Re: 554 5.7.1 relay access denied

Fri, 12 Feb 2010 07:51:26 -0800 

On 2/12/2010 12:18 AM, Jeff Lacki wrote:

Im going out of my mind trying to get relaying working
for my users who want to use my domain as their smtp
outgoing server.

Ive setup SASL and TLS successfully (I believe).
I have the following:

relay_transport = hash:/etc/postfix/transport
relay_transport must specify a transport name from master.cf, NOT a map. Remove the above setting. 
http://www.postfix.org/postconf.5.html#relay_transport
Anyway, this setting controls outgoing mail for relay_domains. This doesn't appear to be something you need, so remove it. 




and in transport I have:

.mydomain.com   :


Remove this too.



I see my test run connecting but then getting denied
for relaying:

Feb 12 06:02:21 202010-1 postfix/smtpd[23305]: connect from 
99-74-xxx-xxx.lightspeed.cicril.sbcglobal.net[99.74.xxx.xxx]
Feb 12 06:02:21 202010-1 postfix/smtpd[23305]: setting up TLS connection from 
99-74-xxx-xxx.lightspeed.cicril.sbcglobal.net[99.74.xxx.xxx]
Feb 12 06:02:21 202010-1 postfix/smtpd[23305]: Anonymous TLS connection 
established from 99-74-xxx-xxx.lightspeed.cicril.sbcglobal.net[99.74.xxx.xxx]: 
SSLv3 with cipher DHE-RSA-AES256-SHA (256/256 bits)
Feb 12 06:02:21 202010-1 postfix/smtpd[23305]: NOQUEUE: reject: RCPT from 
99-74-xxx-xxx.lightspeed.cicril.sbcglobal.net[99.74.xxx.xxx]: 554 5.7.1<j...@rahul.net>: Relay 
access denied; from=<j...@mydomainname.com>  to=<j...@rahul.net>  proto=ESMTP 
helo=<[192.168.2.11]>
Feb 12 06:02:23 202010-1 postfix/smtpd[23305]: disconnect from 
99-74-xxx-xxx.lightspeed.cicril.sbcglobal.net[99.74.xxx.xxx]

I appreciate your help.
No indication that the user authenticated. When someone authenticates you'll get a log line something like Feb 12 09:24:06 mgate2 postfix/smtpd[93626]: E4E077978A8: client=user.example.org[192.168.1.163], sasl_method=CRAM-MD5, sasl_username=username 

Test your SASL setup as described in
http://www.postfix.org/SASL_README.html#server_test
Make sure you use "smtpd_tls_auth_only = no" so you can test unencrypted with telnet. 

If you need more help, please see
http://www.postfix.org/DEBUG_README.html#mail

  -- Noel Jones

Reply via email to