I only want to receive incoming emails and only send emails from the server itself, either with scripts or while logged on with ssh. I've completely blocked port 25 and the submission ports. With 25 open, I can't even login and I have to use IPMI. First what can I do with just pf? I haven't found any useful examples and it's not clear to me exactly how to only allow local connections to send out emails work but still receive outside emails.
After that, what should I do with smtpd.conf. I find the built-in from local defaults to be more confusing than helpful. I had a lot of useful backups lost from theft and the failure of the last hard drive with copies. I'm also just getting clear headed enough after two surgeries to do more than keep everything blocked and monitor continuously with tcpdump. Port 25 is still getting hit. The ISP offers Edgelayer ACL but I have not found any documentation on how to use it. Any help deeply appreciated.
