On Fri, 12 Oct 2001, Aldo Calpini wrote: > hello, > > I have some problems regarding STMP relay settings. > what I would like my SMTP to do is this: > > - deny sending from an email address that is not local > (eg. allow only local domain users to send mail) > (eg. do not allow relay) > > - allow relaying from my local IP addresses > > the setup I've done is this: > > - in SMTPRELAY.TAB, I've added my own network C > class IP addresses (so that I can relay only locally). > > - in SERVER.TAB I have the following lines: > "DefaultSmtpPerms" "MV" > "CheckMailerDomain" "1" > "SMTP-RDNSCheck" "1" > "AllowNullSender" "0" > "EnableAuthSMTP-POP3" "1" > > > and the results are (mydomain.com stands for the > local mail domain): > > - when I connect from my internal network (eg. one of the > address in the C class defined in SMTPRELAY.TAB): > >>> HELO spamtest > <<< 250 mydomain.com > >>> MAIL FROM:<[EMAIL PROTECTED]> > <<< 250 OK > >>> RCPT TO:<[EMAIL PROTECTED]> > <<< 250 OK > mail go through, that's fine > > >>> HELO spamtest > >>> 250 mydomain.com > >>> MAIL FROM:<[EMAIL PROTECTED]> > <<< 551 Server access forbidden by your IP > what does it mean? my IP is in SMTPRELAY.TAB, so > it should be allowed to relay. or are SMTPRELAY.TAB > settings reversed???
>From the XMail machine try : nslookup -query=mx lex.co.uk Yhis coz you set CheckMailerDomain and it seems that the dns is not able to find mxs for that domain. > > - when I connect from an outside address: > >>> HELO spamtest > >>> 250 mydomain.com > >>> MAIL FROM:<[EMAIL PROTECTED]> > <<< 250 OK > >>> RCPT TO:<[EMAIL PROTECTED]> > <<< 250 OK > mail go through (I absolutely don't want this!) Yes but you're sending to your local domain and this is the correct bahaviour. If you need to authenticate all users you've to enable mail-auth, but think about before doing it. Nobody will be able to send you email w/o auth. > > >>> HELO spamtest > >>> 250 mydomain.com > >>> MAIL FROM:<[EMAIL PROTECTED]> > <<< 250 OK > >>> RCPT TO:<[EMAIL PROTECTED]> > <<< 550 Relay denied > relay is denied because recipient is not local, > but I want it to be denied when the SENDER is > not local. This is the effect of smtprelay.tab - Davide
