Martin Schiøtz wrote:
> On 5/10/07, Jeremy Laidman <[EMAIL PROTECTED]> wrote:
>
>> Martin Schiøtz wrote:
>>
>>
>>> Is it possible with postfix only to send incoming mails to amavisd-new
>>> and outgoing mails without configuring two ip-addresses on the server?
>>>
>> I think you're asking if outbound mails can bypass amavis.
>>
>> Yes you can. Assuming second postfix is listening on localhost port 10025,
>> and your inside network is 192.168.1.*:
>>
>> main.cf:
>> smtpd_client_restrictons =
>> check_client_access hash:$config_directory/client_access
>>
>> client_access:
>> 192.168.1 FILTER smtp:[127.0.0.1]:10025
>>
>> The client_access FILTER overrides the content_filter setting in main.cf for
>> any matching client IP addresses.
>>
>> But note that if you have @mynetworks set correctly in amavis.conf, you can
>> create a policy bank called MYNETS that behaves differently for outbound
>> mail,
>> such as bypassing spam checks. That way you don't need any bypass for
>> outbound mail.
>>
>>
>>> If this is possible can I then use the
>>> 'lmtp_send_xforward_command=yes' functionality or similar for outgoing
>>> mails (pen pals functionality with amavisd-new)?
>>>
>> You can't use penpals unless all mail travels through amavis in both
>> directions.
>>
>> Cheers
>> Jeremy
>>
>>
>
> Thank you - that was what I was asking.
>
it is recommended to pass outbound mail through a virus checker. one way
to do this is to tell amavisd-new to listen on two ports (10024 and
10586 for instance) and use
... FILTER amavis:[127.0.0.1]:10586
for outbound mail (mynetworks and if user was authenticated):
smtpd_recipient_restrictions =
...
check_client_access pcre:/etc/postfix/filter_outbound
permit_mynetworks
permit_sasl_authenticated
check_client_access pcre:/etc/postfix/filter_inbound
reject_unauth_destination
..
filter_outbound:
/./ FILTER amavis:[1027.0.0.1]:10586
filter_inbound:
/./ FILTER amavis:[127.0.0.1]:10024
then configure policy banks in amavisd-new to only run the virus filter
for mail received on port 10586 (there are few examples in the docs, on
amavisd-new site).
-------------------------------------------------------------------------
This SF.net email is sponsored by DB2 Express
Download DB2 Express C - the FREE version of DB2 express and take
control of your XML. No limits. Just data. Click to get it now.
http://sourceforge.net/powerbar/db2/
_______________________________________________
AMaViS-user mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/amavis-user
AMaViS-FAQ:http://www.amavis.org/amavis-faq.php3
AMaViS-HowTos:http://www.amavis.org/howto/
