Need email server aid

Hal Burgiss hal at burgiss.net
Wed Apr 21 23:10:46 UTC 2010


On Wed, Apr 21, 2010 at 7:18 PM, Chuck Kuecker <ckuecker at ckent.org> wrote:
> Markus Schönhaber wrote:
>> 21.04.2010 18:41, Chuck Kuecker:
> postconf -n:
>
> lias_database = hash:/etc/aliases
> alias_maps = hash:/etc/aliases
> append_dot_mydomain = no
> biff = no
> broken_sasl_auth_clients = yes
> config_directory = /etc/postfix
> home_mailbox = Maildir/
> inet_interfaces = all
> inet_protocols = all
> mailbox_command =
> mailbox_size_limit = 0
> mydestination = ckenterprises.ckent.org, mail.ckent.org, ckent.org,
> localhost.localdomain, localhost
> myhostname = mail.ckent.org
> mynetworks = 127.0.0.0/8, 192.168.0.0/16
> myorigin = /etc/mailname
> readme_directory = no
> recipient_delimiter = +
> relayhost =
> smtp_tls_note_starttls_offer = yes
> smtp_tls_security_level = may
> smtp_tls_session_cache_database = btree:${data_directory}/smtp_scache
> smtpd_banner = $myhostname ESMTP $mail_name (Ubuntu)
> smtpd_recipient_restrictions = reject_unknown_sender_domain,
> reject_unknown_recipient_domain,        reject_unauth_pipelining,
> permit_mynetworks,      permit_sasl_authenticated,      reject_unauth_destination
> smtpd_sasl_auth_enable = yes
> smtpd_sasl_local_domain =
> smtpd_sasl_security_options = noanonymous
> smtpd_tls_CAfile = /etc/ssl/certs/cacert.pem
> smtpd_tls_auth_only = no
> smtpd_tls_cert_file = /etc/ssl/certs/smtpd.crt
> smtpd_tls_key_file = /etc/ssl/private/smtpd.key
> smtpd_tls_loglevel = 1
> smtpd_tls_received_header = yes
> smtpd_tls_security_level = may
> smtpd_tls_session_cache_database = btree:${data_directory}/smtpd_scache
> smtpd_tls_session_cache_timeout = 3600s
> smtpd_use_tls = yes
> tls_random_source = dev:/dev/urandom
>
> mail.log:
>
> Apr 21 17:01:40 ckenterprises postfix/smtpd[24088]: NOQUEUE: reject:
> RCPT from mail.ckent.org[66.254.194.29]: 554 5.7.1
> <addr at dest.com>: Relay access denied; from=<device at ckent.org>
> to=<addr at dest.com> proto=SMTP helo=<ckent.org>
> Apr 21 17:01:40 ckenterprises postfix/smtpd[24088]: disconnect from
>


If I remember correctly, reject_unknown_sender_domain requires a
working DNS, A record, and maybe MX for the connecting IP. You might
try re-ordering that section, or just remove that as a test (be sure
to do a postfix reload).

-- 
Hal




More information about the ubuntu-users mailing list