Hi,
> > > > Would I have to have multiple instances of postfix running to be able
> > > > to control which IP is used for which domain?
> > >
> > > Give each instance its owninet_inteerfaces setting.
> > >
> > > This is covered in
> > > http://www.postfix.org/BASIC_CONFIGURATION_READNE.html
> >
> > Is there a document that provides a bit more explanation as to how
> > this would work? Should I also be reading MULTI_INSTANCE?
>
> Yes. If you weant to separate outbound mail streams, use multiple
> instances with:
>
> http://www.postfix.org/BASIC_CONFIGURATION_README.html#myhostname
> http://www.postfix.org/BASIC_CONFIGURATION_README.html#mydomain
> http://www.postfix.org/BASIC_CONFIGURATION_README.html#inet_interfaces
Okay, after some reading and hair pulling, I decided to give it a
shot, and made some progress. A few questions, please.
After going through the MULTI_INSTANCE_README and restarting postfix,
it's still only listening on loopback (ipv4 only). I've also
configured "smtp_bind_address = 0.0.0.0" in postfix-out. I also
configured "inet_interfaces = all" in postfix-in and it still is only
listening on loopback.
# netstat -ntap|grep LISTEN|grep master
tcp 0 0 127.0.0.1:25 0.0.0.0:*
LISTEN 401001/master
Is there a diagram that shows the flow of data from the internet
through to the first instance, content filter, then out?
I have an existing system that uses amavisd, clamav and spamassassin
using "content_filter = smtp-amavis:[127.0.0.1]:10024". Just to be
sure, this (along with my postscreen and smtpd_recipient_restrictions)
goes in postfix-in, correct? Is that the reference to the proxy
filters around the middle of the page? Or is this talking about
creating another instance?
I don't understand what this from the MULTI_INSTANCE doc is for. Under
what circumstances do I need this? Should this instead be the
smtp-amavis service from my master.cf? Should I be able to drop in my
existing master.cf to use in postfix-in? While my content filter on
10024 appears to be active, 10025 is also seemingly being ignored.
/etc/postfix-out/master.cf:
# Replace default "smtp inet" entry with one listening on port 10026.
127.0.0.1:10026 inet n - n - - smtpd
My master.cf:
smtp-amavis unix - - n - 2 smtp
-o smtp_data_done_timeout=1200
-o smtp_send_xforward_command=yes
-o disable_dns_lookups=yes
-o max_use=20
127.0.0.1:10025 inet n - n - 2 smtpd
-o content_filter=
-o smtpd_delay_reject=no
-o smtpd_client_restrictions=permit_mynetworks,reject
-o smtpd_helo_restrictions=
-o smtpd_sender_restrictions=
-o smtpd_recipient_restrictions=permit_mynetworks,reject
-o smtpd_data_restrictions=reject_unauth_pipelining
-o smtpd_end_of_data_restrictions=
-o smtpd_restriction_classes=
-o mynetworks=127.0.0.0/8
-o smtpd_error_sleep_time=0
-o smtpd_soft_error_limit=1001
-o smtpd_hard_error_limit=1000
-o smtpd_client_connection_count_limit=0
-o smtpd_client_connection_rate_limit=0
-o
receive_override_options=no_header_body_checks,no_unknown_recipient_checks,no_milters
-o local_header_rewrite_clients=
# netstat -ntap|grep LISTEN|grep 127.0.0.1
tcp 0 0 127.0.0.1:2501 0.0.0.0:*
LISTEN 180694/perl
tcp 0 0 127.0.0.1:10024 0.0.0.0:*
LISTEN 384178/amavisd (mas
tcp 0 0 127.0.0.1:4330 0.0.0.0:*
LISTEN 1579/pmlogger
tcp 0 0 127.0.0.1:3310 0.0.0.0:*
LISTEN 45282/clamd
tcp 0 0 127.0.0.1:53 0.0.0.0:*
LISTEN 317759/named
tcp 0 0 127.0.0.1:25 0.0.0.0:*
LISTEN 402097/master
tcp 0 0 127.0.0.1:953 0.0.0.0:*
LISTEN 317759/named
tcp 0 0 127.0.0.1:8891 0.0.0.0:*
LISTEN 44525/opendkim
tcp 0 0 127.0.0.1:8893 0.0.0.0:*
LISTEN 44544/opendmarc
tcp 0 0 127.0.0.1:44321 0.0.0.0:*
LISTEN 973/pmcd
