On 2021-06-11 16:23, Viktor Dukhovni wrote:
Unless stated otherwise, all Postfix features that support table
lookups
work with all table drivers. In a few cases there are security
restrictions on the use of ${n} substitutions regexp/pcre tables, these
are documented.
When the documentation
On Fri, Jun 11, 2021 at 04:11:14PM -0700, sru...@gemneye.org wrote:
> On 2021-06-11 15:12, Viktor Dukhovni wrote:
> >
> > I will make a bold guess that the real problem you're trying to solve
> > dealing with mail from "root" and similar system users, where in a
> > network of null-client hosts
On 2021-06-11 15:12, Viktor Dukhovni wrote:
I will make a bold guess that the real problem you're trying to solve
dealing with mail from "root" and similar system users, where in a
network of null-client hosts delivering all mail to a central mail hub,
you want the sender address to clearly
On Fri, Jun 11, 2021 at 02:47:40PM -0700, sru...@gemneye.org wrote:
> Can I use a smtp_generic_map rewrite to do something like this??
>
> @local.domain $user-$hostname@some.domain
I will make a bold guess that the real problem you're trying to solve
dealing with mail from "root" and
Can I use a smtp_generic_map rewrite to do something like this??
@local.domain $user-$hostname@some.domain
Where user (actual user who is sending mail) and hostname (short
hostname of server) are substituted in the map?
Most of the examples I looked at where doing static re-writing, and
Yes,
Application/Management Server -> ASA -> router -> PTP VPN to AWS -> AWS LB ->
EC2 RHEL8 (postfix)
Postfix is configured as a relay server.
The security team informed me that our ASA does have SMTP inspection turned on
globally.
My testing jives with what's been said about this ASA
pete...@yahoo.com:
>
> Hi all,
>
> is there any Postfix configuration parameter to set the text Postfix shows to
> the sender when Connection concurrency limit is exceeded ???
> Currently the sender (192.168.3.7) receives this:
> "421 4.7.0 labpot.local Error: too many connections from
On 2021-06-11 at 15:21:46 UTC-0400 (Fri, 11 Jun 2021 21:21:46 +0200)
Benny Pedersen
is rumored to have said:
On 2021-06-11 19:04, Bill Cole wrote:
One other possibility is that the on-host firewall is not configured
to allow inbound connections on port 465.
vpn client ip to postfix 0.0.0.0
Viktor Dukhovni:
> > On 11 Jun 2021, at 1:36 pm, Dan White wrote:
> >
> > This page: http://www.postfix.org/OVERVIEW.html
> > provides an excellent ?picture? of how a message is passed between server
> > processes.
> >
> > What I cannot yet get my brain wrapped around is how the server process
> postfix/smtpd[8385]: vstream_buf_get_ready: fd 10 got 1
You're looking at logging from SMTP SERVER to diagnose OUTBOUND
email deliveries by the SMTP CLIENT??
Read my email again.
Wietse
After the Postfix SMTP client sees the "220 ***..." greeting it logs a warning
(you DID look in
On 2021-06-11 19:04, Bill Cole wrote:
One other possibility is that the on-host firewall is not configured
to allow inbound connections on port 465.
vpn client ip to postfix 0.0.0.0 or :: not needed
On 2021-06-11 18:51, Linda Pagillo wrote:
Thanks! I'm going to check out the firewall again to see if I missed
something. I'm guessing that is probably the issue since Postfix is
now ruled out as the cause.
postfix only need to listen on the vpn interface ips, no need to use ::
or 0.0.0.0 if
On 2021-06-11 18:35, Linda Pagillo wrote:
No, Windows 10 Pro
in main.cf:
smtpd_tls_exclude_ciphers
smtpd_tls_mandatory_protocols
smtpd_tls_protocols
try make them default with # in front of each line, if it still not
working then post logs, not graphics :=)
if all this does not help
> On 11 Jun 2021, at 1:36 pm, Dan White wrote:
>
> This page: http://www.postfix.org/OVERVIEW.html
> provides an excellent “picture” of how a message is passed between server
> processes.
>
> What I cannot yet get my brain wrapped around is how the server process
> sequences are expressed
This page: http://www.postfix.org/OVERVIEW.html
provides an excellent “picture” of how a message is passed between server
processes.
What I cannot yet get my brain wrapped around is how the server process
sequences are expressed and/or configured in the master.cf file.
A clue or three for
Hi all,
is there any Postfix configuration parameter to set the text Postfix shows to
the sender when Connection concurrency limit is exceeded ???
Currently the sender (192.168.3.7) receives this:
"421 4.7.0 labpot.local Error: too many connections from 192.168.3.7"
any way to change the
On 2021-06-11 at 12:42:31 UTC-0400 (Fri, 11 Jun 2021 12:42:31 -0400)
Viktor Dukhovni
is rumored to have said:
On Fri, Jun 11, 2021 at 11:35:50AM -0500, Linda Pagillo wrote:
[...]
As for Postfix, there is nothing at all showing in the log for my
test.
In that case, the problem is on the
Thanks! I'm going to check out the firewall again to see if I missed
something. I'm guessing that is probably the issue since Postfix is now
ruled out as the cause.
On Fri, Jun 11, 2021 at 11:47 AM wrote:
> > On 06-11-2021 12:37 pm, Linda Pagillo wrote:
> >
> > tcp0 0 0.0.0.0:465
On 06-11-2021 12:37 pm, Linda Pagillo wrote:
tcp0 0 0.0.0.0:465 0.0.0.0:*
LISTEN 216600/master
tcp6 0 0 :::465 :::*
LISTEN 216600/master
That's good, its listening to all, local/public.
