|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
Re: Aliasing (alias_maps) not working on an edge server
From: Rob Tanner (rtanner
linfield.edu)
Date: Wed Aug 02 2006 - 14:55:09 CDT
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
On 08/02/2006 11:55 AM, Magnus Bäck wrote:
> On Wednesday, August 02, 2006 at 20:14 CEST,
> Rob Tanner <rtannerlinfield.edu> wrote:
>
>
>> I have a number of "deliver to program" type of exploder lists which
>> were being invoked by the copy of postfix running on the delivery
>> server (the server was running CMU-Cyrus IMAP). For reasons to
>> painful to mention, the delivery host is now an Exchange server. That
>> means that I had to move the programs and the aliases that deliver to
>> them to an edge server that just runs Postfix. Other than delivery to
>> programs, there is no local delivery configures. The problem is that
>> the server continues to deal with virtual aliases correctly, it
>> appears to be ignoring the alias maps and I'm seeing loops. The
>> messages that should get delivered to a program that does a bunch of
>> lookups and then remails them are instead being forwarded directly to
>> the Exchange server. Since these aliases aren't user objects on the
>> Exchange server, the Exchange server sends the messages right back to
>> the edge server. And after a message makes traverses that loop enough
>> times, it bounces.
>>
>
> You must list the domain in question in mydestination, or else it will
> not be delivered to local(8) and thus not subject to local aliases.
>
> But that's just a guess. We need logs and "postconf -n" output.
>
> [...]
>
>
I was afraid that might be the case. What I'm trying to do is have my
cake and eat it too -- meaning I want transparency for the users. To do
that, I need messages that don't get processed via a virtual map or an
alias map to get passed on to the Exchange server. In other words,
forwarding the mail on needs to be the default behavior. How do I
emulate that after making the change to mydestination?
I have included the postconf -n output below. Even in the relative
quiet of summer, the logs are quite large. Any idea what you'd be
looking for in the logs? I'd like to cut out all but the pertinent entries.
alias_database = hash:/etc/postfix/aliases
alias_maps = hash:/etc/postfix/aliases,ldap:classtag,
ldap:aliastag,ldap:groupalias,ldap:subjectag,ldap:majortag
allow_percent_hack = yes
append_at_myorigin = yes
append_dot_mydomain = yes
biff = no
broken_sasl_auth_clients = yes
command_directory = /usr/sbin
config_directory = /etc/postfix
content_filter = sophos:[localhost]:10025
daemon_directory = /usr/libexec/postfix
daemon_timeout = 600s
default_transport = smtp
header_checks = regexp:/etc/postfix/junkmailers
inet_interfaces = all
local_recipient_maps =
mail_owner = postfix
mailq_path = /usr/bin/mailq
manpage_directory = /usr/local/man
masquerade_domains = $mydomain
masquerade_exceptions = root,mailer-daemon,iii,pmx-auto-approve
message_size_limit = 7500000
mydestination = $myhostname
mydomain = linfield.edu
myhostname = webct2.linfield.edu
mynetworks = 10.0.0.0/8, 127.0.0.0/8
mynetworks_style = class
myorigin = $mydomain
newaliases_path = /usr/bin/newaliases
notify_classes = resource, software
proxy_read_maps = $local_recipient_maps $mydestination $alias_maps
$virtual_alias_maps $virtual_alias_domains $virtual_mailbox_maps
$virtual_mailbox_domains $relay_recipient_maps $relay_domains
$canonical_maps $sender_canonical_maps $recipient_canonical_maps
$relocated_maps $transport_maps $mynetworks proxy:ldap:limittag
queue_directory = /var/spool/postfix
readme_directory = no
recipient_delimiter = +
relay_domains = linfield.edu
relay_recipient_maps = ldap:relayrecipient,
hash:/etc/postfix/relay_recipients
sample_directory = /etc/postfix
sendmail_path = /usr/sbin/sendmail
setgid_group = postdrop
smtp_connect_timeout = 90s
smtp_data_done_timeout = 1800s
smtpd_banner = $myhostname ESMTP $mail_name ($mail_version)
smtpd_client_restrictions =
smtpd_etrn_restrictions = reject_unknown_client
smtpd_helo_required = no
smtpd_helo_restrictions =
smtpd_recipient_limit = 7500
smtpd_recipient_restrictions =
hash:/etc/postfix/protected_destinations,proxy:ldap:limittag
permit_mynetworks permit_sasl_authenticated check_client_access
hash:/etc/postfix/client_checks reject_unauth_destination
reject_invalid_hostname reject_non_fqdn_recipient
reject_unknown_sender_domain reject_unknown_recipient_domain
smtpd_restriction_classes = insiders_only
smtpd_sasl_auth_enable = yes
smtpd_sasl_local_domain =
smtpd_sasl_security_options =
smtpd_sender_restrictions =
smtpd_timeout = 1800s
transport_maps = hash:/etc/postfix/transport
unknown_local_recipient_reject_code = 450
virtual_alias_maps =
ldap:ldaptag,ldap:aliastag,ldap:dormtag,ldap:deptag,ldap:divtag
Thanks,
Rob
--
Rob Tanner
UNIX Services Manager
Linfield College, McMinnville OR
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]