Open relay has nothing to do with relay_domains. Open Relay means anyone can send through your server without authentication. You restrict it by using my_networks or sasl auth for example.
mail -> baruwa -> zimbra Pastebin your current postfix main.cf -- Jeremy McSpadden Flux Labs | Endless Solutions Cell : 850-890-2543 | Fax : 850-254-2955 On Dec 29, 2012, at 11:31 AM, "Manish Rane" <[email protected]<mailto:[email protected]>> wrote: So I can specify the relay_domains parameter and save it from becoming open relay? On 29 Dec 2012 22:57, "Jeremy McSpadden" <[email protected]<mailto:[email protected]>> wrote: That is up to you. -- Jeremy McSpadden Flux Labs | Endless Solutions Cell : 850-890-2543 | Fax : 850-254-2955 On Dec 29, 2012, at 11:11 AM, "Manish Rane" <[email protected]<mailto:[email protected]>> wrote: I see so what is the use of configuring sasl auth? Just for relaying the mails? Can we not specify relay_domains and accept mails only for my domain just like all other appliances do? Well sorry i may sound dumb but trying to understand the architecture. On 29 Dec 2012 22:33, "Jeremy McSpadden" <[email protected]<mailto:[email protected]>> wrote: Zimbra server -- Jeremy McSpadden Flux Labs | Endless Solutions Cell : 850-890-2543 | Fax : 850-254-2955 On Dec 29, 2012, at 11:04 AM, "Manish Rane" <[email protected]<mailto:[email protected]>> wrote: Hi Guys, So if baruwa is installed as a gateway role and I have zimbra server behind and assuming I have sasl authentication configured in postfix on baruwa; what server name or IP would user provide in their email client? Would that be zimbra or baruwa? On 28 Dec 2012 21:02, "Manish Rane" <[email protected]<mailto:[email protected]>> wrote: By the way wondering how it can be open relay? can we not just restrict is using relay_domains. I mean as soon as we add domain in web interface is it not considered as relay_domains? -------------------------------------------------------------------------- Thanks and Regards, Manish R On Fri, Dec 28, 2012 at 1:50 PM, Andrew Colin Kissa <[email protected]<mailto:[email protected]>> wrote: On 28 Dec 2012, at 10:13 AM, Manish Rane wrote: > I understand that I should only removed permit_sasl_authenticated entries > rather than commenting all entries but I am still figuring out how users can > get authenticated with a mail gw where actually they are configured on > different mail server. Would you please share any online documentation or > diagram which can help me to understand the scenario. You are using postfix on the gateway and zimbra as the mail destination. Zimbra provides both LDAP and IMAP interfaces, you need to setup SMTP AUTH on your gateway using SASL which supports both LDAP and IMAP and is well documented[1] on the postfix website [1] http://www.postfix.org/SASL_README.html -- www.baruwa.org<http://www.baruwa.org> _______________________________________________ Keep Baruwa FREE - http://pledgie.com/campaigns/12056 _______________________________________________ Keep Baruwa FREE - http://pledgie.com/campaigns/12056 _______________________________________________ Keep Baruwa FREE - http://pledgie.com/campaigns/12056 _______________________________________________ Keep Baruwa FREE - http://pledgie.com/campaigns/12056 _______________________________________________ Keep Baruwa FREE - http://pledgie.com/campaigns/12056 _______________________________________________ Keep Baruwa FREE - http://pledgie.com/campaigns/12056
_______________________________________________ Keep Baruwa FREE - http://pledgie.com/campaigns/12056
