I would like to refuse all connections that do not have a valid reverse DNS. I found this.

defer message = DNS reverse entry lookup failed for $sender_host_address
condition = ${if eq{$host_lookup_deferred}{1} {1}{0}}
deny message = inconsistent or no DNS reverse entry for $sender_host_address
condition = ${if eq{$host_lookup_failed}{1} {1}{0}}

Problem is it blocks even my own users when there trying to relay. Anyone know how to tell it to ignore auth_relay_hosts and relay_hosts?

Matt

Have your local users connect with port 587 to send email. That should whitelist them automatically.

You might want to rethink what you're doing; you're going to block a lot of legitimate email.

Jeff