tejas sarade:
> I just want to creat and access control system where I will provide the
> list of valid hostname(FQDN).
> Postfix will lookup the IP of that FQDN through public DNS and consider
> that IP as trusted IP.
Access control by hostname is not reliable if you rely on remote
DNS servers.
- Remote DNS lookups sometimes time out.
- Postfix will not give acces based on PTR records; access based on
the hostname requires that the PTR name resolves to the client IP
address.
Instead, use access control based on the client IP address, SASL
authentication, client TLS certificate, or client TLS public-key
fingerprint.
Wietse
