Здравствуйте! У меня проблема.
postfix является шлюзом для exchange. И должен принимать почту для двух доменов.
В итоге при моей текущей настройке вижу что он релеит почту куда угодно.
Как это побороть?
192.168.0.3 это эксченджvirtual_transport такой:
domain.ru smtp:[192.168.0.3]
domain2.ru smtp:[192.168.0.3]
queue_directory = /var/spool/postfix
command_directory = /usr/local/sbin
daemon_directory = /usr/local/libexec/postfix
data_directory = /var/db/postfix
mail_owner = postfix
default_privs = nobody
myhostname = mx.domain.ru
mydomain = domain.ru
myorigin = $mydomain
#mydestination = $myhostname
#relay_domains = $mydomain domain2.ru
relay_host =
default_destination_concurrency_limit = 200
inet_interfaces = all
#inet_interfaces = $myhostname
#inet_interfaces = $myhostname, localhost
local_recipient_maps =
#unknown_local_recipient_reject_code = 550
mynetworks = 192.168.0.3/32, 127.0.0.0/8
virtual_mailbox_domains = domain.ru domain2.ru
#virtual_mailbox_maps = ldap://usr/local/etc/postfix/ldap.cf
transport_maps = hash:/usr/local/etc/postfix/virtual_transport
in_flow_delay = 1s
fast_flush_domains = $relay_domains
#smtpd_sender_restrictions = check_sender_access
# regexp:/usr/local/etc/postfix/sender_access
########################## ANTI-SPAM #########################################
invalid_hostname_reject_code = 550
non_fqdn_reject_code = 550
unknown_client_reject_code = 550
unknown_hostname_reject_code = 550
unverified_sender_reject_code = 550
strict_rfc821_envelopes = yes
disable_vrfy_command = yes
smtpd_client_restrictions = permit_mynetworks,
reject_rbl_client blackholes.mail-abuse.org,
reject_rbl_client dialups.mail-abuse.org,
reject_rbl_client dul.ru,
reject_rbl_client opm.blitzed.org,
reject_rbl_client sbl.spamhaus.org,
reject_rbl_client cbl.abuseat.org,
reject_rbl_client dul.dnsbl.sorbs.net,
reject_rbl_client dnsbl.njabl.org,
reject_rbl_client dynablock.njabl.org,
reject_rbl_client combined.njabl.org,
reject_unknown_client,
reject_unknown_client_hostname
smtpd_helo_required = yes
smtpd_helo_restrictions = permit_mynetworks,
reject_invalid_helo_hostname,
reject_unknown_helo_hostname,
check_helo_access hash:/usr/local/etc/postfix/helo_checks,
reject_non_fqdn_hostname
smtpd_sender_restrictions = reject_non_fqdn_sender,
reject_unknown_sender_domain,
reject_unverified_sender,
check_sender_access hash:/usr/local/etc/postfix/sender_checks
smtpd_recipient_restrictions = permit_mynetworks,
permit_sasl_authenticated,
reject_non_fqdn_recipient,
reject_unknown_recipient_domain,
reject_unauth_destination,
reject_rbl_client bl.spamcop.net,
reject_rbl_client zen.spamhaus.org
smtpd_data_restrictions = reject_unauth_pipelining,
reject_non_fqdn_sender,
reject_non_fqdn_recipient,
reject_unknown_recipient_domain,
reject_unknown_sender_domain,
permit
readme_directory = /usr/local/share/doc/postfix
sample_directory = /usr/local/etc/postfix
sendmail_path = /usr/local/sbin/sendmail
html_directory = /usr/local/share/doc/postfix
setgid_group = maildrop
manpage_directory = /usr/local/man
newaliases_path = /usr/local/bin/newaliases
mailq_path = /usr/local/bin/mailq