On Wed, 2006-07-12 at 16:17 -0500, Austin Jorden wrote: > It worked. Excellent.
> However I have 1 more problem. What if one of my customers > ([EMAIL PROTECTED]) checked his email from work (not on the 69 network) > it would deny it huh? He could read his email, but he couldn't send to anyone that wasn't listed in your rcpthosts. You'll have to check with qmailrocks.org to see how they're implementing SMTP Relay. You can use POP before SMTP and/or SMTP-AUTH. I would suggest SMTP-AUTH - IMAP users don't generally POP before sending mail. You'll also have to keep in mind that some ISP's block outgoing port 25, so you may want to add port 587 (smtp-submit) if that isn't already included in the qmailrocks.org setup. I'm done working for the day ;) Have fun! Rick > Thanks, > Austin Jorden > (972) 284-4909 > Digitalpath of Texas > http://www.dptexas.net/ > > > -----Original Message----- > From: Austin Jorden [mailto:[EMAIL PROTECTED] > Sent: Wednesday, July 12, 2006 4:11 PM > To: vchkpw@inter7.com > Subject: RE: [vchkpw] Qmail Relaying > Importance: High > > We actually own the whole 69.152.0.0/19 range (255.255.224.0) > > Yea, that's what I was thinking, let me try it and get back with you. > > Thanks, > Austin Jorden > (972) 284-4909 > Digitalpath of Texas > http://www.dptexas.net/ > > > -----Original Message----- > From: Rick Romero [mailto:[EMAIL PROTECTED] > Sent: Wednesday, July 12, 2006 4:05 PM > To: vchkpw@inter7.com > Subject: RE: [vchkpw] Qmail Relaying > > On Wed, 2006-07-12 at 15:58 -0500, Austin Jorden wrote: > > I'm almost a CCNA and taking my CWNA exam in a week. > > > > Here's what I have in my tcp.smtp file > > > > 127.:allow,RELAYCLIENT="" > > 69.152.0.0/19:allow,RELAYCLIENT="" > > That's correct - though I'm not sure if using the /19 notation will work. > > > According to: > http://cr.yp.to/ucspi-tcp/tcprules.html > > Address ranges > tcprules treats 1.2.3.37-53:ins as an abbreviation for the rules > 1.2.3.37:ins, 1.2.3.38:ins, and so on up through 1.2.3.53:ins. > Similarly, 10.2-3.:ins is an abbreviation for 10.2.:ins and 10.3.:ins. > > So I think I'd just do: > 69.152.:allow,RELAYCLIENT="" > > To get your users up and running until you can wrap your brain around the > tcprules docs > and narrow the range down a bit ;) > > Rick > > > > Sound right? > > > > Thanks, > > Austin Jorden > > (972) 284-4909 > > Digitalpath of Texas > > http://www.dptexas.net/ > > > > > > -----Original Message----- > > From: Rick Romero [mailto:[EMAIL PROTECTED] > > Sent: Wednesday, July 12, 2006 3:51 PM > > To: vchkpw@inter7.com > > Subject: RE: [vchkpw] Qmail Relaying > > > > On Wed, 2006-07-12 at 15:38 -0500, Austin Jorden wrote: > > > Ohhh, Okay. I completely understand. Sorry for such confusion. > > > > Not a problem. > > > > > I actually used QmailRocks.org, the installation guide. > > > > Sorry, never saw it :( > > > > > Would you be able to tell me how to let a certain IP address range > > relay? > > > > I appear to have a network specified in one of my lines > > 192.168.1.0/24:allow,RELAY="" > > > > Though I'm not sure specifying the netmask is valid. You can try it. > > Not sure if you know netmasks - The /24 is the number of bits (where 255 > > is 11111111 in binary, count the 1s and you have 8 bits. So > > 255.255.255.0 = 11111111.11111111.11111111.00000000 = /24 ) > > > > Here's a page if you know what your starting and ending IPs are > > http://www.csc.fi/english/funet/calc/laskin2.html > > > > or just google 'netmask calculator' - there are more advanced ones. > > > > Rick > > > > > Thanks, > > > Austin Jorden > > > (972) 284-4909 > > > Digitalpath of Texas > > > http://www.dptexas.net/ > > > > > > > > > -----Original Message----- > > > From: Rick Romero [mailto:[EMAIL PROTECTED] > > > Sent: Wednesday, July 12, 2006 3:34 PM > > > To: vchkpw@inter7.com > > > Subject: RE: [vchkpw] Qmail Relaying > > > > > > On Wed, 2006-07-12 at 15:26 -0500, Austin Jorden wrote: > > > > My email server's rcpthosts file has: > > > > > > > > Dptexas.net > > > > Digitalpathtexas.net > > > > Dptexas.com > > > > Digitalpathtexas.com > > > > > > > > Any users locally ([EMAIL PROTECTED]), etc can't send mail to > anything > > > > remote (yahoo.com, aol.com, etc) > > > > > > > > I need this to be enabled! However I can't have someone connect to > my > > > > SMTP service and send a email to [EMAIL PROTECTED] from [EMAIL > > > > PROTECTED] > > > > > > > > Make sense? > > > > > > Yes, but the RELAY option is done by IP address. If you want to > enable > > > roaming users (people on dial-up, people who have dhcp - ie, people > who > > > aren't on your LAN) you'll have to consult your distribution or > whoever > > > put your setup together (the toaster author?). That's more of a > qmail > > > function than a vpopmail function, as the relay options are compiled > > > into the qmail programs. > > > > > > I use Matt Simerson's toaster, maybe you followed Life with Qmail? > > > > > > If you just want your whole LAN to relay, put this in your tcp.smtp > file > > > before recompiling it: > > > 192.168:allow,RELAYCLIENT="" > > > > > > That will allow anyone with a 192.168.x.x address to relay through > your > > > mail server. Use whatever IP Address scheme is setup on your network. > > > > > > Though you really should double check with your setup docs for file > > > locations and relay options and the like... > > > > > > Rick > > > > > > > Thanks, > > > > Austin Jorden > > > > (972) 284-4909 > > > > Digitalpath of Texas > > > > http://www.dptexas.net/ > > > > > > > > > > > > -----Original Message----- > > > > From: Rick Romero [mailto:[EMAIL PROTECTED] > > > > Sent: Wednesday, July 12, 2006 3:00 PM > > > > To: vchkpw@inter7.com > > > > Subject: RE: [vchkpw] Qmail Relaying > > > > > > > > On Wed, 2006-07-12 at 14:08 -0500, Austin Jorden wrote: > > > > > Okay, they're all there. However if I try to send mail to > > @yahoo.com > > > I > > > > > get a failure notice saying "can't send to "blah" as it isn't in > my > > > > > rcpthosts list" > > > > > > > > > > Thoughts? > > > > > > > > You'll have to enable relaying in some fashion. That depends on > your > > > > install, and is really more than should be on this list. > > > > > > > > Assuming you run tcpserver, and if you don't need roaming, you can > add > > > > your IP address to your vopmail/etc/tcp.smtp file: > > > > 127.0.0.1:allow,RELAYCLIENT="" > > > > > > > > Then recompile it from in your vpopmail/etc directory: > > > > tcprules tcp.smtp.cdb tcp.smtp.tmp < tcp.smtp > > > > > > > > So assuming you're starting qmail-smtpd in a way that checks that > > file, > > > > that would allow 127.0.0.1 to relay. > > > > > > > > Rick > > > > > > > > > > > > > Thanks, > > > > > Austin Jorden > > > > > (972) 284-4909 > > > > > Digitalpath of Texas > > > > > http://www.dptexas.net/ > > > > > > > > > > > > > > > -----Original Message----- > > > > > From: Rick Romero [mailto:[EMAIL PROTECTED] > > > > > Sent: Wednesday, July 12, 2006 1:29 PM > > > > > To: vchkpw@inter7.com > > > > > Subject: Re: [vchkpw] Qmail Relaying > > > > > > > > > > On Wed, 2006-07-12 at 09:16 -0500, Austin Jorden wrote: > > > > > > I have several thousands of FAILURE NOTICES coming in to my > > account. > > > > > > I know how-to change them over to another account, etc.. but I > > > > > > shouldn?t be receiving this many. Some places are obviously > > using > > > us > > > > > > as a SPAM Email server. How can I only allow relaying from > > certain > > > > > > domains? > > > > > > > > > > Hi Austin, > > > > > > > > > > Check the headers first to make sure they're actually coming from > > your > > > > > server. If they're not, you can try using SPF spf.pobox.com - but > > > > > that's still hit or miss. > > > > > > > > > > If /var/qmail/control/rcpthosts is empty, you'd have an open > relay. > > > It > > > > > should list your local domains. > > > > > > > > > > Rick > > > > > > > > > > > > > > > > > > > > > > > Basically only allow relaying from @domain.com, @domain1.com, > > > > > > @domain2.com, etc? > > > > > > > > > > > > > > > > > > > > > > > > Thanks, > > > > > > > > > > > > Austin Jorden > > > > > > > > > > > > (972) 284-4909 > > > > > > > > > > > > Digitalpath of Texas > > > > > > > > > > > > http://www.dptexas.net/ > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > >
