Hi. I work together with Rune, and will try to describe what we want to achieve: We want the throttling and spamhaus lookup to be forced for all email except a few servers. Our environment consists of several mailservers.
We have a postfix server that is used for relaying email and doing an initial spamwash. This is the server I am currently working on and need some help to setup correctly. (The server is called mta01) We have a main Exchange server behind the mta01, and several smaller Exchange installations for different customers. (main-exch, cust-exch01, cust-exch02, etc) We also have Xerox copiers and other random applications that needs to send mail through mta01 directly. Mail from the main-exch, from copiers and random applications are no problem. Our problem is the customer exchange installations, because they send out newsletters that needs to be throttled. And once in a while, their newsmail system goes bananas, and send so many emails so quickly that Google and Yahoo immediately flags us as a spammer. We need to slow this down. If I understand correct, I need to let all servers that should be able to send mail out be part of mynetworks. Is that correct? The problem is that when the servers are part of mynetworks, all the throttling and antispam check stops - it is just trusted... I would like to exclude cust-exch01 etc from mynetworks. Is that possible? -Erik- ------------------ We are implementing postfix as front mail servers. Their job will be to relay email to our inside servers, and be the smart host for all internal servers. I thought that as long a domain was registered as a relay-domain, postfix would send emails both ways for this domain. But I discovered that only inbound emails are forwarded when the domain is registered in relay-domains, and that the sender must be in mynetworks to send outbound email. However When a sender is registered in mynetworks, all the security features, like throttling, are bypassed. I would like Postfix to do all the same checks and the same throttling on email from mynetwork. Is that possible? -- Rune Elvemo
