Спасибо за подсказки.
Изменил слегка конфиг. Добавил в фаил access ip-адреса нужных хостов (postmap запустил)
Всё равно режет.
#>cat maillog
...
Sep 18 11:32:59 rosserv postfix/smtpd[26488]: connect from domain.ru[xxx.xxx.xxx.xxx]
Sep 18 11:33:05 rosserv postfix/smtpd[26488]: NOQUEUE: reject: CONNECT from domain.ru[xxx.xxx.xxx.xxx]: 554 Service unavailable; Client host [xxx.xxx.xxx.xxx] blocked using sbl.spamhaus.org; http://www.spamhaus.org/SBL/sbl.lasso?query=xxxxxxx; proto=SMTP
Sep 18 11:33:13 rosserv postfix/smtpd[26488]: disconnect from domain.ru[xxx.xxx.xxx.xxx]
...
По идее после выполнения правила в группе письмо больше не обрабатывается.
Почему может не работать?
#>cat main.cf
...
smtpd_helo_required = yes
smtpd_delay_reject=no
# 1
smtpd_client_restrictions =
check_sender_access hash:/usr/local/etc/postfix/maps/access,
reject_rhsbl_client blackhole.securitysage.com,
reject_rbl_client relays.ordb.org,
reject_rbl_client blackholes.easynet.nl,
reject_rbl_client cbl.abuseat.org,
reject_rbl_client proxies.blackholes.wirehub.net,
reject_rbl_client bl.spamcop.net,
reject_rbl_client sbl.spamhaus.org,
reject_rbl_client opm.blitzed.org,
reject_rbl_client dnsbl.njabl.org,
reject_rbl_client list.dsbl.org,
reject_rbl_client multihop.dsbl.org
# 2
smtpd_helo_restrictions = check_helo_access hash:/usr/local/etc/postfix/maps/access,
reject_invalid_hostname
# 4
smtpd_sender_restrictions =
reject_non_fqdn_sender,
reject_unknown_sender_domain,
reject_rhsbl_sender blackhole.securitysage.com
# 5
smtpd_recipient_restrictions =
permit_sasl_authenticated,
permit_mynetworks,
reject_unauth_destination,
reject_non_fqdn_recipient,
reject_unknown_recipient_domain
# 6
smtpd_data_restrictions = reject_unauth_pipelining
...