Am Donnerstag, 26. Juni 2003 17:35 schrieb Ralph Crongeyer: > 'netstat -napt' doesn't reveal anything odd. > Ok so when I have > smtpd_recipient_restrictions = permit_mynetworks, check_recepient_access > hash:/etc/postfix/access, check_relay_domains > > It will relay for any host. Even if the /etc/postfix/access is empty (no IP > addresses).
No, It will not relay for any host. Not by default. so what is in mynetworks and what is in relay_domains. Or simply, add the output from postconf -n > > I thought that the "/etc/postfix/access" files list of address would only > permit those machines to relay e-mail??? Is this right?? Not entirely. It allows receiving mails too. The restriction classes are somwhat difficult. > > Here is my situation. I need to have the mail server accept e-mail for the > entire domain but only allow certin clients (or routers, for networks that > masqurade ip addresses) to relay e-mail through the server. So take the default postfix configuration, change the mydestination to accept your domain mails, change the mynetworks and mynetworks_style to accept mails on any network devices you plug in your host, add permit_sasl_authenticated to your recipient restriction and add smtpd_sasl_* stuff to main.cf. Now you have to give usernames and passwords (via saslpasswd if you want to use sasldb) to your users you want to relay and up it goes. Beware, user password are mostly send unencrypted over the net, so use SSL/TLS encryption with postfix. > > Thanks Ralph Martin -- ------------------------------------------------------------ H E L I X Gesellschaft f�r Software & Engineering mbH ------------------------------------------------------------ Hanauer Landstrasse 52 Telefon (069) 4789 35-30 D-60314 Frankfurt am Main Telefax (069) 4789 35-44 ------------------------------------------------------------ http://www.helix-gmbh.net [EMAIL PROTECTED] ------------------------------------------------------------
pgp00000.pgp
Description: signature
