Postfix receives mail for virtual domain on loopback address, but relay access denied on remote connections

Thu, 06 Aug 2009 23:08:46 -0700 

I'm making good progress getting postfix up and running, but having a
persistent issue with a domain configured through ISPConfig. My virtual
domain Luros.eu has a catchall address, jlu...@luros.eu which forwards to my
gmail account. When I test through telnet to port 25 locally (on the
server), the message gets queued and sent to my gmail. However, when I try
to telnet to port 25 from my home machine on a DSL connection or through a
webmail interface on a different system (tried Me.com and Hotmail), I get
relay access denied after the RCPT TO command.

Any help would be greatly appreciated.
main.cf:
# See /usr/share/postfix/main.cf.dist for a commented, more complete version


# Debian specific:  Specifying a file name will cause the first
# line of that file to be used as the name.  The Debian default
# is /etc/mailname.
#myorigin = /etc/mailname
smtpd_banner = $myhostname ESMTP $mail_name (Ubuntu)
biff = no

# appending .domain is the MUA's job.
append_dot_mydomain = no

# Uncomment the next line to generate "delayed mail" warnings
#delay_warning_time = 4h

readme_directory = /usr/share/doc/postfix

# TLS parameters
# Original Entries 
#smtpd_tls_cert_file=/etc/ssl/certs/ssl-cert-snakeoil.pem
#smtpd_tls_key_file=/etc/ssl/private/ssl-cert-snakeoil.key
#smtpd_use_tls=yes
#smtpd_tls_session_cache_database = btree:${data_directory}/smtpd_scache
#smtp_tls_session_cache_database = btree:${data_directory}/smtp_scache
smtpd_sasl_auth_enable = yes
broken_sasl_auth_clients = yes
smtpd_sasl_authenticated_header = yes
smtpd_recipient_restrictions = permit_mynetworks, permit_sasl_authenticated,
check_recipient_access mysql:/etc/postfix/mysql-virtual_recipient.cf,
reject_unauth_destination
smtpd_use_tls = yes
smtpd_tls_cert_file = /etc/postfix/smtpd.cert
smtpd_tls_key_file = /etc/postfix/smtpd.key


# See /usr/share/doc/postfix/TLS_README.gz in the postfix-doc package for
# information on enabling SSL in the smtp client.

myhostname = mail.jasonluros.com
alias_maps = hash:/etc/aliases
alias_database = hash:/etc/aliases
#myorigin = /etc/mailname
#mydestination = Webserver, jasonluros.com, localhost
mydomain = $myhostname
myorigin = $mydomain
mydestination = mail.jasonluros.com, localhost, localhost.localdomain
relayhost = 
mynetworks = 127.0.0.0/8 [::1]/128 174.143.212.167/32
mailbox_size_limit = 0
recipient_delimiter = +
inet_interfaces = all
virtual_alias_domains = 
virtual_alias_maps = proxy:mysql:/etc/postfix/mysql-virtual_forwardings.cf,
mysql:/etc/postfix/mysql-virtual_email2email.cf
virtual_mailbox_domains = proxy:mysql:/etc/postfix/mysql-virtual_domains.cf
virtual_mailbox_maps = proxy:mysql:/etc/postfix/mysql-virtual_mailboxes.cf
virtual_mailbox_base = /var/vmail
virtual_uid_maps = static:5000
virtual_gid_maps = static:5000

proxy_read_maps = $local_recipient_maps $mydestination $virtual_alias_maps
$virtual_alias_domains $virtual_mailbox_maps $virtual_mailbox_domains
$relay_recipient_maps $relay_domains $canonical_maps $sender_canonical_maps
$recipient_canonical_maps $relocated_maps $transport_maps $mynetworks
$virtual_mailbox_limit_maps
html_directory = /usr/share/doc/postfix/html
smtpd_tls_security_level = may
transport_maps = proxy:mysql:/etc/postfix/mysql-virtual_transports.cf
relay_domains = mysql:/etc/postfix/mysql-virtual_relaydomains.cf
virtual_create_maildirsize = yes
virtual_maildir_extended = yes
virtual_mailbox_limit_maps =
proxy:mysql:/etc/postfix/mysql-virtual_mailbox_limit_maps.cf
virtual_mailbox_limit_override = yes
virtual_maildir_limit_message = "The user you are trying to reach is over
quota."
virtual_overquota_bounce = yes
smtpd_sender_restrictions = check_sender_access
mysql:/etc/postfix/mysql-virtual_sender.cf
smtpd_client_restrictions = check_client_access
mysql:/etc/postfix/mysql-virtual_client.cf
maildrop_destination_concurrency_limit = 1
maildrop_destination_recipient_limit = 1
virtual_transport = maildrop
header_checks = regexp:/etc/postfix/header_checks
mime_header_checks = regexp:/etc/postfix/mime_header_checks
nested_header_checks = regexp:/etc/postfix/nested_header_checks
body_checks = regexp:/etc/postfix/body_checks
content_filter = amavis:[127.0.0.1]:10024
receive_override_options = no_address_mappings
message_size_limit = 0

