I am running Postfix 2.5.6 as a front-end gateway to an Exchange server and a Mailman server. I currently have about 25 domains that I receive mail for. Of those 25, 23 of them forward to the Exchange server and the other 2 forward to the Mailman server. I was using a "check_recipient_access hash:/etc/postfix/recipient_access" line in smtpd_restrictions which did a reject_unverified_recipient for all of the domains to avoid any backscatter situation. I have decided to create a local relay_recipient map file from the Exchange server to avoid all of the lookups. This seems to be working pretty well. But, my question is, can I still use the reject_unverified_recipient option for the two domains that forward to the Mailman server but use the local relay_recipient map for the other domains? My current setup does not appear to work, but maybe I have it configured wrong.
Here is a copy of my postconf -n alias_database = hash:/etc/aliases alias_maps = hash:/etc/aliases append_dot_mydomain = no biff = no bounce_queue_lifetime = 3d config_directory = /etc/postfix content_filter = smtp-amavis:[127.0.0.1]:10024 delay_warning_time = 4h inet_interfaces = all mailbox_command = procmail -a "$EXTENSION" mailbox_size_limit = 0 masquerade_domains = mail.turners.com maximal_queue_lifetime = 3d mydestination = mail.turners.com, localhost.turners.com, , localhost mydomain = turners.com myhostname = mail.turners.com mynetworks = 127.0.0.0/8 192.168.0.0/16 [::ffff:127.0.0.0]/104 [::1]/128 myorigin = /etc/mailname proxy_interfaces = 72.166.138.4 readme_directory = no recipient_bcc_maps = hash:/etc/postfix/recipient_bcc recipient_delimiter = + relay_domains = hash:/etc/postfix/relay_domains relay_recipient_maps = hash:/etc/postfix/exchange_recipients hash:/etc/postfix/relay_recipients relayhost = sender_bcc_maps = hash:/etc/postfix/sender_bcc smtp_helo_name = mail.turners.com smtpd_banner = $myhostname ESMTP $mail_name (Debian/GNU) smtpd_policy_service_timeout = 240s smtpd_recipient_restrictions = permit_mynetworks permit_sasl_authenticated reject_unauth_pipelining reject_unauth_destination reject_unknown_recipient_domain reject_unlisted_recipient check_helo_access hash:/etc/postfix/helo_access check_sender_access hash:/etc/postfix/sender_access check_recipient_access hash:/etc/postfix/recipient_access check_policy_service inet:127.0.0.1:2501 reject_rbl_client zen.spamhaus.org reject_rbl_client dnsbl.njabl.org smtpd_restriction_classes = inside_only soft_bounce = no transport_maps = hash:/etc/postfix/transport unknown_local_recipient_reject_code = 550 unknown_relay_recipient_reject_code = 550 unverified_recipient_reject_code = 550 unverified_recipient_reject_reason = User not found
