Kevin, > > We have users who use the Postfix/Amavis server to send out all their > > emails - so they use it as their SMTP server. (obviously after > > authentication). > > > > What is the easiest way to ensure that all outgoing mail is allowed to > > go out?
Sahil Tandon <[email protected]> writes: > Route authenticated users to a less suspicious policy bank (i.e. one that > does not conduct spam and/or virus checks). See the documentation for > examples. Right. Something like: $inet_socket_port = [10024,10026]; $interface_policy{'10026'} = 'ORIGINATING'; $policy_bank{'ORIGINATING'} = { originating => 1, bypass_decode_parts => 1, bypass_header_checks_maps => [1], bypass_virus_checks_maps => [1], bypass_spam_checks_maps => [1], bypass_banned_checks_maps => [1], }; Then configure Postfix to feed mail from local networks or authenticated users to a content filter at port 10026, and everything else to port 10024. There are several possibilities on how to do that. The cleanest and easiest is if you have a dedicated mailer for mail submission (it can be just and extra smtpd Postfix service bound to a dedicated IP address alias, or a separate MTA instance). Here is a more classical approach with a single MTA instance. The complication arises if you have authenticated roaming clients. Dealing with submission restricted to local networks is much more straightforward, policy bank MYNETS would suffice. /etc/postfix/main.cf: content_filter = amavisfeed:[127.0.0.1]:10024 smtpd_sender_restrictions = check_sender_access pcre:/etc/postfix/tag_as_originating.pcre permit_mynetworks permit_sasl_authenticated check_sender_access pcre:/etc/postfix/tag_as_inbound.pcre /etc/postfix/tag_as_originating.pcre : /^/ FILTER amavisfeed:[127.0.0.1]:10026 /etc/postfix/tag_as_inbound.pcre : /^/ FILTER amavisfeed:[127.0.0.1]:10024 Mark ------------------------------------------------------------------------------ Come build with us! The BlackBerry® Developer Conference in SF, CA is the only developer event you need to attend this year. Jumpstart your developing skills, take BlackBerry mobile applications to market and stay ahead of the curve. Join us from November 9-12, 2009. Register now! http://p.sf.net/sfu/devconf _______________________________________________ AMaViS-user mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/amavis-user AMaViS-FAQ:http://www.amavis.org/amavis-faq.php3 AMaViS-HowTos:http://www.amavis.org/howto/
