I guess I'm still missing something so here's my 'postfix -n' output and
logfile showing the rejection.
-Eric
for postfix to accept mail for a domain (from anywhere), the domain
needs to be found in one (and only one of):
- mydestination (this is for mail delivered to a unix account)
- relay_domains (this is for mail passed to another MTA)
- virtual_mailbox_domains (this is for mail delivered to a "virtual"
user)
- virtual_alias_domains (this is for mail rewritten to another address
in another domain)
as you can see, there is no *_recipient_maps here. if you get "relay
access denied", then the domain is not listed in one of the above
mentioned classes.
if this sin't clear, please show rejection logs (unaltered, unedited) as
well as output of 'postconf -n' (because it probably changed since your
last post).
alias_database = hash:/etc/aliases
alias_maps = hash:/etc/aliases, ldap:ldap
anvil_rate_time_unit = 60s
append_dot_mydomain = yes
body_checks = pcre:/etc/postfix/access/body_access
broken_sasl_auth_clients = yes
command_directory = /usr/sbin
config_directory = /etc/postfix
daemon_directory = /usr/lib/postfix
default_rbl_reply = $rbl_code Service unavailable; $rbl_class [$rbl_what]
blocked using $rbl_domain${rbl_reason?; $rbl_reason}. Contact
<postmas...@whoi.edu> if this is in error.
header_checks = pcre:/etc/postfix/access/header_access
html_directory = /usr/share/doc/postfix/html
mailbox_size_limit = 0
message_size_limit = 104857600
mydestination = $myhostname, obtest.$mydomain, outbox.$mydomain,
mail.$mydomain, localhost.$mydomain, localhost.localdomain, localhost,
beachcomberscompanion.net, whoi.net, oceansites.org, interridge.org
myhostname = obtest.whoi.edu
mynetworks = 128.128.0.0/16, 127.0.0.0/8, 199.92.168.150, 172.16.8.0/24
myorigin = $mydomain
parent_domain_matches_subdomains =
permit_mx_backup_networks = $mynetworks
rbl_reply_maps = hash:/etc/postfix/access/dnsbl_replies
readme_directory = /usr/share/doc/postfix
recipient_delimiter = +
relay_domains = $mydomain, oceanus.whoi.edu, atlantis.whoi.edu
knorr.whoi.edu, bosun.whoi.edu, striker.whoi.edu, striker2.whoi.edu,
sssg1.whoi.edu
relayhost =
relocated_maps = hash:/etc/postfix/relocated
setgid_group = postdrop
smtpd_banner = $myhostname ESMTP $mail_name (Debian/GNU)
smtpd_client_connection_rate_limit = 60
smtpd_client_message_rate_limit = 250
smtpd_client_new_tls_session_rate_limit = 60
smtpd_client_recipient_rate_limit = 300
smtpd_client_restrictions = check_client_access
hash:/etc/postfix/access/connect_client_access
smtpd_error_sleep_time = 5s
smtpd_etrn_restrictions = permit_mynetworks, reject
smtpd_hard_error_limit = 20
smtpd_helo_required = yes
smtpd_recipient_restrictions = permit_sasl_authenticated,
check_recipient_access pcre:/etc/postfix/access/final_recipient_access,
reject_unauth_pipelining, check_helo_access
pcre:/etc/postfix/access/final_helo_access, check_client_access
hash:/etc/postfix/access/final_client_access, check_sender_access
pcre:/etc/postfix/access/final_sender_access, permit_mynetworks,
permit_auth_destination, permit_mx_backup,
reject_unknown_sender_domain, reject_unauth_destination,
check_helo_access pcre:/etc/postfix/access/suspect_helo,
reject_rbl_client autospam.whoi.edu, reject_rhsbl_sender
dsn.rfc-ignorant.org, reject_rbl_client zen.spamhaus.org,
reject_rbl_client dnsbl.ahbl.org, reject_rbl_client
http.dnsbl.sorbs.net, reject_rbl_client socks.dnsbl.sorbs.net,
reject_rbl_client misc.dnsbl.sorbs.net, reject_rbl_client
web.dnsbl.sorbs.net, reject_rbl_client dul.dnsbl.sorbs.net,
reject_rbl_client list.dsbl.org, reject_rbl_client bl.spamcop.net,
reject_rbl_client cbl.abuseat.org, reject_rbl_client
combined.njabl.org, reject_rbl_client bhnc.njabl.org
smtpd_restriction_classes = require_reverse_dns
smtpd_sasl_local_domain =
smtpd_sasl_security_options = noanonymous
smtpd_soft_error_limit = 10
smtpd_tls_CAfile = /etc/postfix/tls/DigiCertCA.crt
smtpd_tls_cert_file = /etc/postfix/tls/star_whoi_edu.crt
smtpd_tls_key_file = /etc/postfix/tls/private.key
smtpd_tls_loglevel = 1
smtpd_tls_received_header = yes
smtpd_tls_session_cache_timeout = 3600s
tls_random_source = dev:/dev/urandom
transport_maps = hash:/etc/postfix/transport
unknown_local_recipient_reject_code = 550
virtual_alias_domains = $virtual_alias_maps
virtual_alias_maps = hash:/etc/postfix/virtual, ldap:vldap
May 11 12:24:19 obtest postfix/postfix-script[4849]: warning: /var/spool/postfix/etc/resolv.conf and /etc/resolv.conf differ
May 11 12:24:19 obtest postfix/postfix-script[4871]: starting the Postfix mail system
May 11 12:24:19 obtest postfix/master[4872]: daemon started -- version 2.5.5, configuration /etc/postfix
May 11 12:25:34 obtest postfix/smtpd[4878]: connect from web62403.mail.re1.yahoo.com[69.147.75.80]
May 11 12:25:34 obtest postfix/smtpd[4878]: NOQUEUE: reject: RCPT from web62403.mail.re1.yahoo.com[69.147.75.80]: 554 5.7.1 <e...@sanguine.whoi.edu>: Relay access denied; from=<ecunningham5...@yahoo.com> to=<e...@sanguine.whoi.edu> proto=SMTP helo=<web62403.mail.re1.yahoo.com>
May 11 12:25:34 obtest postfix/smtpd[4878]: disconnect from web62403.mail.re1.yahoo.com[69.147.75.80]
May 11 12:25:58 obtest postfix/postfix-script[4885]: stopping the Postfix mail system
May 11 12:25:58 obtest postfix/master[4872]: terminating on signal 15
