This is the postconf -n on my smarthost server. server:/etc/postfix# postconf -n append_dot_mydomain = no biff = no config_directory = /etc/postfix inet_interfaces = all mailbox_size_limit = 1024000 mydestination = myhostname = server.domain mynetworks = 127.0.0.0/8 xx.xx.xx.xx #<-- my.network.subnet myorigin = /etc/mailname readme_directory = no relayhost = smtpd_banner = $myhostname ESMTP $mail_name transport_maps = hash:/etc/postfix/transport
With this conf, only the IPs from mynetworks relay mail throuhg the smarthost. BUT, I repeat, users can send mail from their servers using any sender address. How can I block this? regards, israel. On Thu, Aug 20, 2009 at 8:30 AM, Serge Fonville<[email protected]> wrote: > My bad, > > I misunderstood the question, skimmed to the msg to fast ;-) > > Sorry 'bout that > > As mentioned read the section on mynetworks > > Regards, > > Serge Fonville > > On Thu, Aug 20, 2009 at 3:23 PM, Israel Garcia<[email protected]> wrote: >> Serge, I mean I'm an open relay to my servers, becasue any user from >> any server can send mail putting any sender..I'm looking a way to >> block that... >> >> regards, >> Israel. >> >> On Thu, Aug 20, 2009 at 8:02 AM, Serge Fonville<[email protected]> >> wrote: >>> Well, >>> >>> To determine you are an opne relay, there are a couple of things you can do >>> Google for open relay check >>> From a remote site send an email from another domain to another domain >>> through your mail server >>> Check your settings agains the manual >>> >>> HTH >>> >>> Regards, >>> >>> Serge Fonville >>> >>> On Thu, Aug 20, 2009 at 2:54 PM, Israel Garcia<[email protected]> wrote: >>>> My scenario: >>>> >>>> I have a lot of postfix servers, each one, use to sent mail directly >>>> to internet, so It's difficult to monitor them. >>>> What I want? >>>> >>>> Put all postfix's of my servers to send all their external mail to an >>>> smarthost server in my network. I mean, the smarthost must receive >>>> ONLY mail from my servers and relay them mail to internet. Remember I >>>> have a lot of different servers and domains so I don't know how to >>>> configure this smarthost becasuse in some way it's becoming an open >>>> relay. >>>> >>>> My question: >>>> How can I setup a secure smarthost to my network that receive mail >>>> ONLY from my servers and relay all mail directly to Internet? Include >>>> some configuration if possible. >>>> >>>> regards, >>>> Israel. >>>> >>> >> >> >> >> -- >> Regards; >> Israel Garcia >> > -- Regards; Israel Garcia
