On 7/11/2011 8:12 PM, Ron Garret wrote: > I'm trying to set up a relay host with authentication according to these > instructions: > > http://anothersysadmin.wordpress.com/2009/02/06/postfix-as-relay-to-a-smtp-requiring-authentication/ > > but it's not working. I know my SMTP server is set up properly because I can > send mail using various other clients, but postfix is apparently not even > attempting to authorize. Here are the relevant lines from main.cf: > > relayhost = secure.genesisgroup.info > smtp_sasl_auth_enable = yes > smtp_sasl_password_maps = hash:/etc/postfix/sasl_passwd > smtp_sasl_security_options = > > Here is a log excerpt from my server from a successful login from a different > client (python smtplib): > > Jul 11 17:59:57 vm01 postfix/smtpd[812]: connect from > ec2-184-73-65-10.compute-1.amazonaws.com[184.73.65.10] > Jul 11 17:59:58 vm01 postfix/smtpd[812]: A567C4CA949: > client=ec2-184-73-65-10.compute-1.amazonaws.com[184.73.65.10], > sasl_method=LOGIN, sasl_username=XXX > > and here's the same thing when Postfix tries to connect between the same two > machines: > > Jul 11 18:00:26 vm01 postfix/smtpd[820]: connect from > ec2-184-73-65-10.compute-1.amazonaws.com[184.73.65.10] > Jul 11 18:00:26 vm01 postfix/smtpd[820]: NOQUEUE: reject: RCPT from > ec2-184-73-65-10.compute-1.amazonaws.com[184.73.65.10]: 554 5.7.1 > <ron.gar...@gmail.com>: Relay access denied; from=<r...@sunfire-offices.com> > to=<ron.gar...@gmail.com> proto=ESMTP helo=<mail.sunfire-offices.com> > > As you can see, postfix is not even attempting to authorize. > > What am I doing wrong?
You're not telling us what you're attempting to accomplish for starters. You're showing smtpd logging, but the relayhost parameter applies to smtp, not smtpd. Your logging shows a host connecting to your Postfix server, not your Postfix server connecting to secure.genesisgroup.info. When you specify relayhost you're telling Postfix to forward all non local outbound mail to a gateway instead of delivering it directly to internet MX destinations. Either you don't understand the relayhost parameter, or I simply don't understand your goal here, or probably both. -- Stan
