Hello,
I am trying to update my configuration in light of the new
smtpd_relay_restrictions in Postfix 2.10. I did read some threads and
documentation, but I am a bit confused about which reject_* should be in
each rulechain.
I am hoping someone could quickly check my work, and let me know if I'm
committing any grave or mortal Postfix and SMTP sins, if I deploy the
configuration below.
Thanks,
Matthew.
smtpd_relay_restrictions =
permit_sasl_authenticated,
permit_mynetworks,
reject_unauth_destination
smtpd_recipient_restrictions =
reject_invalid_hostname,
reject_non_fqdn_hostname,
reject_non_fqdn_sender,
reject_non_fqdn_recipient,
reject_unknown_sender_domain,
reject_unknown_recipient_domain,
reject_unauth_destination,
check_recipient_access pcre:/etc/postfix/recipient_checks.pcre,
check_helo_access hash:/etc/postfix/helo_checks,
check_sender_access hash:/etc/postfix/sender_checks,
check_client_access hash:/etc/postfix/client_checks,
check_client_access pcre:/etc/postfix/client_checks.pcre,
reject_rbl_client zen.spamhaus.org,
# reject_rbl_client cbl.abuseat.org,
# reject_rbl_client list.dsbl.org,
# reject_rbl_client sbl.spamhaus.org,
# reject_rbl_client pbl.spamhaus.org
permit
