I am calling the LDAP config this way in my main.cf file relay_recipient_maps = ldap:/etc/postfix/ldap_relay_recipients.cf, ldap:/etc/postfix/ldap_groups_recipients.cf
recipients file looks something like this: # Directory settings domain = mycompany.com, sales.mycompany.com, someotherdomain.com, yetanotherdomain.com server_host = internalldaphost.mycompany.com search_base = dc=ldapdomain, dc=mycompany, dc=com version = 3 So idaho.sales.mycompany.com is not listed in the search, but any mail routed there gets LDAP verified and therefore dropped since the addresses are not vlaid in LDAP. (but they are on the application server it is being routed to) -----Original Message----- From: Wietse Venema [mailto:wie...@porcupine.org] Sent: Monday, May 16, 2016 1:57 PM To: Gomes, Rich <gomes-r...@aramark.com> Cc: Postfix users <postfix-users@postfix.org> Subject: Re: Exclude a sub domain from LDAP? The Postfix LDAP client requires an exact domain name match if you follow my instructions below. There is no subdomain logic. Wietse Gomes, Rich: > I think the issue is that I am already doing lookups on the parent domain. > Is there a way to exclude specific subdomains? Wietse: > According to the ldap_table(5) manpage, you can specify a list of > domain names with the "domain" parameter, such that Postfix will look > up only email addresses with a domain that matches the list.
