Possivelmente, na verdade no link tuto que mandei, metade das regras não
aparecem, e no final não é mensionado nem o reject, nem o permit.
Observe:
# Client restrictions : which clients postfix will accept in SMTP
connections
# Allowing LAN users, SASL authenticated users.
# Else, RBL checks against the client. If client is listed, the SMTP
connection is discarded and is not going to the next step (MAIL FROM).
smtpd_client_restrictions =
permit_mynetworks
# permit_sasl_authenticated required, without that, the remote client would
be checked against the RBL
# If listed in the RBL, your trusted client would not be able to send using
SMTP AUTH !
permit_sasl_authenticated
reject_rbl_client sbl-xbl.spamhaus.org
reject_rbl_client list.dsbl.org
# Sender restrictions : what postfix will accept in MAIL FROM command
# Reject non FQDN email address from senders (as required by the RFC)
smtpd_sender_restrictions =
reject_non_fqdn_sender
# Recipient restrictions : what postfix will accept in the RCPT TO command
# Relay : will allow users on the LAN, SASL authenticated users.
# Will reject anything else unless "RCPT TO" matches relay_domains or
Postfix is the final destination
smtpd_recipient_restrictions =
permit_mynetworks
# allow SMTP authenticated users
permit_sasl_authenticated
reject_unauth_destination
Em 3 de junho de 2010 16:00, Zhu Sha Zang <[email protected]>escreveu:
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
>
> Em 03-06-2010 11:50, Felipe Diefenbach escreveu:
> > # requerimentos para o status de HELO
> > smtpd_helo_restrictions = permit_mynetworks,
> > warn_if_reject reject_non_fqdn_hostname,
> > reject_invalid_hostname,
> > permit
> > # requerimentos para os remetentes
> > smtpd_sender_restrictions = permit_mynetworks,
> > permit_sasl_authenticated,
> > warn_if_reject reject_non_fqdn_sender,
> > reject_unknown_sender_domain,
> > reject_unauth_pipelining,
> > permit
> > # requerimentos para conexao com o server
> > smtpd_client_restrictions = reject_rbl_client sbl.spamhaus.org,
> > reject_rbl_client blackholes.easynet.nl,
> > reject_rbl_client dnsbl.njabl.org,
> > permit
> > # requirimentos para os recipientes
> > smtpd_recipient_restrictions = reject_unauth_pipelining,
>
> Tava olhando essas regras, não sei se você mudou depois que leu os
> outros links. Mas corrijam-me se estiver errado. Depois de todos os
> rejects você coloca permit o que abriria tudo novamente. Aqui uso regras
> parecidas, permit_mynetworks, permit_sasl_authenticated, rejetc um monte
> de coisa e depois por fim um reject final.
>
> Não seria esse o problema?
>
> Att
> -----BEGIN PGP SIGNATURE-----
> Version: GnuPG v2.0.15 (GNU/Linux)
> Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/
>
> iEYEARECAAYFAkwH+8QACgkQ35zeJy7JhChWqgCfTZFEzyMIyvJXkLLkvt1WmM3q
> qHAAoIXiL+ZBZSz2t/meNP6ba78BinQK
> =Ottb
> -----END PGP SIGNATURE-----
> _______________________________________________
> Postfix-BR mailing list
> [email protected]
> http://listas.softwarelivre.org/mailman/listinfo/postfix-br
>
_______________________________________________
Postfix-BR mailing list
[email protected]
http://listas.softwarelivre.org/mailman/listinfo/postfix-br
