1

Topic: Too many Banned IPs

==== REQUIRED BASIC INFO OF YOUR IREDMAIL SERVER ====
- iRedMail version (check /etc/iredmail-release):  1.3.1
- Deployed with iRedMail Easy or the downloadable installer? Installer
- Linux/BSD distribution name and version: Ubuntu 20 LTS
- Store mail accounts in which backend (LDAP/MySQL/PGSQL):  MariaDB
- Web server (Apache or Nginx): Nginx
- Manage mail accounts with iRedAdmin-Pro? yes
- [IMPORTANT] Related original log or error message is required if you're experiencing an issue.
====

Too many legitimate emails are being banned in the IP banned list. They all have similar issues as below. How can I minimize this type of banning?

Oct 14 17:30:13 email postfix/smtpd[33259]: NOQUEUE: reject: RCPT from marketing.emiratesnbd.com[194.170.8.84]: 450 4.7.1 <DRSMTPGW.emiratesnbd.com>: Helo command rejected: Host not found; from=<ksapersonalbanking@emiratesnbd.com> to=<$$$$$$@acexpos.com> proto=ESMTP helo=<DRSMTPGW.emiratesnbd.com>
Oct 14 17:31:15 email postfix/smtpd[33259]: NOQUEUE: reject: RCPT from marketing.emiratesnbd.com[194.170.8.84]: 450 4.7.1 <DRSMTPGW.emiratesnbd.com>: Helo command rejected: Host not found; from=<ksapersonalbanking@emiratesnbd.com> to=<$$$$$$@acexpos.com> proto=ESMTP helo=<DRSMTPGW.emiratesnbd.com>
Oct 14 17:33:36 email postfix/smtpd[33259]: NOQUEUE: reject: RCPT from marketing.emiratesnbd.com[194.170.8.84]: 450 4.7.1 <DRSMTPGW.emiratesnbd.com>: Helo command rejected: Host not found; from=<ksapersonalbanking@emiratesnbd.com> to=<$$$$$$@acexpos.com> proto=ESMTP helo=<DRSMTPGW.emiratesnbd.com>
Oct 14 17:40:38 email postfix/smtpd[33259]: NOQUEUE: reject: RCPT from marketing.emiratesnbd.com[194.170.8.84]: 450 4.7.1 <DRSMTPGW.emiratesnbd.com>: Helo command rejected: Host not found; from=<ksapersonalbanking@emiratesnbd.com> to=<$$$$$$@acexpos.com> proto=ESMTP helo=<DRSMTPGW.emiratesnbd.com>
Oct 14 18:01:47 email postfix/smtpd[43607]: NOQUEUE: reject: RCPT from marketing.emiratesnbd.com[194.170.8.84]: 450 4.7.1 <DRSMTPGW.emiratesnbd.com>: Helo command rejected: Host not found; from=<ksapersonalbanking@emiratesnbd.com> to=<$$$$$$@acexpos.com> proto=ESMTP helo=<DRSMTPGW.emiratesnbd.com>

----

Spider Email Archiver: On-Premises, lightweight email archiving software developed by iRedMail team. Supports Amazon S3 compatible storage and custom branding.

2

Re: Too many Banned IPs

Whitelist them in /etc/postfix/helo_access.pcre like this:

/\.emiratesnbd\.com$/ OK

3

Re: Too many Banned IPs

Thank you, ill give it a shot.
So what does the whitelisting in the admin control panel do?

4

Re: Too many Banned IPs

There're different services or SMTP states, hence there're different whitelists.
Your issue occurs in HELO smtp state, it reads /etc/postfix/helo_access.pcre for whitelists (and blacklists too).

5

Re: Too many Banned IPs

Thank you for that it seems to be working.