On 21-02-13 20:07, Viktor Dukhovni wrote:
[ ... ] (lot of patronising text removed)
4. Therefore, you need multiple smtpd pass services for postscreen
to hand the connection to. The postscreen(8) manual page refers you to
http://www.postfix.org/postconf.5.html#smtpd_service_name
On Fri, Feb 22, 2013 at 11:04:34AM +0100, Erik Slagter wrote:
First, a quick comment, all of the sturm and drang in this thread
is the result of a peculiar reluctance of most users to heed the
advice in MULTI_INSTANCE_README and simplify their configurations
by handling each distinct message flow
Hello all,
Please help me with the following. I have here a postfix system that
listens on multiple (external) interfaces, e.g. one of them receives
e-mail from the internet, one of them receives more or less secure mail
from associated institutions.
E-mail received on the internet interface
Erik Slagter:
I want to start using postscreen. Of course I am not going to test in
a production environment, so I made a comparable postfix installation
and with that installation I ran into a problem:
The options (-o) that I specify on the various per-interface smtpd
instances are NOT
On Feb 21, 2013, at 10:31, Erik Slagter e...@slagter.name wrote:
Hello all,
Please help me with the following. I have here a postfix system that
listens on multiple (external) interfaces, e.g. one of them receives
e-mail from the internet, one of them receives more or less secure mail
from
On 21-02-13 13:04, DTNX Postmaster wrote:
Please help me with the following. I have here a postfix system that
listens on multiple (external) interfaces, e.g. one of them receives
e-mail from the internet, one of them receives more or less secure mail
from associated institutions.
E-mail
On 21/02/2013 15:32, Erik Slagter wrote:
On 21-02-13 13:04, DTNX Postmaster wrote:
Please help me with the following. I have here a postfix system that
listens on multiple (external) interfaces, e.g. one of them receives
e-mail from the internet, one of them receives more or less secure mail
On 21/02/2013 15:56, Erik Slagter wrote:
On 21-02-13 14:41, Birta Levente wrote:
Postfix does start, but it doesn't honour the options, on both
instances. It's very simple to check, because I have postcheck report
another welcome string on every interface. Now it shows the default
welcome
On Feb 21, 2013, at 14:32, Erik Slagter e...@slagter.name wrote:
On 21-02-13 13:04, DTNX Postmaster wrote:
http://www.postfix.org/POSTSCREEN_README.html
Have you followed those instructions?
Yes I did (of course).
The README does NOT give any information on the use of multiple
On 21-02-13 15:29, DTNX Postmaster wrote:
See above, SMTP welcome string. Which I added as an option to both the
smtpd and the postscreen line... None of them were honoured.
Postscreen has its own set of options. Read the documentation;
http://www.postfix.org/postscreen.8.html
man
Erik Slagter:
I tried another variant:
192.168.0.1:smtp inet ... postscreen
-o options...
192.168.0.1:pass inet ... smtpd
-o options...
If you don't show the exact options and the exact logging
then no-one can say what mistake YOU are making.
Wietse
On 21-02-13 15:50, Wietse Venema wrote:
Erik Slagter:
I tried another variant:
192.168.0.1:smtp inet ... postscreen
-o options...
192.168.0.1:pass inet ... smtpd
-o options...
If you don't show the exact options and the exact logging
then no-one can say what mistake YOU are
Erik Slagter:
On 21-02-13 15:50, Wietse Venema wrote:
Erik Slagter:
I tried another variant:
192.168.0.1:smtp inet ... postscreen
-o options...
192.168.0.1:pass inet ... smtpd
-o options...
If you don't show the exact options and the exact logging
then no-one can
this is a problem)
* Summary
Setting up postscreen on a system with multiple external interfaces
causes per-interface smtpd options not to be honoured
* Complete error messages
None.
* Postfix logging
None relevant (really! the logging is exactly the same for postscreen
and non-postscreen operation, up
Am 21.02.2013 16:35, schrieb Erik Slagter:
mx1.ipv4.slagter.name:smtpinetn-n-2smtpd
-o myhostname=eriks.xs4all.nl
-o smtpd_banner=mx1.slagter.name-ESMTP-$mail_name-mx1-ppp0-ipv4-25
-o smtpd_tls_security_level=may
-o
If I set up postscreen as closely as possible to the postscreen README
document, I get this (diff to previous message) (I'm sorry lots of it
has been folded). The log says address already in use for 10.1.1.1,
this is interesting because none of the changes involved 10.1.1.1.
--- a
Another variation I tried (pass and postscreen the other way
around). This works, but gives the original problem, the smtpd options
are not honoured (especially banner and starttls=may), even though I
set both:
-o smtpd_tls_security_level=may
-o postscreen_tls_security_level=may
Output of
Am 21.02.2013 17:46, schrieb Erik Slagter:
Another variation I tried (pass and postscreen the other way around).
This works, but gives the original
problem, the smtpd options are not honoured (especially banner and
starttls=may), even though I set both:
postscreen != smtpd so why should
On 21-02-13 16:45, Reindl Harald wrote:
Am 21.02.2013 16:35, schrieb Erik Slagter:
mx1.ipv4.slagter.name:smtpinetn-n-2smtpd
[ ... ]
and how should this be supposed to use postscreen
with smtpd instead of postscreen as command?
Interesting how anybody is keen
On Feb 21, 2013, at 18:28, Erik Slagter e...@slagter.name wrote:
On 21-02-13 16:45, Reindl Harald wrote:
Am 21.02.2013 16:35, schrieb Erik Slagter:
mx1.ipv4.slagter.name:smtpinetn-n-2smtpd
[ ... ]
and how should this be supposed to use postscreen
with smtpd
On 2/21/2013 10:46 AM, Erik Slagter wrote:
Another variation I tried (pass and postscreen the other way
around).
You've shared too much. By now no one has any idea what you're doing.
Overview:
Postscreen is a front-end listener for smtpd. It's not a proxy.
Incoming connections are handled
On 21-02-13 19:17, DTNX Postmaster wrote:
You keep blaming the documentation and the software, when the problem
is most likely in your understanding of it.
Yes I blame the documentation, but not the software. I've been using
postfix for, well, something like ten years or more, I think it's
On 21-02-13 19:30, Noel Jones wrote:
You've shared too much. By now no one has any idea what you're doing.
I'm just following the REPORT A PROBLEM procedure I was kindly pointed
at...
When postscreen decides to pass the connection to smtpd, postscreen
is no longer involved, and smtpd has
On Thu, Feb 21, 2013 at 05:46:26PM +0100, Erik Slagter wrote:
Another variation I tried (pass and postscreen the other way
around). This works, but gives the original problem, the smtpd
options are not honoured (especially banner and starttls=may),
even though I set both:
Take a DEEP breath,
24 matches
Mail list logo
