Please Help
I have implemented this method but it has had an unexpected and unwelcome
effect.
All external mail (email not in the relay_domains file) is being blocked with
the following error:
NOQUEUE: reject: RCPT from unknown[10.40.80.11]: 554 5.7.1
<nou...@someotherdomain.com>: Relay access denied;
I had tested in our QA environment where we are doing this already thru this
line:
default_transport = error:invalid destination domain
This line is not in the main.cf file in Production yet all external email is
being rejected.
Inceeasing logging reveals this error:
generic_checks: name=reject_unauth_destination status=2
I am not sure where this setting could be.
Here is the smtp_client_restrictions setting:
smtpd_client_restrictions = check_client_access
cidr:/etc/postfix/client_access.cidr
reject
If I back out my changes (i.e.. comment out the smtpd restrictions) the issue
remains
-----Original Message-----
From: Gomes, Rich
Sent: Thursday, May 19, 2016 4:10 PM
To: Postfix users <postfix-users@postfix.org>
Subject: RE: postfix ignoring access file?
I like this method.
And it's working as expected.
Thanks to all
-----Original Message-----
From: owner-postfix-us...@postfix.org [mailto:owner-postfix-us...@postfix.org]
On Behalf Of Bill Cole
Sent: Thursday, May 19, 2016 3:56 PM
To: Postfix users <postfix-users@postfix.org>
Subject: Re: postfix ignoring access file?
On 19 May 2016, at 13:53, Gomes, Rich wrote:
> Ok, this looks close.
>
> So the reject at the end is the only way to replicate the "if not in
> the "allow list", you are not authorized to "relay"?
One other way would be to add a 'reject' directive at the end of the
smtpd_client_restrictions list:
/etc/postfix/main.cf:
smtpd_client_restrictions =
check_client_access cidr:/etc/postfix/client_access.cidr
reject
