Maybe i'm confused or I haven't explained it correctly. I don't want to relay mail through the server unless it's by auth sesssion which is already the case.
I DONT want to ACCEPT mail for my local users UNLESS the connection delivering it is a specific IP address. Basically don't accept mail unless its to a local know address (like normal) AND it cam from IP 1.2.3.4 Unless I'm mistaken the earlier code from Noel is about relaying mail for outbound sending isn't it? Rick On Wed, Jul 30, 2008 at 2:36 PM, Brian Evans - Postfix List <[EMAIL PROTECTED]> wrote: > Rick Duval wrote: >> >> Noel: where exactly would I put the IP address to acces mail from? >> Sorry, but I'm really new to postfix. >> >> Rick >> > > [Please do not top post, reply to what you would like to comment on.] > > Following Noel's example, you replace 1.2.3.4 in the new cidr map file with > an IP or network/subnet to allow. > This can be repeated for any networks or IPs you wish. > > OK is not OK here as it will open relay, unless that is what you really want > *and* trust them explicitly with your reputation. > > Brian > >> On Wed, Jul 30, 2008 at 10:45 AM, Noel Jones <[EMAIL PROTECTED]> >> wrote: >> >>> >>> Rick Duval wrote: >>> >>>> >>>> I hope I can explain this corrctly... >>>> >>>> I want to allow incoming SMTP email only from authorized users which I >>>> already have BUT I don't want the system to accept mail for local users >>>> UNLESS it comes from a specific IP address. >>>> >>>> I have an outboard spam filter that all my domains mx records point to. >>>> Problem is that many spammers ignore the MX record and try to send mail >>>> straight to the domain assuming that many will be correct. I want to stop >>>> that. >>>> >>>> Any help would be appreciated... >>>> >>>> Oh, BTW, I'm running postfix through virtualmin. >>>> >>>> Thanks >>>> >>>> RIck >>>> >>> >>> Here's one way... >>> >>> # main.cf >>> smtpd_recipient_restrictions = >>> permit_mynetworks >>> permit_sasl_authenticated >>> check_client_access cidr:/etc/postfix/auth_clients >>> reject >>> >>> >>> # auth_clients >>> 1.2.3.4 permit_auth_destination >>> 2.3.4.5 permit_auth_destination >>> 0.0.0.0/0 REJECT unauthorized client, please use our MX >>> >>> >>> -- >>> Noel Jones >>> >>> -- >>> This message has been scanned for >>> viruses and dangerous content by Accurate Anti-Spam Technologies >>> and is believed to be clean. >>> >>> > > > -- > This message has been scanned for > viruses and dangerous content by Accurate Anti-Spam Technologies > and is believed to be clean. > >
