Re: a small explanation on rule FORGED_RCVD_HELO

Matt Kettler wrote:

> It looks for a HELO doesn't match against the reverse DNS for the IP
> address.

Please note the case of clients connected to the network via NAT and
using dynamic IP addresses. In the general case, such clients do not
known about the IP address to which one their local address is
translated using NAT. Such clients cannot set a correct HELO.

Claude