Postfix

Postfix #

There are various ways to configure Postfix with Guardian Mail. The following is our preferred method.

Edit /etc/postfix/main.cf

Add the following in the “smtpd_recipient_restrictions” parameter. It should be placed after “reject_unauth_destination“.

smtpd_recipient_restrictions =
    ...
    reject_unauth_destination
    # Check rDNS in domain blacklist (optional)
    reject_rhsbl_client <APIKEY>.dblack.mail.abusix.zone
    # Check HELO/EHLO in domain blacklist (optional)
    reject_rhsbl_helo <APIKEY>.dblack.mail.abusix.zone
    # Check FROM domain in blacklist (optional)
    reject_rhsbl_sender <APIKEY>.dblack.mail.abusix.zone
    # Check connecting IP in whitelist (optional)
    # permit_dnswl_client entries should be placed before any reject directives
    # that want to skip, but should always be before any reject_rbl_client
    # entries to ensure that any IP listed on the whitelist not rejected.
    permit_dnswl_client <APIKEY>.white.mail.abusix.zone
    # Reject any IP listed in the blacklist
    reject_rbl_client <APIKEY>.combined.mail.abusix.zone

rbl_reply_maps = texthash:/etc/postfix/rbl_reply_map

Replace <APIKEY> with “Your API key” from your account in app.abusix.com.

Next, to prevent your API key from being leaked, create /etc/postfix/rbl_reply_map with the following:

<APIKEY>.combined.mail.abusix.zone        $rbl_code Service unavailable; $rbl_class [$rbl_what] blocked using Guardian Mail${rbl_reason?; $rbl_reason}
<APIKEY>.dblack.mail.abusix.zone        $rbl_code Service unavailable; $rbl_class [$rbl_what] blocked using Guardian Mail${rbl_reason?; $rbl_reason}

Replace <APIKEY> with “Your API key” from your account in app.abusix.com.

If you are using Postscreen, you can omit the “reject_rbl_client” entry and instead add:

postscreen_dnsbl_reply_map = texthash:/etc/postfix/postscreen_dnsbl_reply_map
postscreen_dnsbl_sites = <APIKEY>.combined.mail.abusix.zone

Replace <APIKEY> with “Your API key” from your account in app.abusix.com.

Then to prevent your API key from leaking, create /etc/postfix/postscreen_dnsbl_reply_map, which should contain the following:

<APIKEY>.combined.mail.abusix.zone                mail.abusix.zone

Replace <APIKEY> with “Your API key” from your account in app.abusix.com.

Then reload Postfix to activate this configuration.

Getting Started with Guardian Mail

Getting started with Guardian Ops

Setting up Guardian Ops

Helpful configurations

Create and manage your workflows

Integrate Guardian Ops with other systems

AbuseHQ FAQ

Blocklist Check Providers

Comparison Tool

XARF (Extended Abuse Reporting Format)

Abuse Contact DB

You received an Abusix Abuse Report

Guardian Intel

Blackhole MX

Getting Started with Abuse Management

Data Channels General

Data Channel use cases

How to submit data

Lookup and Delisting

Network Management

Getting Started with Abuse Reporting

Postfix

Postfix #

Guardian

Abusix’s Guardian platform is an all-inclusive suite of tools to enhance organizational security and compliance

Guardian Mail

Industry-leading real-time blocklists against email threats like spam, phishing, and malware.

Guardian Ops

Advanced SaaS tool to completely manage network abuse.

Guardian Intel

The leader in cutting-edge threat intelligence to prevent attacks.

Email Security

Industry-leading real-time blocklists against email threats like spam, phishing, and malware

Network Abuse Management

Advanced SaaS tool to completely manage network abuse

Threat Intelligence

The leader in cutting-edge threat intelligence to prevent attacks

Global Reporting

A free abuse reporting service that aims to create a global network security ecosystem

Telecommunications and Internet Service Providers (ISPs)

Protect your infrastructure from network abuse.

Mailbox Hosting and Email Service Providers (ESPs)

Block spam, phishing, ransomware, and business email compromise (BEC).

Data Centers and Cloud Service Providers

Manage your network in compliance with regulations.

Executives (CISO, CIO, CTO)

Improve your security investments with high ROI tools.

Abuse Desk & Security Analysts

Reduce false positives and automate your alert responses.

Email Administrators and Postmasters

Block spam and malicious emails while ensuring valid email deliverability.

Systems Administrators and IT Support

Manage your IT resources effectively to ensure optimal performance.

Company

Discover who we are and what we do

Why Abusix?

What sets us apart

Careers

Join a team of innovators

Contact Us

Connect with us today

Customer Success Stories

Real-world examples of how Abusix helps customers

Data Sheets

Technical overviews of Abusix products and services

Press Releases

Latest company news and announcements

Webinars

Watch past sessions and learn from Abusix experts

Abuse Reporting

Learn how to submit and manage abuse reports effectively

Portal

Manage your Abusix services and account all in one place

AbuseHQ (Legacy)

Access documentation for the previous AbuseHQ solution

Guardian Ops

Protect your infrastructure with our operational security platform

Guardian Mail

Block spam, phishing, ransomware, and email-based threats

Guardian Intel

Unique threat data you won’t find anywhere else

Abuse Contact Database

Report network abuse directly

Threat Intel Lookup

Free tool at your fingertips

Blackhole MX

Free tool to combat spam and abuse

XARF

Reporting used to stop network attacks

Postfix

Postfix #