URL: https://www.opennet.me/cgi-bin/openforum/vsluhboard.cgi
Форум: vsluhforumID1
Нить номер: 68029
[ Назад ]

Исходное сообщение
"postfix"
Отправлено cubatura , 05-Авг-06 13:40

Помогите с Postfix Plz!
Необходимо запретить отправку почты на домены *.com.
Делаю по этой статье http://www.opennet.me/base/net/postfix_per_user_acl.txt.html,не помогает ((.
Вот лог:
Aug  5 13:37:44 mail postfix/smtpd[946]: connect from unknown[10.0.1.250]
Aug  5 13:37:44 mail postfix/trivial-rewrite[878]: warning: do not list domain star.ru in BOTH mydestination and virtual_mailbox_domains
Aug  5 13:37:44 mail postfix/smtpd[946]: warning: restriction check_sender_access: bad argument "permit_mynetworks": need maptype:mapname
Aug  5 13:37:44 mail postfix/smtpd[946]: NOQUEUE: reject: RCPT from unknown[10.0.1.250]: 451 Server configuration error; from=<cubatura@star.ru> to=<cubatura@yandex.ru> proto=SMTP helo=<sdn>
Aug  5 13:37:44 mail postfix/cleanup[947]: 84E2F20E3: message-id=<20060805083744.84E2F20E3@mail.star.ru>
Aug  5 13:37:44 mail postfix/qmgr[875]: 84E2F20E3: from=<double-bounce@mail.star.ru>, size=612, nrcpt=1 (queue active)
Aug  5 13:37:44 mail postfix/smtpd[946]: disconnect from unknown[10.0.1.250]
Aug  5 13:37:44 mail postfix/trivial-rewrite[878]: warning: do not list domain mail.star.ru in BOTH mydestination and virtual_mailbox_domains
Aug  5 13:37:44 mail postfix/local[948]: 84E2F20E3: to=<root@mail.star.ru>, orig_to=<postmaster>, relay=local, delay=0, status=sent (delivered to maildir)
Aug  5 13:37:44 mail postfix/qmgr[875]: 84E2F20E3: removed
Aug  5 13:37:44 mail pop3-login: Login: cubatura@star.ru [10.0.1.250]

Вот конфиг:
queue_directory = /var/spool/postfix
command_directory = /usr/sbin
daemon_directory = /usr/libexec/postfix
mail_owner = postfix
myhostname = mail.star.ru
mydomain = star.ru
inet_interfaces = all
mydestination = $myhostname, localhost.$mydomain, localhost, $mydomain
unknown_local_recipient_reject_code = 550
mynetworks_style = host
#mynetworks = 192.168.0.0/24,127.0.0.0/8 10.0.0.0/8
mynetworks = /etc/postfix/mynetworks
relay_domains = $mydomain
relayhost = [192.168.2.5]
alias_database = dbm:/etc/mail/aliases
home_mailbox = Maildir/
mail_spool_directory = /var/spool/mail
smtpd_banner = $domain ESMTP $mail_name
debug_peer_level = 2
debug_peer_list = 192.168.0.0
debug_peer_list = intra.net
debugger_command =
         PATH=/bin:/usr/bin:/usr/local/bin:/usr/X11R6/bin
     xxgdb $daemon_directory/$process_name $process_id & sleep 5
sendmail_path = /usr/local/sbin/sendmail
newaliases_path = /usr/local/bin/newaliases
mailq_path = /usr/local/bin/mailq
setgid_group = postdrop
html_directory = no
manpage_directory = /usr/local/man
sample_directory = /usr/local/etc/postfix
readme_directory = no
disable_vrfy_command = yes
smtpd_helo_required = yes
smtp_always_send_ehlo = yes
smtpd_hard_error_limit = 8
bounce_size_limit = 2000
virtual_mailbox_base = /usr/local/virtual
virtual_gid_maps = static:1005;
virtual_uid_maps = static:1004
virtual_minimum_uid = 1001
virtual_mailbox_limit = 51200000
virtual_transport = virtual
virtual_create_maildirsize = yes
virtual_mailbox_extended = yes
virtual_mailbox_limit_override = yes
virtual_overquota_bounce = yes
virtual_alias_maps = mysql:/usr/local/etc/postfix/mysql_virtual_alias_maps.cf
virtual_mailbox_domains = mysql:/usr/local/etc/postfix/mysql_virtual_domains_maps.cf
virtual_mailbox_maps = mysql:/usr/local/etc/postfix/mysql_virtual_mailbox_maps.cf
virtual_mailbox_limit_maps = mysql:/usr/local/etc/postfix/mysql_virtual_mailbox_limit_maps.cf
virtual_maildir_limit_message = Sorry, the user's maildir has overdrawn his diskspace quota, please try again later.
check_sender_access = mysql:/usr/local/etc/postfix/restricted_senders
check_recipient_access = mysql:/usr/local/etc/postfix/local_domains
smtpd_recipient_restrictions =
    check_sender_access ,permit_mynetworks,reject_unauth_destination
smtpd_restriction_classes = local_only
local_only = check_recipient_access, reject_unauth_destination

