Product: GroupWise 7
Third Party Product: Guinevere 3.4 and/or SpamAssassin 3.23 for anti-spam
With open relays denied by default, I had problems with allowing internal servers relaying mail to our GroupWise Internet Agent. The GWIA logs would show parts of the conversation (the beginning and the end) with no errors, but mail was not getting through. This was discovered to be an issue with SpamAssassin. Our SpamAssassin happens to be integrated with Guinevere, though this solution should also work for a non-integrated SpamAssassin.
It seems like an odd message flow, but mail relayed to GWIA, be it an internal or external destination, comes in before going out. This makes it susceptible to spam scanning.
Because of the application that was doing the relaying, whitelisting was not an option since the sender and receiver could both vary. As a result, I had to create a custom rule that would allow me to specify the IP address of the sending server in SpamAssassin.
To do this, you will edit your local.cf file. In Guinevere, the default location is in the
header RULE_NAME Received=~ /\[serverIPaddr\]/
score RULE_NAME -99
describe RULE_NAME Allows relays from serverIPaddr
Of course, the ‘serverIPaddr’ part will be replaced with the IP address of the relaying server. Be sure to include the brackets and all other special characters shown. Also make sure that RULE_NAME is the same in all three places.
This rule will look in the Received= line of a header for the presence of the server’s IP address enclosed in braces. If it finds it, a value of -99 will be applied to the spam score for this email (standard for SA’s whitelisting).