On 18-Apr-2009, at 00:01, Barney Desmond wrote:
2009/4/18 LuKreme <[email protected]>:
Well, that's not quite it. The issue is not simply that I don't
want SMTP
connections out of this LAN to servers other than the
mail.example.com
server (that is dealt with with relayhost, iirc)
Firewall policy :)
Ah.. no. I see where I misspoke. I don't want smtp connections out
from the LAN SERVER to servers other than mail.example.com (that is,
postfix on example.local will only ever, no matter what, connect to
mail.example.com).
Remove the LAN from $mynetworks (if it's there), thus forcing everyone
to be unprivileged. As long as example.local isn't in $mydestination,
it should be forced to rely on $virtual_alias_domains, which you
specify per-recipient mappings for.
Yeah, that sounds right. How do I ensure that the sender address is
also in the $virtual_alias_domains?
* Mail to local destinations that match $inet_interfaces or
$proxy_interfaces, $mydestination, $virtual_alias_domains, or
$virtual_mailbox_domains.
Hmm... that's I guess what I am wondering about
The only thing I'm unsure about there is the "match $inet_interfaces"
- if example.local == $inet_interfaces, will it short circuit the
check for virtual_alias_domains?
And that's another one. Well, at this point I think the thing to do
is set it up and see how b0rked I can get it, then post back with
postconf -s :)
--
++?????++ Out of Cheese Error. Redo From Start.
