On 6/27/2018 2:44 PM, dur...@mgtsciences.com wrote: > In our live system, I have firewall forwarding port 25 to mail > server. That mail server then delivers mail to Domino server. > > I am testing on a VM, and I have this much configured and working > within our LAN. > > I am unclear as to delivery restrictions. The default for > mynetworks_style is subnet, so email will be accepted from any > machine on LAN. > Does this restrict email coming in from internet? Since I can't > test with live system, I can't forward port 25 to VM for testing. > > My goal: > I am migrating from Sendmail. In Sendmail I use virtusertable to > pass only defined users on to Domino server. > The problem I am having with Sendmail is, it does not reject email > to unknown users, even with > @mydomain.com ERROR > at end of file. I am hoping Postfix can do this. So I need to know > how to receive email from internet > and reject unknown users, preferable before initial handshaking is > complete and the whole emaill has been > transferred. > > Thank you
The mynetworks and mynetworks_style settings are for which machines will be able to relay mail. Any machine should be able to send mail to relay_domains, which is where your internal server should be listed. Typically, you would set mynetworks manually to specify the allowed hosts/subnets and mynetworks_style won't be used. Assuming your internal domain is listed in relay_domains, valid users are listed in relay_recipient_maps, or postfix can use reject_unverified_recipient to build a list automatically with address probes. A minimal config example can be found here: http://www.postfix.org/STANDARD_CONFIGURATION_README.html#firewall Some other pertinent pages: http://www.postfix.org/ADDRESS_CLASS_README.html http://www.postfix.org/ADDRESS_VERIFICATION_README.html -- Noel Jones
