OSEC

Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com
 
From: Alessio Fiore (afiorealteanet.it)
Date: Mon Jan 21 2002 - 09:17:38 CST

  • Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

    Hi all,

    a few days ago I posted a relaying configuration problem that I solved
    today, so I want to post the solution I found... it could be useful for
    someone else...

    The problem was: A single host, with Postfix, manages a domain's mail (ex:
    foo.com). Each user can send/receive mail to/from other local users
    (xyzfoo.com) without limitations, but only a limited group of users can
    send/receive mail to/from the whole Internet.
    The solution I found was:

    1) Edit the access map file "access_external" with following lines:

            allowed_user1 OK
            allowed_user2 OK
            ...
            allowed_usern OK

    2) Edit the regexp file "reject_nonlocal.regexp" with following line:

            /^(.*)(.*)$/!/^(.*)(.*)(\.)?foo\.com$/ REJECT

    3) Set smtpd_recipient_restrictions parameter in main.cf as follows:

            smtpd_recipient_restrictions = reject_non_fqdn_sender,
               reject_non_fqdn_recipient,
               reject_unknown_sender_domain,
               reject_unknown_recipient_domain,
               check_recipient_access hash:/etc/postfix/access_external,
               check_sender_access regexp:/etc/postfix/reject_nonlocal.regexp,
               permit_auth_destination,
               check_sender_access hash:/etc/postfix/access_external,
               reject

    Hope this could be useful for someone...

    Alessio Fiore
    afiorealteanet.it

    - Disclaimer -
    This email and any attachments thereto may contain information which is
    confidential and/or protected by intellectual property rights and are
    intended for the sole use of the recipient(s) named above. Any use of the
    information contained herein (including, but not limited to, total or
    partial reproduction, communication or distribution in any form) or the
    taking of any action in reliance on the contents, by persons other than the
    designated recipient(s) is strictly prohibited.

    If you have received this email in error, please notify the sender either by
    telephone or by email and delete the material from any computer.

    Thank you for your cooperation.

    -
    To unsubscribe, send mail to majordomopostfix.org with content
    (not subject): unsubscribe postfix-users