> smtpd_client_restrictions =
you'll block incoming mail with last reject.
This is right off of http://www.postfix.org/SMTPD_ACCESS_README.html#lists
/etc/postfix/main.cf:
# Allow connections from trusted networks only.
smtpd_client_restrictions = permit_mynetworks, reject
On 17.05.22 15:46, White, Daniel E. (GSFC-770.0)[AEGIS] wrote:
I only permit incoming mail from known, upstream relays which will be in
"mynetworks"
Do you still think I will block incoming ?
yes, unless you add upstream relay (e.g. your mx server) to mynetworks.
...don't add such servers to mynetworks.
> smtpd_sender_restrictions =
... you couldn't even notify those clients if they used invalid senders.
How would you suggest I notify them ?
don't - that's why I said it's okay.
> smtpd_relay_restrictions =
you reject receiving mail again with last reject, again.
Again, I only permit incoming mail from known, upstream relays which will be in
"mynetworks"
Do you still think I will block incoming ?
the above still applies.
the second directive you have posted is enough to stop unauthorized relay
(which is why smtpd_relay_restrictions was created).
while you can of course add upstream servers to mynetworks and make mail
receiving work, it's a bad idea because this variable is used for outgoing
mail.
if you need to block accepting mail from unauthorized IP address, I
recommend you doing it using access lists
http://www.postfix.org/access.5.html
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
42.7 percent of all statistics are made up on the spot.
