[pfx] Re: submission port 465 question
Thanks a lot for clarifying that @Wietse. On Thu, Apr 18, 2024 at 10:02 AM Wietse Venema via Postfix-users < postfix-users@postfix.org> wrote: > Mr. Peng via Postfix-users: > > Hello, > > > > I saw this configuration in our master.cf as follows. > > > > What's the difference between the option "smtpd_relay_restrictions" and > > "smtpd_recipient_restrictions"? In my opinion they both mean the sender > > must pass the smtp auth. Thanks. > > > > smtps inet n - y - - smtpd > > -o syslog_name=postfix/smtps > > -o smtpd_tls_wrappermode=yes > > -o smtpd_sasl_auth_enable=yes > > -o smtpd_relay_restrictions=permit_sasl_authenticated,reject > > -o > smtpd_recipient_restrictions=permit_mynetworks,permit_sasl_authenticated,reject > > -o smtpd_sasl_type=dovecot > > -o smtpd_sasl_path=private/auth > > You need to ask the distributor why they chose this. It is not > part of the Postfix souce-code distribution. > > With the smtps (submissions) and submission services, either > > -o smtpd_relay_restrictions=permit_sasl_authenticated,reject > -o smtpd_recipient_restrictions= > > or > > -o smtpd_relay_restrictions= > -o smtpd_recipient_restrictions=permit_sasl_authenticated,reject > > would be sufficient. > > Wietse > ___ > Postfix-users mailing list -- postfix-users@postfix.org > To unsubscribe send an email to postfix-users-le...@postfix.org > ___ Postfix-users mailing list -- postfix-users@postfix.org To unsubscribe send an email to postfix-users-le...@postfix.org
[pfx] Re: submission port 465 question
Mr. Peng via Postfix-users: > Hello, > > I saw this configuration in our master.cf as follows. > > What's the difference between the option "smtpd_relay_restrictions" and > "smtpd_recipient_restrictions"? In my opinion they both mean the sender > must pass the smtp auth. Thanks. > > smtps inet n - y - - smtpd > -o syslog_name=postfix/smtps > -o smtpd_tls_wrappermode=yes > -o smtpd_sasl_auth_enable=yes > -o smtpd_relay_restrictions=permit_sasl_authenticated,reject > -o > smtpd_recipient_restrictions=permit_mynetworks,permit_sasl_authenticated,reject > -o smtpd_sasl_type=dovecot > -o smtpd_sasl_path=private/auth You need to ask the distributor why they chose this. It is not part of the Postfix souce-code distribution. With the smtps (submissions) and submission services, either -o smtpd_relay_restrictions=permit_sasl_authenticated,reject -o smtpd_recipient_restrictions= or -o smtpd_relay_restrictions= -o smtpd_recipient_restrictions=permit_sasl_authenticated,reject would be sufficient. Wietse ___ Postfix-users mailing list -- postfix-users@postfix.org To unsubscribe send an email to postfix-users-le...@postfix.org
[pfx] submission port 465 question
Hello, I saw this configuration in our master.cf as follows. What's the difference between the option "smtpd_relay_restrictions" and "smtpd_recipient_restrictions"? In my opinion they both mean the sender must pass the smtp auth. Thanks. smtps inet n - y - - smtpd -o syslog_name=postfix/smtps -o smtpd_tls_wrappermode=yes -o smtpd_sasl_auth_enable=yes -o smtpd_relay_restrictions=permit_sasl_authenticated,reject -o smtpd_recipient_restrictions=permit_mynetworks,permit_sasl_authenticated,reject -o smtpd_sasl_type=dovecot -o smtpd_sasl_path=private/auth ___ Postfix-users mailing list -- postfix-users@postfix.org To unsubscribe send an email to postfix-users-le...@postfix.org