On Mon, August 25, 2014 2:06 am, Viktor Dukhovni wrote:
> If your relay restrictions look like:
> main.cf:
> indexed = ${default_database_type}:${config_directory}/
> smtpd_relay_restrictions = check_sasl_access ${indexed}sasl-access,
> permit_sasl_authenticated, permit_mynetworks, reject_unauth_destination
I have smtpd_recipient_restrictions like below:
so, anywhere prior to "permit_sasl_authenticated" is OK, yes?
-------------------------------
smtpd_recipient_restrictions =.
reject_unknown_sender_domain,.
reject_unknown_recipient_domain,.
reject_non_fqdn_sender,.
reject_non_fqdn_recipient,.
reject_unlisted_recipient,.
check_policy_service inet:127.0.0.1:7777,.
permit_mynetworks,
permit_sasl_authenticated,
reject_unauth_destination,
check_recipient_access hash:/etc/postfix/recipient_no_checks,
check_recipient_access pcre:/etc/postfix/recipient_checks.pcre,
check_helo_access hash:/etc/postfix/helo_checks,
check_sender_access hash:/etc/postfix/sender_checks,
check_client_access hash:/etc/postfix/client_checks,
check_client_access pcre:/etc/postfix/client_checks.pcre,
reject_rbl_client zen.spamhaus.org,
reject_rhsbl_client dbl.spamhaus.org,
reject_rhsbl_sender dbl.spamhaus.org,
reject_rbl_client psbl.surriel.com,
reject_rhsbl_sender dsn.rfc-ignorant.org,
check_policy_service inet:127.0.0.1:10031
