[pfx] Re: cbpolicyd and submission only?

Alex via Postfix-users Mon, 09 Feb 2026 12:59:06 -0800

Hi,

On Mon, Feb 9, 2026 at 3:41 PM Bill Cole via Postfix-users <
[email protected]> wrote:


> On 2026-02-09 at 15:35:08 UTC-0500 (Mon, 9 Feb 2026 15:35:08 -0500)
> Alex via Postfix-users <[email protected]>
> is rumored to have said:
> [...]
> > I can add it to recipient restrictions, but I don't want to affect
> > general
> > incoming mail.
> >
> > smtpd_recipient_restrictions =
> >     ...
> >     check_policy_service inet:127.0.0.1:10031,
> >     ...
> >
> > Is there a safe way to add it to the submission service directly?
>
> Add an override in the master.cf file for smtpd_recipient_restrictions
> to the 'submission' entry.
>

What would that look like?

submission inet n       -       n       -       -       smtpd
  -o smtpd_tls_security_level=encrypt
  -o smtpd_sasl_auth_enable=yes
  -o smtpd_recipient_restrictions={check_policy_service inet:127.0.0.1:10031
,permit_sasl_authenticated,reject}
  -o smtpd_relay_restrictions=permit_sasl_authenticated,reject
  -o milter_macro_daemon_name=ORIGINATING
  -o receive_override_options=$submission_overrides
  -o syslog_name=postfix/submission
  -o sender_dependent_default_transport_maps=
  -o sender_canonical_maps=
  -o sender_canonical_classes=
  -o recipient_canonical_maps=
  -o recipient_canonical_classes=
  -o smtpd_milters=
  -o non_smtpd_milters=
  -o milter_default_action=tempfail

_______________________________________________
Postfix-users mailing list -- [email protected]
To unsubscribe send an email to [email protected]

[pfx] Re: cbpolicyd and submission only?

Reply via email to