permit_sasl_authenticated,
...so I can remove the one above, right, as it doesn't apply to
port 25? There is no way that it can be met, as
smtpd_sasl_auth_enable is set to NO by default. I assume it's
harmless to leave, but won't serve any purpose?
Think clearly, and trust cold hard logic over any answer this list
may provide. :-)
--
Viktor.
P.S. If the above is not clear, yes your analysis is correct.
----- End message from Viktor Dukhovni <[email protected]> -----
:-D
Thanks Viktor. Always hard when you have to explain a punchline... ;-)
Now I am confident I have a reasonable understanding of the Poostfix
config, next steps for migrating to my CentOS7 new Postfix server...
I have validated that the new server can send and receive, including
tests for delivery to its local new cyrus-imapd - by command-line
mailx to a SASL-verifiable local user, and to a non-verifiable one
(which was rejected), from both localhost and other hosts on the local
network.
My migration plan is to break it down into stages:
1. Outbound SMTP first (COMPLETED) - set outbound SMTP (port 587) from
Horde (on another server) to the new CentOS 7 / postfix server. As the
new server also thinks it is destination for my domain names (in
preparation for its new role), set it to deliver mail for local users
back to the old server's cyrus-imapd for now over IP LMTP instead of
to the new empty cyrus-imapd on local socket LMTP.
In new server's main.cf:
mailbox_transport = lmtp:server04:lmtp
Old server's cyrus.conf:
lmtp cmd="lmtpd -a" listen="lmtp" prefork=1
2. Then do inbound SMTP (postscreen!) Not done yet.
3. Once SMTP is all good on the new server, migrate mailboxes to
cyrus-imapd on new server, point Horde to the new IMAP server, and set
new postfix to deliver to local cyrus-imapd socket again.
All sound reasonable?
The big test will be inbound SMTP, but that will have to wait until I
can get on to my router and change port forward rules.
--
Simon Wilson
M: 0400 12 11 16
