Mail from root.brezen.example.net is rejected. root's mail should not be masked since it will be sorted by sieve depending on the originating host.
Is /etc/aliases ignored when ldap is in use?
Header from offending mail
Return-Path: <r...@brezen.example.net>
Received: by brezen.example.net (Postfix, from userid 0)
id 0AB262D0008A; Sat, 23 Dec 2023 11:15:21 +0100 (CET)
Subject: SMART error (ErrorCount) detected on host: brezen
To: r...@example.net
User-Agent: mail (GNU Mailutils 3.15)
Date: Sat, 23 Dec 2023 11:15:21 +0100
Message-Id: <20231223101529.0ab262d00...@brezen.example.net>
From: root <r...@brezen.example.net>
MIME-Version: 1.0
Received: by brezen.example.net (Postfix, from userid 0)
id 0AB262D0008A; Sat, 23 Dec 2023 11:15:21 +0100 (CET)
Subject: SMART error (ErrorCount) detected on host: brezen
To: r...@example.net
User-Agent: mail (GNU Mailutils 3.15)
Date: Sat, 23 Dec 2023 11:15:21 +0100
Message-Id: <20231223101529.0ab262d00...@brezen.example.net>
From: root <r...@brezen.example.net>
MIME-Version: 1.0
excerpt from the error mail:
<r...@example.net> (expanded from <root>): host
creampuff.example.net[fd00::11] said: 550 5.1.1
<r...@example.net>: Recipient address rejected: User unknown in
virtual mailbox table (in reply to RCPT TO command)
creampuff.example.net[fd00::11] said: 550 5.1.1
<r...@example.net>: Recipient address rejected: User unknown in
virtual mailbox table (in reply to RCPT TO command)
excerpt from /etc/aliases
# Person who should get root's mail
root: fed...@example.net
root: fed...@example.net
# cat main.cf
alias_maps = hash:/etc/aliases
compatibility_level = 3.6
delay_warning_time = 24h
disable_vrfy_command = yes
masquerade_domains = $mydomain
masquerade_exceptions = root
message_size_limit = 33554432
milter_default_action = accept
mydestination = $myhostname creampuff creampuff.example.net brezen.example.net
myhostname = mail.example.net
mynetworks = 127.0.0.0/8 10.0.0.0/24 [::1]/128 [fd00::]/16 [fe80::]/16
relayhost = [host.mail-provider.com]:465
smtp_header_checks = pcre:/etc/postfix/smtp_header_checks
smtp_sasl_auth_enable = yes
smtp_sasl_password_maps = hash:/etc/postfix/sasl/password
smtp_sasl_security_options = noanonymous
smtpd_tls_CAfile = /etc/ssl/certs/example+CA.crt
smtpd_tls_CApath = /etc/ssl/certs
smtp_tls_security_level = encrypt
smtp_tls_wrappermode = yes
smtp_use_tls = yes
smtpd_milters = inet:localhost:11332
smtpd_sasl_auth_enable = yes
smtpd_sasl_path = private/auth
smtpd_sasl_type = dovecot
smtpd_soft_error_limit = 10
smtpd_tls_cert_file = /etc/ssl/certs/creampuff.crt
smtpd_tls_key_file = /etc/ssl/private/creampuff.key
smtpd_tls_mandatory_protocols = !SSLv2 !SSLv3 !TLSv1 !TLSv1.1 !TLSv1.2
smtpd_tls_security_level = may
tls_preempt_cipherlist = yes
tls_ssl_options = NO_RENEGOTIATION
transport_maps = hash:/etc/postfix/transport
unknown_local_recipient_reject_code = 550
virtual_alias_maps = ldap:/etc/postfix/ldap/virtual-alias-maps.cf
virtual_mailbox_domains = $mydomain
virtual_mailbox_maps = ldap:/etc/postfix/ldap/virtual-mailbox-maps.cf
virtual_transport = lmtp:unix:private/dovecot-lmtp
_______________________________________________ Postfix-users mailing list -- postfix-users@postfix.org To unsubscribe send an email to postfix-users-le...@postfix.org
