On Thu, Apr 07, 2011 at 12:31:55PM +0100, Bernhard Rohrer wrote:
> I assume you are talking about the submission port?
>
> simply create a second one (I used 588) and limit it to the internal IP range
> and don't require TLS and auth.
No need.
master.cf:
submission inet n - n - - smtpd
-o smtpd_tls_security_level=may
-o smtpd_sasl_auth_enable=yes
-o smtpd_tls_auth_only=yes
-o smtpd_client_restrictions=$submission_client_restrictions
-o milter_macro_daemon_name=ORIGINATING
main.cf:
submission_client_restrictions =
permit_mynetworks,
reject_plaintext_session,
permit_sasl_authenticated
--
Viktor.