Содержание

postfix,Alex_hha, 15:48 , 05-Авг-06
- postfix,cubatura, 16:26 , 08-Авг-06
postfix,Skif, 22:45 , 08-Авг-06

Сообщения в этом обсуждении

"postfix"
Отправлено Alex_hha , 05-Авг-06 15:48

Aug 5 13:37:44 mail postfix/smtpd[946]: warning: restriction check_sender_access: bad argument "permit_mynetworks": need maptype:mapname
переведи на русский.
check_sender_access type:table
Search the specified access(5) database for the MAIL FROM address, domain, parent domains, or localpart@, and execute the corresponding action.
По идее надо так
smtpd_recipient_restrictions =
check_sender_access mysql:/usr/local/etc/postfix/restricted_senders ,permit_mynetworks,reject_unauth_destination
Имхо использовать sql для таких целей наверное не очень удачный выбор. Намного быстрее и эффективнее использовать hash.

"postfix"
Отправлено cubatura , 08-Авг-06 16:26

>Aug 5 13:37:44 mail postfix/smtpd[946]: warning: restriction check_sender_access: bad argument "permit_mynetworks":
>need maptype:mapname
>
>переведи на русский.
>
>check_sender_access type:table
>Search the specified access(5) database for the MAIL FROM address, domain, parent
>domains, or localpart@, and execute the corresponding action.
>
>По идее надо так
>
>smtpd_recipient_restrictions =
> check_sender_access mysql:/usr/local/etc/postfix/restricted_senders ,permit_mynetworks,reject_unauth_destination
>
>Имхо использовать sql для таких целей наверное не очень удачный выбор. Намного
>быстрее и эффективнее использовать hash.
Ошибки исчезли,зато почта на *.com уходит нормально (

