Next message: Jonatan Arango: "Re: SASL + mysql + smtpauth"
Hi list
I'm using postfix-2.2.3 with amavisd-new 2.3.1 on FreeBSD 5.4.
I've read some tutorials, but I'm still a little unsure how this works.
Current setup:
command_directory = /usr/local/sbin
config_directory = /usr/local/etc/postfix
daemon_directory = /usr/local/libexec/postfix
debug_peer_level = 2
html_directory = no
mail_owner = postfix
mailq_path = /usr/local/bin/mailq
manpage_directory = /usr/local/man
mydestination =
newaliases_path = /usr/local/bin/newaliases
proxy_interfaces = my_ip
queue_directory = /var/spool/postfix
readme_directory = no
relay_domains = proxy:pgsql:/usr/local/etc/postfix/relaydomainmap
relay_recipient_maps = proxy:pgsql:/usr/local/etc/postfix/relayaliasmap
sample_directory = /usr/local/etc/postfix
sendmail_path = /usr/local/sbin/sendmail
setgid_group = maildrop
smtpd_client_restrictions = reject_rbl_client bl.spamcop.net,
reject_rbl_client list.dsbl.org, permit
transport_maps = proxy:pgsql:/usr/local/etc/postfix/mxmap
unknown_local_recipient_reject_code = 550
virtual_alias_maps = proxy:pgsql:/usr/local/etc/postfix/aliasmap
virtual_mailbox_domains = proxy:pgsql:/usr/local/etc/postfix/domainmap
virtual_transport = maildrop
As shown all mails are in the relay tabel or virtual tabel and mail are
delivered with maildrop (mail to local users in /etc/alias are being
forwardet to some mail adress, since all users are virtual users).
I want postfix to send mail to amavisd-new after the address lookup, so that
only mails with a valid recipient are scanned, so in main.cf I added:
content_filter = scan:10.0.0.5:10024
And in master.cf:
scan unix - - n - 10 smtp
-o smtp_data_done_timeout=1200 #?
-o smtp_send_xforward_command=yes
localhost:10025 inet n - n - 10 smtpd
-o content_filter= # Or else it would loop
-o
receive_override_options=no_header_body_checks,no_unknown_recipient_checks
-o smtpd_recipient_restrictions=
-o smtpd_client_restrictions= # Don't do those lookups again
-o smtpd_authorized_xforward_hosts=10.0.0.5
-o strict_rfc821_envelopes=yes #?
-o smtpd_error_sleep_time=0 #?
-o smtpd_soft_error_limit=1001 #?
-o smtpd_hard_error_limit=1000 #?
So now only mails with valid addresses are scanned?
Are local mail scanned? I have seen some set
local_recipient_maps=
in localhost:10025, so wondered if local mail was not scanned? Which would in
fact be the desired behavior, since the mail will be scanned again after the
forward from /etc/alias.
Are relay mail scanned? If not, how can I make it so? (no plans of doing that
right now, but it would be nice to know).
I of course want to disable checks on 10025 that has already been done on 25,
but in order to determine if the mail is "virtual" and thereby for maildrop
is has to lookup the mail address again or how does that work?
Are receive_override_options or smtpd_recipient_restrictions used for
disabling these checks?
Lines with #? at the end are added because they were there in the tutorials,
but I don't know why?
Any others options I should add?
Hope someone will explain this :-)
Best regards
db
