On 10/06/21 1:11 am, Dan White wrote:
I am trying to rebuild a very old and very neglected set of mail servers.
The basic design has a mail relay (MTA) “out front” for incoming
traffic (SMTP, I think)
If the incoming message gets past amazes, spam assassin and clamp, it
is then sent to another server “behind the front lines” that includes
Dovecot with virtual mailbox accounts.
Gotta love auto-correct. :-)
The current setup is very confusing and convoluted. I would rather
rebuild from scratch rather than waste any more time trying to
understand the old mess.
I definitely think that's the best way to go. What you are aiming for
sounds like what I had, up until the point where my configuration got
confusing and convoluted, but at least since I made the mess I can
understand how it works!
I think that the information you're probably looking for can be found in
the Postfix Documentation under Postfix Standard Configuration Examples...
In particular, your mail relay set-up can be based on the 'Postfix email
firewall/gateway' archetype:
http://www.postfix.org/STANDARD_CONFIGURATION_README.html#firewall
And your mail server set-up could be based on 'Running Postfix behind a
firewall':
http://www.postfix.org/STANDARD_CONFIGURATION_README.html#intranet
You'd probably only want to enable submission/s (i.e. port 587 and/or
465) on the mail server, and use smtpd_sasl_... to link it to the local
dovecot auth service (i.e. so that you can administer the passwords in a
single place). And have the mail server postfix deliver to dovecot using
lmtp.
Hopefully that will get you going? Reach out if you get stuck?
Nick.
