Hi,
I must be doing something wrong but I'm unable to add a
check_recipient_access restriction to smtpd in master.cf.
I have added the following additional smtpd daemon to master.cf
127.0.0.1:10027 inet n - n - 10 smtpd
-o smtpd_recipient_restrictions=check_recipient_access
hash:/etc/postfix/valid_recipient_domains reject
valid_recipient_domains contains:
example.com OK
(and I postmap'd the file)
If I restart Postfix and try to connect to port 10027 the following
error shows up in the mail log:
"fatal: parameter "smtpd_recipient_restrictions": specify at least one
working instance of: check_relay_domains, reject_unauth_destination,
reject, defer or defer_if_permit"
Strangely enough there is a "reject" parameter.
Could it be that check_recipient_access is not allowed in this case?
Kind regards,
Martijn Brinkers
PS I have attached the output of postconf -nf
alias_database = hash:/etc/aliases
alias_maps = hash:/etc/aliases
append_dot_mydomain = no
biff = no
config_directory = /etc/postfix
content_filter = djigzo:[127.0.0.1]:10030
djigzo_after_filter_message_size_limit = 512000000
djigzo_before_filter_message_size_limit = 10240000
djigzo_mailbox_size_limit = 512000000
djigzo_mydestination =
djigzo_myhostname = host.example.com
djigzo_mynetworks =
djigzo_parent_domain_matches_subdomains =
djigzo_rbl_clients =
djigzo_reject_unverified_recipient =
djigzo_relay_domains = example.com
djigzo_relay_transport_host = 192.168.1.2
djigzo_relay_transport_host_mx_lookup =
djigzo_relay_transport_host_port = 2525
djigzo_relayhost = 192.168.1.2
djigzo_relayhost_mx_lookup =
djigzo_relayhost_port = 2525
djigzo_smtp_helo_name =
djigzo_unverified_recipient_reject_code = 450
dovecot_destination_recipient_limit = 1
header_checks = pcre:/etc/postfix/header-checks
local_recipient_maps =
local_transport = error:local mail delivery is disabled
mail_name = Ciphermail
mailbox_size_limit = ${djigzo_mailbox_size_limit}
message_size_limit = ${djigzo_after_filter_message_size_limit}
mydestination = ${djigzo_mydestination}
myhostname = ${djigzo_myhostname}
mynetworks = 127.0.0.0/8, ${djigzo_mynetworks}
parent_domain_matches_subdomains = ${djigzo_parent_domain_matches_subdomains}
queue_minfree = 768000000
recipient_delimiter = +
relay_domains = ${djigzo_relay_domains}
relay_transport =
relay${djigzo_relay_transport_host?:${djigzo_relay_transport_host_mx_lookup:[}${djigzo_relay_transport_host}${djigzo_relay_transport_host_mx_lookup:]}:${djigzo_relay_transport_host_port}}
relayhost =
${djigzo_relayhost_mx_lookup:${djigzo_relayhost?[}}${djigzo_relayhost}${djigzo_relayhost_mx_lookup:${djigzo_relayhost?]}}${djigzo_relayhost?:${djigzo_relayhost_port}}
smtp_helo_name =
${djigzo_smtp_helo_name?$djigzo_smtp_helo_name}${djigzo_smtp_helo_name:${myhostname}}
smtp_sasl_auth_enable = yes
smtp_sasl_password_maps = hash:/etc/postfix/smtp_client_passwd
smtp_sasl_security_options =
smtp_sasl_type = cyrus
smtp_tls_CApath = /etc/ssl/certs
smtp_tls_security_level = may
smtpd_authorized_xforward_hosts = 127.0.0.1/32
smtpd_banner = $myhostname ESMTP $mail_name
smtpd_discard_ehlo_keywords = silent-discard, dsn, etrn
smtpd_etrn_restrictions = reject
smtpd_recipient_restrictions = permit_mynetworks reject_unauth_destination
check_client_access hash:/etc/postfix/client-whitelist check_client_access
hash:/etc/postfix/client-blacklist ${djigzo_rbl_clients}
${djigzo_reject_unverified_recipient? reject_unverified_recipient}
unverified_recipient_reject_code = ${djigzo_unverified_recipient_reject_code}
virtual_alias_maps = hash:/etc/postfix/virtual-aliases
virtual_mailbox_domains = ciphermail.private
virtual_mailbox_maps = pgsql:/etc/postfix/vmailbox.cf
virtual_transport = dovecot
