On 1/12/2017 1:58 πμ, Benny Pedersen wrote:
change hash to cidr
I have already tried cidr with no luck:
smtpd_recipient_restrictions =
check_client_access cidr:/etc/postfix/localhost.cidr
check_recipient_access hash:/etc/postfix/protected_destinations
permit_sasl_authenticated
reject_unverified_recipient
reject_unauth_destination
# cat /etc/postfix/localhost.cidr
194.177.195.166 OK
127.0.0.1 OK
::1 OK
2001:648:2011:15::166 OK
(I also tried to enclose IPv6 addresses in square brackets, which did
not change things.)
or add permit_mynetworks instead of check_client_access
I don't want to permit_mynetworks, because I want to force clients to
sasl-authenticate (with the exception of localhost).
Any ideas?
Nick
