Hallo zusammen,
ich bin gerade dabei auf Postfix (postfix 2.5.1-2ubuntu1.2) das "Relaying Denied" scharf zu machen, sprich nur Emails aus unserer Domain (user@<our_domain>.at) dürfen versendet werden, ansonsten: relaying denied.
Ich habe daher folgende Parameter ins main.cf eingetragen:
... # grep -i relay main.cf
relay_recipient_maps = hash:/etc/postfix/relay_recipients relay_domains = hash:/etc/postfix/relay_domains smtpd_recipient_restrictions = permit_mynetworks reject_unauth_destination reject_unauth_pipelining check_relay_domains ...
Hier noch die PlainText Files:
# cat /etc/postfix/relay_recipients @<our_domain>.at OK
# cat /etc/postfix/relay_domains <our_domain>.at OK
Wenn ich das ganze Zeugs jetzt mit einer telnet Session auf Port 25 teste, klappts irgendwie nicht so recht ...
administrators-macbook-3:~ glr$ telnet postman 25 Trying 192.168.1.6... Connected to postman. Escape character is '^]'. 220 postman.<our_domain>.at ESMTP Postfix (Ubuntu) helo postman.<our_domain>.at 250 postman.<our_domain>.at mail from: gucksdu@gmx.at 250 2.1.0 Ok rcpt to: gucksdu@gmx.at 250 2.1.5 Ok quit 221 2.0.0 Bye Connection closed by foreign host.
hier noch der 'postconf -n' Output.
# postconf -n alias_database = hash:/etc/aliases alias_maps = hash:/etc/aliases append_dot_mydomain = no biff = no config_directory = /etc/postfix header_checks = pcre:/etc/postfix/header_checks inet_interfaces = all mailbox_size_limit = 0 mydestination = postman, postman.rigledv.at, localhost.rigledv.at, localhost myhostname = postman.rigledv.at mynetworks = 127.0.0.0/8 [::ffff:127.0.0.0]/104 [::1]/128 192.168.1.0/24 myorigin = /etc/mailname proxy_interfaces = 62.2.100.199 readme_directory = no recipient_delimiter = + relay_domains = hash:/etc/postfix/relay_domains relay_recipient_maps = hash:/etc/postfix/relay_recipients relayhost = smtp_tls_session_cache_database = btree:/var/lib/postfix/smtp_scache smtpd_banner = $myhostname ESMTP $mail_name (Ubuntu) smtpd_data_restrictions = reject_unauth_pipelining smtpd_helo_required = yes smtpd_recipient_restrictions = permit_mynetworks reject_unauth_destination reject_unauth_pipelining check_relay_domains smtpd_sender_restrictions = check_sender_access hash:/etc/postfix/sender_access, reject_non_fqdn_sender, reject_unknown_sender_domain smtpd_tls_cert_file = /etc/ssl/certs/ssl-cert-snakeoil.pem smtpd_tls_key_file = /etc/ssl/private/ssl-cert-snakeoil.key smtpd_tls_session_cache_database = btree:/var/lib/postfix/smtpd_scache smtpd_use_tls = yes virtual_alias_maps = hash:/etc/postfix/virtual
Achtung: Zeilenumbrüche sind durch's cut & paste entstanden.
Vielleicht sieht jemand ja den richtigen Baum in diesem ganzen Wald oder fehlt mir da noch ein Setzling?
Danke Richard