|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
From: Andrew Long (fursink
gmail.com)
Date: Fri Mar 14 2008 - 12:46:25 CDT
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
This MTA is currently set up not to accept any mail from the outside.
It has no MX in DNS (but does have a PTR). It is set up to relay for
certain ip blocks. Now, I need to accept mail for our own domain only,
but selectively pass all that mail out to a third party MTX who
handles our corporate mail. The problem is that some MTX's won't talk
to us without an MX, but if I put one in, some of our corporate mail
gets sent there (from MTX's that ignore the priority or if the pri or
sec servers timeout for some reason). I want to add the MX, but ensure
that mail accepted for "ourdomain.com" gets passed back out to our pri
or sec mail handlers. I understand there is some danger of creating a
loop there, but it is seldom the case the pri and sec timeout...
Can someone point me in the right direction here?
+++
alias_maps = hash:/etc/aliases
command_directory = /usr/sbin
config_directory = /etc/postfix
daemon_directory = /usr/libexec/postfix
debug_peer_level = 2
default_process_limit = 10
disable_vrfy_command = yes
html_directory = no
local_recipient_maps =
mailq_path = /usr/bin/mailq.postfix
manpage_directory = /usr/share/man
mynetworks = 127.0.0.0/8, /etc/postfix/relay-ip
newaliases_path = /usr/bin/newaliases.postfix
readme_directory = /usr/share/doc/postfix-2.2.10/README_FILES
relay_domains =
sample_directory = /usr/share/doc/postfix-2.2.10/samples
sendmail_path = /usr/sbin/sendmail.postfix
setgid_group = postdrop
smtp_connect_timeout = 5
smtp_helo_timeout = 15s
smtpd_banner = $myhostname ESMTP $mail_name
smtpd_client_connection_count_limit = 20
smtpd_client_connection_rate_limit = 40
smtpd_client_event_limit_exceptions = 127.0.0.0/8
smtpd_client_message_rate_limit = 40
smtpd_client_recipient_rate_limit = 40
smtpd_client_restrictions = permit_mynetworks
smtpd_data_restrictions = reject_unauth_pipelining, permit
smtpd_helo_required = yes
smtpd_recipient_restrictions = reject_unknown_sender_domain,
reject_non_fqdn_recipient, reject_unknown_recipient_domain,
permit_mynetworks, check_recipient_access
hash:/etc/postfix/roleaccount, reject_unauth_destination,
check_helo_access hash:/etc/postfix/helo_checks, reject_rbl_client
bl.spamcop.net,
smtpd_reject_unlisted_sender = yes
smtpd_sender_restrictions = reject_unknown_sender_domain,
reject_non_fqdn_sender
unknown_local_recipient_reject_code = 550
+++
Thank You.
Andrew
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]