Re: [policyd-users] bypass policyd for a sender, what's best option ?

Mon, 08 Oct 2007 11:22:01 -0700 

On Fri, September 14, 2007 08:09, Voytek Eymont wrote:

> -------
> smtpd_recipient_restrictions =
>  permit_mynetworks,
>  check_client_access hash:/etc/postfix/pop-before-smtp,

remember clients can be behind nat, that mean you accept relaying for more
then one custommer here alone

>  reject_unauth_destination,
>  check_recipient_access hash:/etc/postfix/recipient_no_checks,

make this in policyd

>  reject_non_fqdn_sender,
>  reject_non_fqdn_recipient,
>  reject_invalid_hostname,
>  reject_non_fqdn_hostname,
>  reject_unknown_sender_domain,
>  reject_unlisted_recipient,

all of them should be done before policy

>  check_sender_access hash:/etc/postfix/freemail_access,
>  check_recipient_access hash:/etc/postfix/recipient_checks,
>  check_recipient_access pcre:/etc/postfix/recipient_checks.pcre,
>  check_helo_access hash:/etc/postfix/helo_checks,
>  check_sender_access hash:/etc/postfix/sender_checks,
>  check_client_access hash:/etc/postfix/client_checks,
>  check_client_access pcre:/etc/postfix/client_checks.pcre,

why all the above ?

let policyd do them

> ** here ?
>  permit_auth_destination hash:/etc/postfix/permit_auth

permit_auth_destination, have no args

what you want is

check_recipient_access hash:/etc/postfix/permit_auth

and in permit_auth

[EMAIL PROTECTED] permit_auth_destination

postmap it

>  check_policy_service inet:127.0.0.1:10031,

good as last test

>  reject_rbl_client zen.spamhaus.org,

should if used being used before policyd

> (more rbls)
>  permit

remove

if more confused, post postconf -n somewhere :-)

-- 
This message was sent using 100% recycled spam mails.


-------------------------------------------------------------------------
This SF.net email is sponsored by: Splunk Inc.
Still grepping through log files to find problems?  Stop.
Now Search log events and configuration files using AJAX and a browser.
Download your FREE copy of Splunk now >> http://get.splunk.com/
_______________________________________________
policyd-users mailing list
policyd-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/policyd-users

Reply via email to