> where /etc/postfix/protected_destinations is for example:
>
> ...
> ali...@example.com allowed_list1
> ...
...
> However, when I try to use cidr tables (because I need to define
> subnets), it doesn't work correctly:
>
> smtpd_restriction_classes = allowed_list1
> allowed_list1= cidr:/etc/postfix/client.cidr,reject
> smtpd_recipient_restrictions =
>
> hash:/etc/postfix/protected_destinations,permit_mynetworks,permit_sasl_authenticated,reject_unauth_destination
>
> where /etc/postfix/protected_destinations is the same as above
> and /etc/postfix/client.cidr is:
>
> 10.10.10.0/25 OK
> 10.10.11.0/24 OK
>
> I've checked that for example:
>
> postmap -q "10.10.11.10" cidr:/etc/postfix/client.cidr
>
> returns OK, so it should be working, but it doesn't; access to
> ali...@example.com is denied to client with IP address 10.10.11.10,
> although it is included in a subnet in client.cidr file.
>
> What am I doing wrong?
You need to show logfile evidence that you are actually sending to
ali...@example.com, from an email client that actually is in the
allowed subnets. If you modify that evidence, then you do so at
your own risk.
Wietse
