Hello!
*main.cf config:*
smtp_tls_policy_maps = hash:/etc/postfix/maps/tls_policy
transport_maps = proxy:mysql:/etc/postfix/mysql/relay-transport.cf
*Postmap query:*
postmap -q i...@testkund.domain.tld
mysql:/etc/postfix/mysql/relay-transport.cf
smtp:d748.dev-cust.domain.tld:6666
postmap -q [d748.dev-cust.domain.tld]:6666 hash:/etc/postfix/maps/tls_policy
[d748.dev-cust.domain.tld]:6666 none
/"The TLS policy table is indexed by the full next-hop destination,
which is either the recipient domain, or the verbatim next-hop specified
in the transport table, $local_transport, $virtual_transport,
$relay_transport or $default_transport. This includes any enclosing
square brackets and any non-default destination server port suffix. The
LMTP socket type prefix (inet: or unix:) is not included in the lookup
key./"
*
**default setting is:*
smtp_tls_CAfile = /etc/ssl/certs/ca-certificates.crt
smtp_tls_loglevel = 1
smtp_tls_security_level = may
smtp_tls_session_cache_database = btree:${data_directory}/smtp_scache
smtp_tls_protocols = !SSLv2,!TLSv1.1,!TLSv1.2
smtp_tls_exclude_ciphers = 3DES:MD5
smtp_tls_policy_maps = hash:/etc/postfix/maps/tls_policy
It isn't using the tls_policy_maps setting. I've must have done
something wrong or totally misunderstood this.
This isn’t working as-well: testkund.domain.tld none (in tls_policy_maps)
postfix 2.9.6-2 amd64 (on debian wheezy) (tested
2.11.1 as-well)
Mailflow:
ORGINATING->SMTPD->AFTER-QUEUE-Amavisd-new->SMTPD:10030->SMTP->END (all
in some instance( /etc/postfix))
And between (SMTP->END) I want to use the tls_policy_map.
I hope I’ve described the problem so you understands me :)
PS. no chroot what-so ever.
signature.asc
Description: OpenPGP digital signature
