My smtpd is commented out entirely. I understood from others that
this was necessary to prevent incoming mail, since all my postfix
does is relay out mail.
Was that wrong?
The entire mail.conf, with securedomain* being my domains and 4444
or 55555 being my company ip addresses:
****************************Begin Conf**********************************
# See /usr/share/postfix/main.cf.dist for a commented, more
complete version
# Debian specific: Specifying a file name will cause the first
# line of that file to be used as the name. The Debian default
# is /etc/mailname.
#myorigin = /etc/mailname
smtpd_banner = $myhostname ESMTP $mail_name (Ubuntu)
biff = no
# appending .domain is the MUA's job.
append_dot_mydomain = no
# Uncomment the next line to generate "delayed mail" warnings
#delay_warning_time = 4h
readme_directory = no
# See http://www.postfix.org/COMPATIBILITY_README.html -- default
to 3.6 on
# fresh installs.
compatibility_level = 3.6
# TLS parameters
#smtpd_tls_cert_file=/etc/ssl/certs/ssl-cert-snakeoil.pem
#smtpd_tls_key_file=/etc/ssl/private/ssl-cert-snakeoil.key
#smtpd_tls_security_level=encrypt
smtp_tls_CApath=/etc/ssl/certs
smtp_tls_security_level=may
smtp_tls_session_cache_database =
btree:${data_directory}/smtp_scache
smtpd_relay_restrictions = permit_mynetworks
permit_sasl_authenticated defer_unauth_destination
myhostname = mail2
alias_maps = hash:/etc/aliases
alias_database = hash:/etc/aliases
myorigin = /etc/mailname
mydestination = $myhostname, securedomain1.com, securedomain2.com
(and on through all 22 domains) mail2, localhost.localdomain,
localhost
relayhost =
mynetworks = 127.0.0.0/8 4.4.4.4 5.5.5.5 [::ffff:127.0.0.0]/104
[::1]/128
mailbox_size_limit = 0
recipient_delimiter = +
inet_interfaces = all
inet_protocols = all
****************************End
Conf**********************************
Dnia 28.03.2024 o godz. 06:39:47 Samuel Goodies via Postfix-users pisze:So far I've chosen Internet Site as my Debian configuration when the package installed. I added my main domain name, though this postfix box will pass mail for several other domains as well. I edited /etc/postfix/main.cfUnder mynetworks I added my firewalled mail server's IP address of 4.4.4.4 (the real one though, not that) mynetworks = 127.0.0.0/8 4.4.4.4 [::ffff:127.0.0.0]/104 [::1]/128 Then I restarted with systemctl restart postfix Finally, I added it as my smarthost, but the error above occurs. I thought that adding my server's IP to the mynetworks line would authenticate, but I think I misunderstood. Can someone point me to where I messed up?The message says "authentication required", so it is possible that you set up the sending server to connect to your Postfix smarthost on a port that requires authentication (probably one of the submission ports, 465 or 587). There's no point at all in having the submission services enabled on the smarthost, as there is no authentication backend that can be used and no mail users who can authenticate. So you should set your sending server to send mail normally via port 25. If your sending server already sends mail to port 25, it is possible that you unnecessarily require authentication somewhere in smtpd_*_restrictions settings before you process permit_mynetworks, so please post these parameters.
_______________________________________________ Postfix-users mailing list -- postfix-users@postfix.org To unsubscribe send an email to postfix-users-le...@postfix.org
