On Mon, Jul 22, 2024 at 10:45 AM Bill Cole via Postfix-users <postfix-users@postfix.org> wrote: > Yes. Anything in master.cf after a "-o" is just a service-specific exception > to the configuration set in main.cf. So, you could add it to the smtpd line > in master.cf or to main.cf.
ack. probably not the fix i want here but good to know. > Non-sequitur. Surely you must have some record of what domains you relay TO > (i.e. who your customers are,) it's just a matter of hooking that into a > Postfix map. It need not be a static list, it can be LDAP or an SQL database. > If you don't restrict the domains that you will retail TO, you will find your > server abused and widely blocked. There may be a way to make Postfix relay > for any domain that points an MX record to it, as can be done in Sendmail, > but it is in advisable. We outbound relay only, per your next point > That's for outbound relay, relaying FROM customers. Authentication would be a > better way to control that, but if you believe that your customers' networks > are always trustworthy, IP-based is reasonable. After all, it's almost > universal for people to use permit_mynetworks. > Yes this is what we are doing. We have no interest in getting in the middle of creating per user authentication and handling that entire layer. We are happy and have not had issues with any spam issues with whitelisting IPs upon their requests. Anyhow, this is what we're trying to solve - it works well on 587, just not 25. and did work with what appears to be the same config on postfix 2.10. I'm clearly missing something in our config for this and just trying to figure out what it is. Cheers, --Chris _______________________________________________ Postfix-users mailing list -- postfix-users@postfix.org To unsubscribe send an email to postfix-users-le...@postfix.org
