--On Thursday, January 17, 2013 2:26 PM -0800 Quanah Gibson-Mount
<qua...@zimbra.com> wrote:
Hi Noel,
I don't think postfix will start (or at least won't start this
service) with both smtpd_recipient_restricions and
smtpd_relay_restrictions set empty.
Yeah, I just ran into that in testing the changes in more detail.
For submission/smtps, one of these needs to be set eg.
smtpd_relay_restrictions=permit_sasl_authenticated,reject
That's really helpful, thank you. :)
Hi Noel,
With testing, I have the following for 465/submission. Thanks again for
the pointers! I used reject_unauth_destination because with just "reject",
some of my mail tests failed.
465 inet n - n - - smtpd
-o content_filter=scan:[127.0.0.1]:10029
-o smtpd_tls_wrappermode=yes
-o smtpd_sasl_auth_enable=yes
-o smtpd_client_restrictions=
-o smtpd_data_restrictions=
-o smtpd_end_of_data_restrictions=
-o smtpd_helo_restrictions=
-o smtpd_recipient_restrictions=
-o
smtpd_relay_restrictions=permit_sasl_authenticated,reject_unauth_destination
-o smtpd_sender_restrictions=
-o syslog_name=postfix/smtps
-o milter_macro_daemon_name=ORIGINATING
submission inet n - n - - smtpd
-o content_filter=scan:[127.0.0.1]:10029
-o smtpd_etrn_restrictions=reject
-o smtpd_sasl_auth_enable=yes
-o smtpd_tls_security_level=may
-o smtpd_client_restrictions=permit_sasl_authenticated,reject
-o smtpd_data_restrictions=
-o smtpd_end_of_data_restrictions=
-o smtpd_helo_restrictions=
-o smtpd_recipient_restrictions=
-o
smtpd_relay_restrictions=permit_sasl_authenticated,reject_unauth_destination
-o smtpd_sender_restrictions=
-o syslog_name=postfix/submission
-o milter_macro_daemon_name=ORIGINATING
--Quanah
--
Quanah Gibson-Mount
Sr. Member of Technical Staff
Zimbra, Inc
A Division of VMware, Inc.
--------------------
Zimbra :: the leader in open source messaging and collaboration