From: "Daryl C. W. O'Shea" <[EMAIL PROTECTED]>
Ross Boylan wrote:
...
Maybe it will help to be concrete. I'll use made up names to foil
spambots:
People send me mail at [EMAIL PROTECTED] b.edu has an MX record. I use
fetchmail to pull my mail off a.b.edu, the actual host machine the MX
records points to. We have a weird setup; my machine's name
internally is c.d.net (not c.b.edu). So a.b.edu is getting mail for
me, but it doesn't even appear to have the same domain. a.b.edu may
also accept mail from IP's on RBL's.
So I think this means the IP for a.b.edu belongs on trusted_networks,
but not internal_networks. Right?
No. a.b.edu is an MX. ALL MXes MUST be in both trusted and internal
networks.
If a.b.edu also acts as an MSA for people then your config or that host
must conform to one of the three options originally noted.
I should not have skipped his message since his topology is not
really different from mine. We use fetchmail here from Earthlink.
This is an edited extract from my local.cf:
clear_trusted_networks
trusted_networks 127/8 192.168/16 207.217.121/24 209.86.93/24
internal_networks 192.168/16
192.168/16 basically describes the room allocated for local networks.
Although only a few of the machines involved are actually capable at
this time of sending email. (Some of the gadgets may grow such an
ability. But so far it is not used.)
207.217.121/24 moderately accurately describes the smtpauth.earthlink.net
addresses. They are not REALLY needed in trusted_networks. But Earthlink
seems to move things around from time to time in this regard so....
209.86.93/24 moderately accurately describes the pop.earthlink.net
set of addresses. (As with the 207 set this also includes mindspring
and many other "absorbed" ISP names.)
I hope this helps. It's what I am using here with Fetchmail, which is
setup per user this way:
defaults mda "/usr/bin/procmail -d jdow"
set syslog
set postmaster "" # I don't CARE if it foos.
set no bouncemail
set no spambounce
set properties ""
set daemon 60
poll smtp.earthlink.net with proto POP3
user 'jdow' there with password 'XXXXXXXXXXXXXXXXy'
is '[EMAIL PROTECTED]' here options pass8bits
smtpaddress ' '
Some of this seems to be magic for the version I started with. I've
never edited out things that might not apply anymore.
{^_^}
