This server is only the secondary mail server for incoming mail, so it won't be bouncing anything just passing it onto the primary server which does perform valid recipient checks. I don't see any point doing it here too as it just means more hits against the AD servers for no greater effect, unless I needed to lessen the load on the primary MX server which I don't.
That this wasn't evident might suggest I've configured it incorrectly to act as a secondary MX server. Paul Cocker Systems Infrastructure Support Network Administrator and Security Specialist -----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Brian Evans - Postfix List Sent: 06 October 2008 15:46 To: postfix-users@postfix.org Subject: Re: My first config - unable to telnet to port 25, virtual.db missing Paul Cocker wrote: > I have a CentOS 5.2 machine running postfix 2.3.3 install via yum and > am setting up for the first time, having been a sendmail user previously. > > I have been configuring it based around 'Postfix email firewall/gateway' > setup in the postfix documentation as this machine will be acting as > the primary mail server for outgoing mail and the second MX entry for > incoming. > > The server has hosts.deny set to ALL:ALL but smtp in hosts.allow is > also set to ALL. > > Running a postconf -n results in the following output: > [...] > relay_domains = domain1.co.uk, domain2.co.uk, domain3.co.uk > No relay_recipient_maps? You seem to be heading to be a (Back|Out)scatter source. Highly suggest you have a static map or db map (LDAP,SQL) of real users. > > Oct 6 14:57:21 merlin postfix/trivial-rewrite[13474]: fatal: open > database /etc/postfix/virtual.db: No such file or directory > You forgot to run 'postmap hash:/etc/postfix/virtual'. This must be done for all hash, cdb, btree, (s)dbm files that you define as maps. > > Do I need to manually create virtual.db (and should I run a > set-permissions from postconf if I do?), or is that incidental to the > other errors? Are these errors the reason it won't accept connections > on port 25, or is there an error in the config above? > Does master.cf have an uncommented line for the smtpd service? What happens if you remove (comment) the line from hosts.deny? Brian TNT Post is the trading name for TNT Post UK Ltd (company number: 04417047), TNT Post (Doordrop Media) Ltd (00613278), TNT Post Scotland Ltd (05695897), TNT Post North Ltd (05701709), TNT Post South West Ltd (05983401), TNT Post Midlands Limited (6458167)and TNT Post London Limited (6493826). Emma's Diary and Lifecycle are trading names for Lifecycle Marketing (Mother and Baby) Ltd (02556692). All companies are registered in England and Wales; registered address: 1 Globeside Business Park, Fieldhouse Lane, Marlow, Buckinghamshire, SL7 1HY.
