Just after we implemented spam filtering on our Postfix server using spamassassin-dqs through amavisd-new we drastically reduced received spam, but to our surprise our own outgoing e-mails are being blocked as well. Our server runs on a AWS EC2 instance, so I suppose our office's ISP IP Block might be on some of Spamhaus blocklists and when spamassassin sees it is comming from there it blocks our own e-mails from being sent.
Is there a way to whitelist our own e-mail senders (they are being authenticated through SASL) so only them are not subjected to spamassassin filtering?
Down here is an example taken from /var/log/mail.log when I just tried to send an e-mail. See an Anonymous TLS connection is stablished to our server, but from "unkonwn" (I supposed a SASL authenticated user would not be 'unknown', but I don't fully understand that...). Any ideas?
Jan 25 19:31:06 helpocorp postfix/submission/smtpd[1954]: Anonymous TLS connection established from unknown[187.20.170.32]: TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits)
Jan 25 19:31:07 helpocorp postfix/submission/smtpd[1954]: NOQUEUE: reject: RCPT from unknown[187.20.170.32]: 554 5.7.1 Service unavailable; Client host [187.20.170.32] blocked using zen.spamhaus.org; https://www.spamhaus.org/query/ip/187.20.170.32; from=<[email protected]> to=<[email protected]> proto=ESMTP helo=<[192.168.10.10]>
Jan 25 19:31:07 helpocorp postfix/submission/smtpd[1954]: lost connection after RCPT from unknown[187.20.170.32]
Jan 25 19:31:07 helpocorp postfix/submission/smtpd[1954]: disconnect from unknown[187.20.170.32] ehlo=2 starttls=1 auth=1 mail=1 rcpt=0/1 commands=5/6
