Thanks Mr. Wietse, I'll try what you propose. Regards, Daniel
________________________________ Da: [email protected] per conto di Wietse Venema Inviato: mer 11.05.2011 13:18 A: Postfix users Oggetto: Re: R: R: Rules based on source IPs/Addresses Hubeli Daniel: > I will try to explain better what is my problem. > > In our structure we have "some" mail servers (for security reasons we have a > complete separate structure between internal and external network, when we > receive a mail from Internet we must use a terminal server to access the > external mail server): > > - An internal Exchange > - An external Exchenge > - An external appliance as a Mail relay for normal users mail traffic > - An external appliance as a Mail relay for batch/automatic mail traffic > > Usually when an "internal" server needs to send mails on internet we used to > open the port 25 on the firewall to permit that server to access the > "external batch mail relay". > > Now we'd like to implement an internal mail relay which will do the job of > send internet mail (through the ""external batch mail relay") for the > internal servers that need this. > > The problem is that this mail relay (postfix) should filter who and where can > send the mails; something like: > > Group of internal servers (SMTP clients) - Recipients permitted > client1,client4,client7 - [email protected], > <mailto:[email protected],[email protected]> [email protected] > client2,client3,client4 - [email protected], <mailto:[email protected],> > [email protected] <mailto:[email protected]> > Use a third-party policy daemon: postfwd, policyd, and the like allow you to set up rules. I decided years ago that I will not implement an universal access control language inside Postfix, because almost no-one needs this. Since this is concerned with *outbound* mail, there is no need to mess with relay_domains or relay_recipient_maps. Those are needed for *inbound* mail. Wietse
<<winmail.dat>>
