From: Magnus Bäck (no email)
Date: Wed Jun 01 2005 - 15:45:54 EDT
On Wednesday, June 01, 2005 at 17:48 CEST,
db <> wrote:
[...]
> I want postfix to send mail to amavisd-new after the address lookup,
> so that only mails with a valid recipient are scanned, so in main.cf
> I added: content_filter = scan:10.0.0.5:10024
Change to:
content_filter = scan:[10.0.0.5]:10024
> And in master.cf:
> scan unix - - n - 10 smtp
> -o smtp_data_done_timeout=1200 #?
> -o smtp_send_xforward_command=yes
>
> localhost:10025 inet n - n - 10 smtpd
> -o content_filter= # Or else it would loop
> -o
> receive_override_options=no_header_body_checks,no_unknown_recipient_checks
> -o smtpd_recipient_restrictions=
> -o smtpd_client_restrictions= # Don't do those lookups again
> -o smtpd_authorized_xforward_hosts=10.0.0.5
> -o strict_rfc821_envelopes=yes #?
> -o smtpd_error_sleep_time=0 #?
> -o smtpd_soft_error_limit=1001 #?
> -o smtpd_hard_error_limit=1000 #?
>
> So now only mails with valid addresses are scanned?
That's impossible to tell from this configuration (it depends on the
results of the map lookups), but since you can test it easily yourself
there is no point in asking the question here.
> Are local mail scanned?
Yes. A content_filter setting in main.cf enables the content filter for
ALL received messages unless explicitly disabled for some input paths
(like you have done in master.cf for the port 10025 listener).
> I have seen some set
> local_recipient_maps=
> in localhost:10025, so wondered if local mail was not scanned?
> Which would in fact be the desired behavior, since the mail will be
> scanned again after the forward from /etc/alias.
mydestination is empty, so the number of locally delivered messages
should be very close to zero.
> Are relay mail scanned? If not, how can I make it so? (no plans of
> doing that right now, but it would be nice to know).
>
> I of course want to disable checks on 10025 that has already been done
> on 25, but in order to determine if the mail is "virtual" and thereby
> for maildrop is has to lookup the mail address again or how does that
> work?
Yes, that's correct.
> Are receive_override_options or smtpd_recipient_restrictions
> used for disabling these checks?
Which checks?
> Lines with #? at the end are added because they were there in the tutorials,
> but I don't know why?
Rule of thumb: Don't use options you don't understand.
-- Magnus Bäck
|
|
|