Newbie question about transport_maps failing

Fri, 28 May 2021 08:28:08 -0700 

My goal is to limit allowed sender domains, to ensure no
mail config problem sends from a domain with no no SPF
authorization for sending IP.

What I've done...

1) Setup /etc/postfix/transport

# cat /etc/postfix/transport
davidfavor.com :
fixdeliver.com :
* discard:

# postmap /etc/postfix/transport

# postmap -s /etc/postfix/transport
*       discard:
davidfavor.com  :
fixdeliver.com  :

3) postfix reload

4) Send a test message...

echo test | mailx -r some...@foo.com -s "Test Message - $(date)" 
da...@davidfavor.com

5) inotifywait camped on /etc/postfix shows /etc/postfix/transport.db being 
read.

6) And... messages still delivers, rather than being blocked.

May 28 10:15:46 net17-david-favor-smtp postfix/qmgr[29555]: CE2801BA2030: 
from=<some...@foo.com>, size=430, nrcpt=1 (queue active)
May 28 10:15:46 net17-david-favor-smtp postfix/smtp[29585]: CE2801BA2030: to=<da...@davidfavor.com>, relay=smtp.davidfavor.com[142.44.168.82]:25, delay=0.03, delays=0/0/0.02/0.01, dsn=2.0.0, status=sent (250 Queued) 

7) Someone let me know how to fix this.

Thanks...

8) Dump of my entire config...

# postconf -n
alias_database = hash:/etc/aliases
alias_maps = hash:/etc/aliases
append_dot_mydomain = no
biff = no
compatibility_level = 2
inet_interfaces = all
inet_protocols = all
mailbox_size_limit = 0
mydestination = localhost, localhost.localdomain
myhostname = mta1.davidfavor.com
mynetworks = 127.0.0.0/8 [::ffff:127.0.0.0]/104 [::1]/128
myorigin = davidfavor.com
readme_directory = no
recipient_delimiter = +
relayhost =
smtp_bind_address = 144.217.229.104
smtp_tls_CApath = /etc/ssl/certs
smtp_tls_note_starttls_offer = yes
smtp_tls_security_level = may
smtp_tls_session_cache_database = btree:${data_directory}/smtp_scache
smtpd_banner = $myhostname ESMTP
smtpd_relay_restrictions = permit_mynetworks permit_sasl_authenticated 
defer_unauth_destination
smtpd_tls_cert_file = /etc/letsencrypt/live/mta1.davidfavor.com/fullchain.pem
smtpd_tls_key_file = /etc/letsencrypt/live/mta1.davidfavor.com/privkey.pem
smtpd_tls_loglevel = 1
smtpd_tls_received_header = yes
smtpd_tls_security_level = may
transport_maps = hash:/etc/postfix/transport

Reply via email to