Gerben Wierda:
> The only minor thing left is that postscreen keeps logging the
> health check attempts as such:
>
> Jan 15 17:20:09 snape postfix/postscreen[277]: warning: haproxy read: EOF
Postfix should not simply ignore such errors. How would Postfix
distinguish this from haproxy crashing or
> On 15 Jan 2023, at 17:09, Wietse Venema wrote:
>
> In that case, use two SMTP services, one that is proxied and one
> that is not.
Yes, in the meantime I had gathered that that was the obvious solution (should
have realised that earlier).
So, I added this in master.cf:
smtp inet n
Gerben Wierda:
> > On 15 Jan 2023, at 15:47, Wietse Venema wrote:
> >
> > "The name of the proxy protocol used by a before-postscreen proxy agent."
>
> That still doesn't tell you what the effect is of entering a value
> for that setting while the traffic is not coming from a proxy.
> Normally,
It's practically not possible to support both with and without haproxy
within postfix within one connection. The reason is that postfix
receives plain bytes with the TCP protocol. The interpretation of these
bytes can only be done by defining the protocol underneath. When you set
the protocol t
> On 15 Jan 2023, at 15:47, Wietse Venema wrote:
>
> "The name of the proxy protocol used by a before-postscreen proxy agent."
That still doesn't tell you what the effect is of entering a value for that
setting while the traffic is not coming from a proxy. Normally, when you enter
config data
Gerben Wierda:
> Unambiguous would be for instance: "The name of the proxy protocol.
> This is required when you use a before-postscreen proxy agent "
Existing text: "The name of the proxy protocol used by an optional
before-postscreen proxy agent."
In that context, the name is not optional. The
> On 15 Jan 2023, at 02:55, Viktor Dukhovni wrote:
>
> On Sun, Jan 15, 2023 at 01:47:10AM +0100, Gerben Wierda wrote:
>
>> I am looking at putting HAproxy between the internet and my two inside
>> postfix MTA's
>
> Is there a good reason to do that? If not, don't.
Agreed. Sadly there is in my
On Sun, Jan 15, 2023 at 01:47:10AM +0100, Gerben Wierda wrote:
> I am looking at putting HAproxy between the internet and my two inside
> postfix MTA's
Is there a good reason to do that? If not, don't.
> I have a question. The documentation says: "The name of the proxy
> protocol used by an opt
