>> My server's MX records points to some servers that do spam filtering >> then they send it to my server. However, some servers ignore the >> MX record and are connecting directly to my server (using the IP >> returned by the DNS A record I presume). I am trying to set up >> an smtpd restrictions for all incoming mail except when it comes >> from the servers I know about. I'm struggling to figure out how >> I'd do this. >> >> I think the solution is to use check_helo_access by changing my >> main.cf like so: >> >> smtpd_recipient_restrictions = ... reject_unauth_destination >> check_helo_access hash:/etc/postfix/helo_access > > Use "check_client_access cidr:/etc/postfix/client_access" with > a table that "permit"s the IP addresses that are allowed to connect. > > Wietse
Would it look like this? smtpd_client_restrictions = permit_mynetworks permit_sasl_authenticated check_client_access cidr:/etc/postfix/client_access deny /etc/postfix/client_access 127.0.0.0/8 OK [::1]/128 OK # my networks OK Is there any way to test this first? Would this work or is it pure silliness? smtpd_client_restrictions = permit_mynetworks permit_sasl_authenticated check_client_access cidr:/etc/postfix/client_access warn_if_reject reject permit James Reynolds Sr Systems Administrator Department of Biology The University of Utah 801-585-3086
