On Wed, Aug 07, 2013 at 09:58:12AM -0700, Lynn Dobbs wrote: > I've read the postscreen man page and the "Postfix Postscreen > Howto" and I'm left with one question. > > Is it possible to limit postscreen to a particular ip:port like > smtpd? Like this: > > my.public.ip.address:smtpd pass - - n - - smtpd
Yes, but the first "smtpd" should be a name from services(5), here being "smtp" to indicate TCP port 25. > The documentation, as far as I can tell, does not explicitly > say it can be done but gives me the feeling that it can't > (shouldn't?) be done. I would much rather use postscreen over > the greylisting (gld-ng) that I'm using now. I think the master(5) manual is reasonably explicit in defining the fields and how they are used. See "Service name" and "Service type" "inet". It's probably not that unusual to want postscreen only on one IP address. For example, many older sites are still providing MSA service on port 25. You definitely do not want to put user MUAs through postscreen. -- http://rob0.nodns4.us/ -- system administration and consulting Offlist GMX mail is seen only if "/dev/rob0" is in the Subject:
