headache – postfix pain in the butt

first setup
mydomain = itheadaches.com
myhostname = mail.itheadaches.com
inet_interfaces = all
# inet_interfaces = localhost

set open relay to specific ip
e-mail will show deferred unless you add IPs below

smtpd_sasl_exceptions_networks = $mynetworks

mynetworks = your_ip_address

configure sasl auth for postfix

edit master.cf and uncomment submission and smtpd
http://www.howtoforge.com/forums/showthread.php?t=61657

troubleshooting commands

postconf -a /etc/posfix

postconf -d — to see default values

postfix links

http://postfix.state-of-mind.de/patrick.koetter/smtpauth/smtp_auth_mailclients.html

http://postfix.state-of-mind.de/patrick.koetter/smtpauth/postfix_configuration.html

http://postfix.state-of-mind.de/patrick.koetter/smtpauth/smtp_auth_mailclients.html

http://www.postfix.org/SASL_README.html

https://help.ubuntu.com/community/Postfix

http://www.electrictoolbox.com/postfix-smtp-auth-no-sasl-authentication-mechanisms/

smtpd_sasl_auth_enable = yes
smtpd_sasl_security_options = noanonymous
broken_sasl_auth_clients = yes
smtpd_sasl_application_name = smtpd
smtpd_sasl_path = smtpd
smtpd_sasl_local_domain = $myhostname
smtpd_sasl_authenticated_header = yes
smtpd_recipient_restrictions = permit_mynetworks,permit_sasl_authenticated,reject _non_fqdn_hostname,reject_non_fqdn_sender,reject_n on_fqdn_recipient,reject_unauth_destination,reject _unauth_pipelining,reject_invalid_hostname,reject_ rbl_client opm.blitzed.org,reject_rbl_client list.dsbl.org,reject_rbl_client bl.spamcop.net,reject_rbl_client sbl-xbl.spamhaus.org

http://www.howtoforge.com/forums/showthread.php?t=12844

http://www.howtoforge.com/virtual_users_postfix_courier_mailscanner_clamav_centos

dangers of relay
http://www.postfix.org/SMTPD_ACCESS_README.html#danger

notes:

smtpd_sasl_auth_enable = yes
smtpd_sasl_security_options = noanonymous
broken_sasl_auth_clients = yes
smtpd_sasl_application_name = smtpd
smtpd_sasl_path = smtpd
smtpd_sasl_local_domain = $myhostname
smtpd_sasl_authenticated_header = yes
smtpd_recipient_restrictions = permit_mynetworks,permit_sasl_authenticated,reject_non_fqdn_hostname,reject_non_fqdn_sender,reject_non_fqdn_recipient,reject_unauth_pipelining,reject_unauth_destination,reject_invalid_hostname,reject_rbl_client opm.blitzed.org,reject_rbl_client list.dsbl.org,reject_rbl_client bl.spamcop.net,reject_rbl_client sbl-xbl.spamhaus.org
#smtpd_recipient_restrictions =
permit_sasl_authenticated,
permit_mynetworks,
reject_unauth_destination
mynetworks = 1.1.1.1.,2.2.2.2,3.3.3.3

Leave a Reply