My ldap lookups in Postfix are single IP because I haven't figured out a
way to do CIDR lookups. So, my I use cidr:/path/to/access/list also in
postfix for complete subnets...
mx1# cat relay_clients
x.x.x.x/29 OK
<snip>
>From main.cf:
smtpd_recipient_restrictions =
permit_sasl_authenticated, permit_mynetworks,
check_client_access cidr:/usr/local/etc/postfix/relay_clients,
check_client_access ldap:/usr/local/etc/postfix/ldap/relay_clients.cf,
<snip>
mx1# cat ldap/relay_clients.cf
bind = no
server_host = ldapi:///
version = 3
search_base = ou=Servers,dc=webtent,dc=net
query_filter = (&(ipHostNumber=%s)(objectClass=ipHost))
result_attribute = ipHostNumber
result_format = OK
This works great for allowing ldap entries as shown and CIDR networks
from file to relay, but can I use either or both of these same files in
amavisd.conf to set mynetworks for MYNETS policy? Do I just add this to
my amavisd.conf file?
@mynetworks_maps = (read_hash('/usr/local/etc/postfix/relay_clients'), [EMAIL
PROTECTED]);
Will my postfix file with the 'OK' parameter work or I have to create a
second file with only the CIDR notations?
As far as LDAP lookups for policies, I don't see an example in the
README.ldap specifically for mynetworks. I am currently using
amavisd-maia based on amavisd-new 2.2 and @lookup_sql_dsn for SQL
lookups.
--
Robert
-------------------------------------------------------------------------
This SF.net email is sponsored by: Microsoft
Defy all challenges. Microsoft(R) Visual Studio 2008.
http://clk.atdmt.com/MRT/go/vse0120000070mrt/direct/01/
_______________________________________________
AMaViS-user mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/amavis-user
AMaViS-FAQ:http://www.amavis.org/amavis-faq.php3
AMaViS-HowTos:http://www.amavis.org/howto/