I would
Thank you guys for your help. I appreciate it very much!
On Fri, Jun 11, 2021 at 11:43 AM Viktor Dukhovni
wrote:
> On Fri, Jun 11, 2021 at 11:35:50AM -0500, Linda Pagillo wrote:
>
> >> Test one thing at a time. First get it working for interactive
> connections via:
> >>
> >> $ (sleep 2;
On Fri, Jun 11, 2021 at 11:35:50AM -0500, Linda Pagillo wrote:
>> Test one thing at a time. First get it working for interactive connections
>> via:
>>
>> $ (sleep 2; printf "QUIT\r\n") | openssl s_client -noservername -brief
>> -connect 127.0.0.1:465
>
> I did this just now and all looks
Right now we have the firewall set to block everything except our internal
IP range while I'm testing. I'm connected to our VPN so I'm within the
range. However, when i test from Outlook, I get the error I posted and
nothing in the Postfix log.
On Fri, Jun 11, 2021 at 11:37 AM Linda Pagillo
Hi! Here is the output..
tcp0 0 127.0.0.1:10025 0.0.0.0:* LISTEN
216600/master
tcp0 0 0.0.0.0:587 0.0.0.0:* LISTEN
216600/master
tcp0 0 127.0.0.1:10028 0.0.0.0:* LISTEN
Hi Victor and Benny.
To answer your questions...
Victor...
*>>Test one thing at a time. First get it working for interactive *connections
via $ (sleep 2; printf "QUIT\r\n") | openssl s_client -noservername -brief
-connect 127.0.0.1:465
I did this just now and all looks correct. I see the
Just to jump in quick, did you first confirm postfix fires up
submission, is binding to the port and listening?
netstat -nlp46 | grep master
Sorry, i typed faster than my brain. I know its not submission, but just
confirm its listening on 465 and on the public IP? Maybe its only
listening on
Just to jump in quick, did you first confirm postfix fires up
submission, is binding to the port and listening?
netstat -nlp46 | grep master
Here is the Outlook error when testing using port 465 over SSL...
[image: image.png]
As for the Postfix log there is no entry for this test. It seems like the
connection attempt is not even happening or something. However, the
firewall does not seem to be the issue I don;t think.
On Fri, Jun
On 2021-06-11 17:32, Linda Pagillo wrote:
Thank you Herbert! I will give that a try. However... I'm trying to
test connecting to port 465 over SSL from my Outlook mail client and
it will not connect. Any ideas why not? I can connect to 993 and 995
from Outlook.
windows 7 ?
On 2021-06-11 17:15, Linda Pagillo wrote:
Any help at all would be appreciated.
postconf -nf
openssl --version
is needed to help
without this info i can only guess, that your client only have
ssl2/ssl3,tls1,tls1.1, but postfix only have tls1.2,tls1.3
is could also be usefull to know
On Fri, Jun 11, 2021 at 10:32:38AM -0500, Linda Pagillo wrote:
> Thank you Herbert! I will give that a try. However... I'm trying to test
> connecting to port 465 over SSL from my Outlook mail client and it will not
> connect. Any ideas why not? I can connect to 993 and 995 from Outlook.
Test
On Fri, Jun 11, 2021 at 10:32:38AM -0500, Linda Pagillo wrote:
>
> Thank you Herbert! I will give that a try. However... I'm trying to test
> connecting to port 465 over SSL from my Outlook mail client and it will not
> connect. Any ideas why not? I can connect to 993 and 995 from Outlook.
What
Thank you Herbert! I will give that a try. However... I'm trying to test
connecting to port 465 over SSL from my Outlook mail client and it will not
connect. Any ideas why not? I can connect to 993 and 995 from Outlook.
On Fri, Jun 11, 2021 at 10:30 AM Herbert J. Skuhra
wrote:
> On Fri, Jun 11,
On Fri, Jun 11, 2021 at 10:15:58AM -0500, Linda Pagillo wrote:
>
> It seems like something is going wrong in Postfix or the device itself; and
> it's not completing the tcp handshake. When I go to 465 the packet isn't
> rejected-- but the connection never goes through -- so something is
>
Hi everyone. I hope all of you are well. I have a server running Ubuntu
20.04 and I'm working on setting up iRedMail on it. Everything is good so
far, but I'm having an issue getting Postfix to respond on port 465. I know
that by default, this is not enabled in the master.cf file. I did a lot of
On 11.06.21 13:46, Togan Muftuoglu wrote:
What are the $mua_helo_restrictions and $mua_sender_restrictions in the
master.cf and how are they supposed to be used ?
no default values. You can set defaults if you nees to set up the same
restrictions to ports 465 and 587.
How do they affect the
> What are the $mua_helo_restrictions and $mua_sender_restrictions in the
> master.cf
http://www.postfix.org/master.5.html
-o name=value (short form)
Override the named main.cf configuration parameter.
The parameter value can refer to other parameters as $name etc., just like
in main.cf.
See
Hi,
What are the $mua_helo_restrictions and $mua_sender_restrictions in the
master.cf and how are they supposed to be used ?
How do they affect the restrictions for the submission if left commented ?
Thanks
Am 2021-06-10 20:57, schrieb Viktor Dukhovni:
On Thu, Jun 10, 2021 at 04:30:11PM +0200, Michael Storz wrote:
The next possibility would be to split the email into emails with
recipients from the same domain. Unfortunately, Postfix (currently)
has
no way of configuring a relay host and
38 matches
Mail list logo
