OS X Postfix system rebuilt as a relay with no local mailboxes, but we're not passing inbound mail to the final destination except for the few people who have local accounts on the postfix server. Soft bounce is on....luckily (great safety net, Wietse). I have something that's negating reject_unverified_recipient and I don't see what it is. Can another set of eyes help? Thanks!
biff = no command_directory = /Applications/Server.app/Contents/ServerRoot/usr/sbin config_directory = /Library/Server/Mail/Config/postfix content_filter = smtp-amavis:[127.0.0.1]:10024 daemon_directory = /Applications/Server.app/Contents/ServerRoot/usr/libexec/postfix data_directory = /Library/Server/Mail/Data/mta debug_peer_level = 2 debugger_command = PATH=/bin:/usr/bin:/usr/local/bin:/usr/X11R6/bin ddd $daemon_directory/$process_name $process_id & sleep 5 dovecot_destination_recipient_limit = 1 header_checks = html_directory = /Applications/Server.app/Contents/ServerRoot/usr/share/doc/postfix/html inet_interfaces = all inet_protocols = all local_transport = error:local mail delivery is disabled mail_owner = _postfix mailbox_size_limit = 0 mailbox_transport = dovecot mailq_path = /Applications/Server.app/Contents/ServerRoot/usr/bin/mailq manpage_directory = /Applications/Server.app/Contents/ServerRoot/usr/share/man message_size_limit = 20485760 mydestination = mydomain = pointyears.net myhostname = miniserv.pointyears.net mynetworks = 127.0.0.0/8, [::1]/128 , 192.168.1.0/24 newaliases_path = /Applications/Server.app/Contents/ServerRoot/usr/bin/newaliases queue_directory = /Library/Server/Mail/Data/spool readme_directory = /Applications/Server.app/Contents/ServerRoot/usr/share/doc/postfix recipient_delimiter = - relay_domains = pointyears.net pointyears.org relayhost = smtp.comcast.net:587 sample_directory = /Applications/Server.app/Contents/ServerRoot/usr/share/doc/postfix/examples sendmail_path = /Applications/Server.app/Contents/ServerRoot/usr/sbin/sendmail setgid_group = _postdrop smtp_generic_maps = regexp:/Library/Server/Mail/Config/postfix/generic.regexp smtp_sasl_auth_enable = yes smtp_sasl_password_maps = hash:/Library/Server/Mail/Config/postfix/sasl/passwd smtp_sasl_security_options = noanonymous smtp_tls_CAfile = /etc/certificates/miniserv.pointyears.net.B7E7A056237425F3ECE71E44A5CB862B07003F3D.chain.pem smtp_tls_cert_file = /etc/certificates/miniserv.pointyears.net.B7E7A056237425F3ECE71E44A5CB862B07003F3D.cert.pem smtp_tls_key_file = /etc/certificates/miniserv.pointyears.net.B7E7A056237425F3ECE71E44A5CB862B07003F3D.key.pem smtp_tls_loglevel = 1 smtp_tls_mandatory_protocols = !SSLv2, !SSLv3 smtp_tls_protocols = !SSLv2, !SSLv3 smtp_tls_security_level = may smtp_use_tls = yes smtpd_banner = $myhostname ESMTP $mail_name ($mail_version) smtpd_client_restrictions = permit_mynetworks permit_sasl_authenticated permit smtpd_enforce_tls = no smtpd_helo_required = yes smtpd_helo_restrictions = smtpd_recipient_restrictions = permit_sasl_authenticated permit_mynetworks reject_unauth_destination reject_unverified_recipient smtpd_sasl_auth_enable = yes smtpd_tls_CAfile = /etc/certificates/miniserv.pointyears.net.B7E7A056237425F3ECE71E44A5CB862B07003F3D.chain.pem smtpd_tls_cert_file = /etc/certificates/miniserv.pointyears.net.B7E7A056237425F3ECE71E44A5CB862B07003F3D.cert.pem smtpd_tls_ciphers = medium smtpd_tls_exclude_ciphers = SSLv2, aNULL, ADH, eNULL, EXPORT smtpd_tls_key_file = /etc/certificates/miniserv.pointyears.net.B7E7A056237425F3ECE71E44A5CB862B07003F3D.key.pem smtpd_tls_loglevel = 1 smtpd_tls_mandatory_protocols = !SSLv2, !SSLv3 smtpd_tls_protocols = !SSLv2, !SSLv3 smtpd_tls_security_level = may smtpd_use_tls = yes soft_bounce = yes tls_random_source = dev:/dev/urandom transport_maps = hash:/Library/Server/Mail/Config/postfix/transport virtual_alias_domains = $virtual_alias_maps hash:/Library/Server/Mail/Config/postfix/virtual_domains virtual_alias_maps = $virtual_maps hash:/Library/Server/Mail/Config/postfix/virtual_users transport: pointyears.net smtp:[192.168.1.5]:587 pointyears.org smtp:[192.168.1.5]:587
