On Thu, Feb 23, 2012 at 04:06:07PM -0500, lance raymond wrote:
> ok, but my 1st issue is I am 99% sure that 25 is blocked at the primary FW,
> so I am guessing they could be getting to the webservers, using something
> there which is allowed to send to the public IP of the mailserver (there on
> different networks).
You have a problem with a webserver. The symptom is unwanted mail,
but it is not the problem. To solve problems with webservers, look
in the web logs, and seek help on web forums, ... Postfix is just
an innocent bystander.
If there was no spam being sent from the broken webapp, there would
be nothing to adjust in Postfix. Hence, there is nothing to adjust
in Postfix, unless you want to block all outbound mail from the
webserver. That is a possible band-aid.
smtpd_client_restrictions =
check_client_access cidr:/etc/postfix/local_only
local_only:
192.0.2.1 reject_unauth_destination
--
Viktor.
