From: Magnus Bäck (no email)
Date: Fri Jan 30 2004 - 02:09:16 EST
On Friday, January 30, 2004 at 01:22 CET,
Jonathan Nichols <> wrote:
> Jan 29 16:15:47 [postfix/smtpd] DA0DC21F9A: reject: RCPT from
> idontcare.pbp.net[66.92.222.34]: 454 <>: Relay
> access denied; from=<>
> to=<> proto=ESMTP helo=<exchange.internal.pbp.net>
[...]
> mydomain = pbp.net
> myhostname = mail.pbp.net
> mynetworks = 192.168.10.0/24, 127.0.0.0/8
Why not just add the Exchange box to mynetworks?
[...]
> smtpd_client_restrictions = permit_mynetworks,
> hash:/etc/postfix/exchange, check_sender_access,
> hash:/etc/postfix/access, hash:/etc/postfix/exchange
> permit_sasl_authenticated, reject
> smtpd_recipient_restrictions = permit_sasl_authenticated,
> permit_mynetworks, reject_unauth_destination
Relay control takes place in smtpd_recipient_restrictions, but you
whitelist the box Exchange box in smtpd_client_restrictions. An OK
action will only affect the current set of restrictions. Instead,
gather all restrictions in smtpd_recipient_restrictions, and the
order of application will be more obvious. You can replace all of
the above with:
smtpd_recipient_restrictions =
permit_mynetworks,
permit_sasl_authenticated,
check_client_access hash:/etc/postfix/exchange,
reject_unauth_destination,
check_sender_access hash:/etc/postfix/access
[...]
-- Magnus Bäck
|
|
|