Hi - I've got a small mail server (~50 users) and our Postfix (3.6.4) config is pretty old and confusing, and may not be doing things we want. So I'd like to re-jig it. Here's how I think I'd like to have it:
1. Incoming mail (not from $mynetworks or sasl auth): RBL, SPF/DKIM verification and SA (and maybe DMARC as not doing so currently). 2. Mail originating from $mynetworks and also from sasl-auth clients: DKIM signing, SA, Rate/IP limiting (and maybe RBL checks? Not sure). I think I can do that by having all our "global" settings in main.cf https://pastebin.com/VKfNW0hu and then specifying various extra bits and overrides in master.cf: https://pastebin.com/Qcpt29PV BTW I'm using a script (policyd.pl) that does weighted scoring for RBLs (as well as SPF), which I'd prefer rather than doing that with Postfix directly. I've put a couple of questions in as comments in the configs - any thoughts/suggestions very much appreciated! :-) Jonathan
_______________________________________________ Postfix-users mailing list -- postfix-users@postfix.org To unsubscribe send an email to postfix-users-le...@postfix.org
