Noel Jones wrote:
mouss wrote:
He already has permit_mynetworks and so on. so his problem is
different (and probably rare). He needs to exclude his domains from
check_mx_access.
Using a check_sender_access whitelist as posted earlier is one solution.
a few other obvious solutions:
- not rejecting either localhost nor the servers own RFC1918 IP. (use
DUNNO to whitelist internal host IPs in the cidr table).
- don't reject any RFC1928 addresses.
- don't use this feature.
or don't set the MX to such IPs.
If he puts check_mx_access at the end of his restrictions, he can use
permit_auth_destination.
No, permit_auth_destination will whitelist the recipient, OP needs to
whitelist the sender. (I nearly fell into this same trap earlier today).
argh! indeed.