debug_peer_list = 127.0.0.1 174.143.212.167
#end main.cf

netstat -tap:

mail /var/www/jasonluros.com/web: sudo netstat -tap
Active Internet connections (servers and established)
Proto Recv-Q Send-Q Local Address           Foreign Address         State      
PID/Program name
tcp        0      0 localhost:10024         *:*                     LISTEN     
18815/amavisd (mast
tcp        0      0 localhost:10025         *:*                     LISTEN     
27995/master    
tcp        0      0 *:mysql                 *:*                     LISTEN     
17139/mysqld    
tcp        0      0 localhost:spamd         *:*                     LISTEN     
4041/spamd.pid  
tcp        0      0 *:http-alt              *:*                     LISTEN     
4829/apache2    
tcp        0      0 *:www                   *:*                     LISTEN     
4829/apache2    
tcp        0      0 *:30000                 *:*                     LISTEN     
3793/sshd       
tcp        0      0 10.176.164.138:domain   *:*                     LISTEN     
3182/mydns      
tcp        0      0 mail.jasonluros.:domain *:*                     LISTEN     
3182/mydns      
tcp        0      0 localhost:domain        *:*                     LISTEN     
3182/mydns      
tcp        0      0 *:ftp                   *:*                     LISTEN     
4706/pure-ftpd (SER
tcp        0      0 *:smtp                  *:*                     LISTEN     
27912/smtpd     
tcp        0      0 *:https                 *:*                     LISTEN     
4829/apache2    
tcp        0     48 mail.jasonluros.c:30000 adsl-76-247-42-22:36182
ESTABLISHED 27509/sshd: jluros 
tcp        0      0 mail.jasonluros.c:30000 adsl-76-247-42-22:48218
ESTABLISHED 27833/sshd: jluros 
tcp       56      0 localhost:37781         localhost:10025        
CLOSE_WAIT  18825/amavisd (ch1-
tcp       56      0 localhost:56743         localhost:10025        
CLOSE_WAIT  18824/amavisd (ch1-
tcp        0      0 localhost:42450         localhost:www          
TIME_WAIT   -               
tcp        0      0 mail.jasonluros.co:smtp adsl-76-247-42-22:36260
ESTABLISHED 27912/smtpd     
tcp6       0      0 [::]:imaps              [::]:*                  LISTEN     
4571/couriertcpd
tcp6       0      0 [::]:pop3s              [::]:*                  LISTEN     
4614/couriertcpd
tcp6       0      0 [::]:pop3               [::]:*                  LISTEN     
4592/couriertcpd
tcp6       0      0 [::]:imap2              [::]:*                  LISTEN     
4549/couriertcpd
tcp6       0      0 [::]:30000              [::]:*                  LISTEN     
3793/sshd       
tcp6       0      0 localhost:domain        [::]:*                  LISTEN     
3182/mydns      
tcp6       0      0 [::]:ftp                [::]:*                  LISTEN     
4706/pure-ftpd (SER
tcp6       0      0 localhost:55680         localhost:domain       
TIME_WAIT   -               
tcp6       0      0 localhost:35354         localhost:ftp          
TIME_WAIT   -               
mail /var/www/jasonluros.com/web: ps -aef|grep 27912
postfix  27912 27995  0 14:50 ?        00:00:00 smtpd -n smtp -t inet -u -c
-o stress
-- 
View this message in context: 
http://www.nabble.com/Postfix-receives-mail-for-virtual-domain-on-loopback-address%2C-but-relay-access-denied-on-remote-connections-tp24859379p24859379.html
Sent from the Postfix mailing list archive at Nabble.com.

Reply via email to