x.x.x]:34719: 450 4.3.2 Service currently unavailable; from=<[email protected]>, to=<[email protected]>, proto=ESMTP, helo=<mail.external.com>

    This is a debian wheezy server running postfix 2.9.6-2. Looking at the performance graphs at the given time, neither the server, nor postfix had high load, so I doubt it rejected for that.

    Is there a way to reduce the load on this postscreen daemon, disable it or whitelist specific users so they can "pass through it"?

Recents

Why Is PNG file with Drop Shadow in Flutter Web App Grainy?
How to troubleshoot crashes detected by Google Play Store for Flutter app
Cupertino DateTime picker interfering with scroll behaviour
Why does awk -F work for most letters, but not for the letter "t"?
Flutter change focus color and icon color but not works
How to print and connect to printer using flutter desktop via usb?
Critical issues have been reported with the following SDK versions: com.google.android.gms:play-services-safetynet:17.0.0
Flutter Dart - get localized country name from country code
navigatorState is null when using pushNamed Navigation onGenerateRoutes of GetMaterialPage
Android Sdk manager not found- Flutter doctor error
Flutter Laravel Push Notification without using any third party like(firebase,onesignal..etc)
How to change the color of ElevatedButton when entering text in TextField

Related

Mail delivery failed for a message I didn't send
Use postfix and spamassassin packages on CentOS 6 to reject SPAM - without custom users and scripts
I can't send email from my server to gmail addresses
Multi-IP address zimbra server DNS PTR records and spam
smtpd_helo_restrictions = ..., reject_unknown_helo_hostname occasionally rejects mail I care about, how to handle?
Configure postfix with a threshold for reject_rbl_client
My mail server is sending a lot of spam using my domain
Setup policyd on Zimbra 8.8.x to rate limit the number of messages each account can send with smtp-auth
Spam passing postfix config "hostname does not resolve to address: No address associated with hostname"
Why is my Zimbra mail going into the spam folder of yahoo, hotmail etc.?