On 15 February 2017 at 10:51, Henry <der...@gmail.com> wrote: > When reading through main.cf and configuring postfix I am unsure of > which domain, origin and hostname values to use. > > For example say our public domain is mydomain.com and we have a > certificate for mail.mydomain.com and our MX points to > mail.mydomain.com > > Our mail server called hermes runs our our lan who'se domain is mydomain.local > > In main.cf is: > myorigin hermes.mydomain.local or mail.mydomain.com > myhostname hermes or mai > dydoman mydomain.local or mydomain.com >
I have a certificate for mydomain.tld (not for mail1.mydomain.tld) and use as follows: mydomain = mydomain.tld myorigin = $mydomain myhostname: hard coded to valid external fqdn for this machine - not necessarily the reverse fqdn e.g. mail1.mydomain.tld smtpd_banner: hard coded to the reverse fqdn for this machine as given by, for instance: dig +short -x $(dig +short myip.opendns.com @resolver1.opendns.com) It doesn't matter that the certificate is not for the fqdn or reverse fqdn of your server, but I think it is good that the server's announced name is its real reverse fqdn, some senders might check this.
