On Wed, 2006-07-12 at 15:58 -0500, Austin Jorden wrote: > I'm almost a CCNA and taking my CWNA exam in a week. > > Here's what I have in my tcp.smtp file > > 127.:allow,RELAYCLIENT="" > 69.152.0.0/19:allow,RELAYCLIENT=""
That's correct - though I'm not sure if using the /19 notation will work. According to: http://cr.yp.to/ucspi-tcp/tcprules.html Address ranges tcprules treats 1.2.3.37-53:ins as an abbreviation for the rules 1.2.3.37:ins, 1.2.3.38:ins, and so on up through 1.2.3.53:ins. Similarly, 10.2-3.:ins is an abbreviation for 10.2.:ins and 10.3.:ins. So I think I'd just do: 69.152.:allow,RELAYCLIENT="" To get your users up and running until you can wrap your brain around the tcprules docs and narrow the range down a bit ;) Rick > Sound right? > > Thanks, > Austin Jorden > (972) 284-4909 > Digitalpath of Texas > http://www.dptexas.net/ > > > -----Original Message----- > From: Rick Romero [mailto:[EMAIL PROTECTED] > Sent: Wednesday, July 12, 2006 3:51 PM > To: vchkpw@inter7.com > Subject: RE: [vchkpw] Qmail Relaying > > On Wed, 2006-07-12 at 15:38 -0500, Austin Jorden wrote: > > Ohhh, Okay. I completely understand. Sorry for such confusion. > > Not a problem. > > > I actually used QmailRocks.org, the installation guide. > > Sorry, never saw it :( > > > Would you be able to tell me how to let a certain IP address range > relay? > > I appear to have a network specified in one of my lines > 192.168.1.0/24:allow,RELAY="" > > Though I'm not sure specifying the netmask is valid. You can try it. > Not sure if you know netmasks - The /24 is the number of bits (where 255 > is 11111111 in binary, count the 1s and you have 8 bits. So > 255.255.255.0 = 11111111.11111111.11111111.00000000 = /24 ) > > Here's a page if you know what your starting and ending IPs are > http://www.csc.fi/english/funet/calc/laskin2.html > > or just google 'netmask calculator' - there are more advanced ones. > > Rick > > > Thanks, > > Austin Jorden > > (972) 284-4909 > > Digitalpath of Texas > > http://www.dptexas.net/ > > > > > > -----Original Message----- > > From: Rick Romero [mailto:[EMAIL PROTECTED] > > Sent: Wednesday, July 12, 2006 3:34 PM > > To: vchkpw@inter7.com > > Subject: RE: [vchkpw] Qmail Relaying > > > > On Wed, 2006-07-12 at 15:26 -0500, Austin Jorden wrote: > > > My email server's rcpthosts file has: > > > > > > Dptexas.net > > > Digitalpathtexas.net > > > Dptexas.com > > > Digitalpathtexas.com > > > > > > Any users locally ([EMAIL PROTECTED]), etc can't send mail to anything > > > remote (yahoo.com, aol.com, etc) > > > > > > I need this to be enabled! However I can't have someone connect to my > > > SMTP service and send a email to [EMAIL PROTECTED] from [EMAIL PROTECTED] > > > > > > Make sense? > > > > Yes, but the RELAY option is done by IP address. If you want to enable > > roaming users (people on dial-up, people who have dhcp - ie, people who > > aren't on your LAN) you'll have to consult your distribution or whoever > > put your setup together (the toaster author?). That's more of a qmail > > function than a vpopmail function, as the relay options are compiled > > into the qmail programs. > > > > I use Matt Simerson's toaster, maybe you followed Life with Qmail? > > > > If you just want your whole LAN to relay, put this in your tcp.smtp file > > before recompiling it: > > 192.168:allow,RELAYCLIENT="" > > > > That will allow anyone with a 192.168.x.x address to relay through your > > mail server. Use whatever IP Address scheme is setup on your network. > > > > Though you really should double check with your setup docs for file > > locations and relay options and the like... > > > > Rick > > > > > Thanks, > > > Austin Jorden > > > (972) 284-4909 > > > Digitalpath of Texas > > > http://www.dptexas.net/ > > > > > > > > > -----Original Message----- > > > From: Rick Romero [mailto:[EMAIL PROTECTED] > > > Sent: Wednesday, July 12, 2006 3:00 PM > > > To: vchkpw@inter7.com > > > Subject: RE: [vchkpw] Qmail Relaying > > > > > > On Wed, 2006-07-12 at 14:08 -0500, Austin Jorden wrote: > > > > Okay, they're all there. However if I try to send mail to > @yahoo.com > > I > > > > get a failure notice saying "can't send to "blah" as it isn't in my > > > > rcpthosts list" > > > > > > > > Thoughts? > > > > > > You'll have to enable relaying in some fashion. That depends on your > > > install, and is really more than should be on this list. > > > > > > Assuming you run tcpserver, and if you don't need roaming, you can add > > > your IP address to your vopmail/etc/tcp.smtp file: > > > 127.0.0.1:allow,RELAYCLIENT="" > > > > > > Then recompile it from in your vpopmail/etc directory: > > > tcprules tcp.smtp.cdb tcp.smtp.tmp < tcp.smtp > > > > > > So assuming you're starting qmail-smtpd in a way that checks that > file, > > > that would allow 127.0.0.1 to relay. > > > > > > Rick > > > > > > > > > > Thanks, > > > > Austin Jorden > > > > (972) 284-4909 > > > > Digitalpath of Texas > > > > http://www.dptexas.net/ > > > > > > > > > > > > -----Original Message----- > > > > From: Rick Romero [mailto:[EMAIL PROTECTED] > > > > Sent: Wednesday, July 12, 2006 1:29 PM > > > > To: vchkpw@inter7.com > > > > Subject: Re: [vchkpw] Qmail Relaying > > > > > > > > On Wed, 2006-07-12 at 09:16 -0500, Austin Jorden wrote: > > > > > I have several thousands of FAILURE NOTICES coming in to my > account. > > > > > I know how-to change them over to another account, etc.. but I > > > > > shouldn?t be receiving this many. Some places are obviously > using > > us > > > > > as a SPAM Email server. How can I only allow relaying from > certain > > > > > domains? > > > > > > > > Hi Austin, > > > > > > > > Check the headers first to make sure they're actually coming from > your > > > > server. If they're not, you can try using SPF spf.pobox.com - but > > > > that's still hit or miss. > > > > > > > > If /var/qmail/control/rcpthosts is empty, you'd have an open relay. > > It > > > > should list your local domains. > > > > > > > > Rick > > > > > > > > > > > > > > > > > > > Basically only allow relaying from @domain.com, @domain1.com, > > > > > @domain2.com, etc? > > > > > > > > > > > > > > > > > > > > Thanks, > > > > > > > > > > Austin Jorden > > > > > > > > > > (972) 284-4909 > > > > > > > > > > Digitalpath of Texas > > > > > > > > > > http://www.dptexas.net/ > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > >
