That is, what I meant with virtualization and containerization. It has to be on a sepereate system, and that is not applicable for all setups.
Am 22.04.21 um 16:28 schrieb Sven Schwedas: > On 22.04.21 16:08, Lars Liedtke wrote: >> I know this does not apply to all kinds of setup, but with >> virtualization and containerization it should be easy to seperate >> Postfix and provide a different nameserver in resolv.conf for it. > > Yes, but postfix' builtin chroot isn't sufficient for this. It'll have > to be some form of external jailing mechanism. > > (We're using systemd-nspawn, so if *that* works, anything proper > definitely will.) > >> Am 22.04.21 um 16:03 schrieb Wietse Venema: >>> Markus Sch?nhaber: >>>> 22.04.21, 12:20 +0200, Simon Wilson: >>>> >>>>> Is there a way to make Postfix/postscreen use a specific DNS server? >>>> One way I could think of is to use postfix' chroot features and >>>> configure this specific DNS server in the chroot's resolv.conf. >>> That may or may not work. There is no supported way to prevent the >>> SYSTEM LIBRARY from picking up the resolv.conf file before changing >>> the root directory. >>> > -- --- punkt.de GmbH Lars Liedtke .infrastructure Kaiserallee 13a 76133 Karlsruhe Tel. +49 721 9109 500 https://infrastructure.punkt.de i...@punkt.de AG Mannheim 108285 Geschäftsführer: Jürgen Egeling, Daniel Lienert, Fabian Stein
