Hi, I've gotten postfix working with multiple IPs/domains/ssl certs, and so far so good. I used the accepted answer at this link as a template:
http://serverfault.com/questions/650057/postfix-multiple-ip-smtp-banner It works fine, until I try to add postscreen into the mix. So the setup is, in master.cf, first a clause for the local server: 127.0.0.1:smtp inet n - n - - smtpd -o syslog_name=postfix-localhost -o smtp_helo_name=localhost -o smtp_bind_address=127.0.0.1 -o myhostname=localhost (I'm not actually sure if that's necessary.) Then, for each of my two IP addresses, a block of services like so: # for the domain blue.com 50.56.xxx.xxx:submission inet n - n - - smtpd -o smtpd_tls_key_file=/etc/ssl/private/blue.key -o smtpd_tls_cert_file=/etc/ssl/private/blue.pem 50.56.xxx.xxx:smtpd pass - - n - - smtpd -o smtpd_tls_key_file=/etc/ssl/private/blue.key -o smtpd_tls_cert_file=/etc/ssl/private/blue.pem 50.56.xxx.xxx:smtp inet n - n - - smtpd -o smtpd_tls_key_file=/etc/ssl/private/blue.key -o smtpd_tls_cert_file=/etc/ssl/private/blue.pem -o syslog_name=blue.com -o smtp_helo_name=mail.blue.com -o smtp_bind_address=50.56.xxx.xxx -o myhostname=mail.blue.com blue-out unix - - n - - smtp -o smtp_bind_address=50.56.xxx.xxx -o smtp_helo_name=mail.blue.com -o syslog_name=blue.com There's another like that for red.com. Then in sender_dependent_default_transport_maps = hash:/etc/postfix/sender_transports sender_transports: @blue.com blue-out: @red.com red-out: This works great until I turn on postscreen: 50.56.xxx.xxx:smtp inet n - n - 1 postscreen Now, I send myself an email, and in the logs see: blue.com/postscreen[6578]: warning: cannot connect to service private/smtpd: Connection refused I really don't know where to go from here. I guess I suspect something to do with chroot'ing, which I don't really understand, but I don't know how to fix it. Any pointers much appreciated! Thanks, Eric
