Am 17.04.2011 17:50, schrieb Sahil Tandon: > On Sun, 2011-04-17 at 17:39:34 +0200, Reindl Harald wrote: > >> Am 17.04.2011 17:34, schrieb Sahil Tandon: >>> On Sun, 2011-04-17 at 17:18:04 +0200, Reindl Harald wrote: >>> >>>> why is "reject_unlisted_sender" before "permit_mynetworks" ignored? >>>> >>>> Apr 17 17:16:41 arrakis postfix/smtpd[31521]: B244136033: >>>> client=unknown[10.0.0.6] >>>> Apr 17 17:16:41 arrakis postfix/cleanup[31524]: B244136033: >>>> message-id=<d36654ef751260e1956332381f597...@www.rhsoft.net> >>>> Apr 17 17:16:41 arrakis postfix/qmgr[31508]: B244136033: >>>> from=<reindl.har...@gmail.com>, size=5272, nrcpt=1 (queue >>>> active) >>> >>> Do you expect reject_unlisted_sender to act on 'reindl.har...@gmail.com' >>> even though 'gmail.com' is not defined as one of your domains? >> >> exactly > > Then the reject_unlisted_sender access restriction is the wrong tool, > because it only acts on envelopes in which the sender domain is defined > in one of your domain classes.
seems for me too i think postfix can anything and more than i will ever know :-) >> everybody on this machine should can use the machines ip-addr as >> smtp-relay but only with domains listed on our main-server > > You could use check_sender_access to enforce specific sender domains. this was one of my thougts after lot of "googleing" but it seems i am too stoopid to realize how to use it i have the table "dbma_mta" where the allowed omains are listed in the column "mydestination" and no idea how to use this for "check_sender_access" one of my guesses would be query = select 'OK' from dbma_mta where mydestination='%d'; but since this is a production system and since some hours i have a big luck that everytime i tries something no messages are sent because of sunday :-)
signature.asc
Description: OpenPGP digital signature