"postfix"
Отправлено Skif , 08-Авг-06 22:45

>Помогите с Postfix Plz!
>
>Необходимо запретить отправку почты на домены *.com.
>
>Делаю по этой статье http://www.opennet.me/base/net/postfix_per_user_acl.txt.html,не помогает ((.
>
>Вот лог:
>
>Aug  5 13:37:44 mail postfix/smtpd[946]: connect from unknown[10.0.1.250]
>Aug  5 13:37:44 mail postfix/trivial-rewrite[878]: warning: do not list domain star.ru
>in BOTH mydestination and virtual_mailbox_domains
>Aug  5 13:37:44 mail postfix/smtpd[946]: warning: restriction check_sender_access: bad argument "permit_mynetworks":
>need maptype:mapname
>Aug  5 13:37:44 mail postfix/smtpd[946]: NOQUEUE: reject: RCPT from unknown[10.0.1.250]: 451 Server configuration error; from=<cubatura@star.ru> to=<cubatura@yandex.ru> proto=SMTP helo=<sdn>
>Aug  5 13:37:44 mail postfix/cleanup[947]: 84E2F20E3: message-id=<20060805083744.84E2F20E3@mail.star.ru>
>Aug  5 13:37:44 mail postfix/qmgr[875]: 84E2F20E3: from=<double-bounce@mail.star.ru>, size=612, nrcpt=1 (queue active)
>Aug  5 13:37:44 mail postfix/smtpd[946]: disconnect from unknown[10.0.1.250]
>Aug  5 13:37:44 mail postfix/trivial-rewrite[878]: warning: do not list domain mail.star.ru
>in BOTH mydestination and virtual_mailbox_domains
>Aug  5 13:37:44 mail postfix/local[948]: 84E2F20E3: to=<root@mail.star.ru>, orig_to=<postmaster>, relay=local, delay=0, status=sent (delivered to maildir)
>Aug  5 13:37:44 mail postfix/qmgr[875]: 84E2F20E3: removed
>Aug  5 13:37:44 mail pop3-login: Login: cubatura@star.ru [10.0.1.250]
>
>
>Вот конфиг:
>
>queue_directory = /var/spool/postfix
>command_directory = /usr/sbin
>daemon_directory = /usr/libexec/postfix
>mail_owner = postfix
>myhostname = mail.star.ru
>mydomain = star.ru
>inet_interfaces = all
>mydestination = $myhostname, localhost.$mydomain, localhost, $mydomain
>unknown_local_recipient_reject_code = 550
>mynetworks_style = host
>#mynetworks = 192.168.0.0/24,127.0.0.0/8 10.0.0.0/8
>mynetworks = /etc/postfix/mynetworks
>relay_domains = $mydomain
>relayhost = [192.168.2.5]
>alias_database = dbm:/etc/mail/aliases
>home_mailbox = Maildir/
>mail_spool_directory = /var/spool/mail
>smtpd_banner = $domain ESMTP $mail_name
>debug_peer_level = 2
>debug_peer_list = 192.168.0.0
>debug_peer_list = intra.net
>debugger_command =
>         PATH=/bin:/usr/bin:/usr/local/bin:/usr/X11R6/bin
>  xxgdb $daemon_directory/$process_name $process_id & sleep 5
>sendmail_path = /usr/local/sbin/sendmail
>newaliases_path = /usr/local/bin/newaliases
>mailq_path = /usr/local/bin/mailq
>setgid_group = postdrop
>html_directory = no
>manpage_directory = /usr/local/man
>sample_directory = /usr/local/etc/postfix
>readme_directory = no
>disable_vrfy_command = yes
>smtpd_helo_required = yes
>smtp_always_send_ehlo = yes
>smtpd_hard_error_limit = 8
>bounce_size_limit = 2000
>virtual_mailbox_base = /usr/local/virtual
>virtual_gid_maps = static:1005;
>virtual_uid_maps = static:1004
>virtual_minimum_uid = 1001
>virtual_mailbox_limit = 51200000
>virtual_transport = virtual
>virtual_create_maildirsize = yes
>virtual_mailbox_extended = yes
>virtual_mailbox_limit_override = yes
>virtual_overquota_bounce = yes
>virtual_alias_maps = mysql:/usr/local/etc/postfix/mysql_virtual_alias_maps.cf
>virtual_mailbox_domains = mysql:/usr/local/etc/postfix/mysql_virtual_domains_maps.cf
>virtual_mailbox_maps = mysql:/usr/local/etc/postfix/mysql_virtual_mailbox_maps.cf
>virtual_mailbox_limit_maps = mysql:/usr/local/etc/postfix/mysql_virtual_mailbox_limit_maps.cf
>virtual_maildir_limit_message = Sorry, the user's maildir has overdrawn his diskspace quota, please
>try again later.
>
>check_sender_access = mysql:/usr/local/etc/postfix/restricted_senders
>check_recipient_access = mysql:/usr/local/etc/postfix/local_domains
>smtpd_recipient_restrictions =
> check_sender_access ,permit_mynetworks,reject_unauth_destination
>smtpd_restriction_classes = local_only
>local_only = check_recipient_access, reject_unauth_destination
>
>

содержимое таблиц
restricted_senders
и
local_domains
Приведите пожалуйста. И примерных пользователей которые могут и не очень (по плану) отправлять/получать почту с необходимых хостов