> That last rule is essentially "accept from any for (pretty much) any" so > you have created an open relay. > > Replace the "from any" with "from local" so the rule reads as: > > accept from local for ! domain 486.hu relay via > tls+auth://t-onl...@mail.t-online.hu auth <cred> > > This should be much better.
Thanks, this did the trick! :) I thought when it comes to relaying, "auth-optional" ensures that authentication is already done and the relaying rule is processed according to this. Regards,