[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[no subject]
- <!--x-content-type: text/plain -->
- <!--x-date: Wed Oct 20 01:56:35 2004 -->
- <!--x-from-r13: xnobbz ng tngrpu.rqh (Quevf Dvpxre) -->
- <!--x-message-id: [email protected] -->
- <!--x-reference: [email protected] --> "http://www.w3.org/TR/html4/loose.dtd">
- <!--x-subject: [ale] postfix + amavis + spamassassin - Reject based on to address -->
- <li><em>date</em>: Wed Oct 20 01:56:35 2004</li>
- <li><em>from</em>: kaboom at gatech.edu (Chris Ricker)</li>
- <li><em>in-reply-to</em>: <<a href="msg00710.html">[email protected]</a>></li>
- <li><em>references</em>: <<a href="msg00710.html">[email protected]</a>></li>
- <li><em>subject</em>: [ale] postfix + amavis + spamassassin - Reject based on to address</li>
> I'm still googling for this (albeit poorly), but wanted to see if anyone
> out there had an answer. Is there a way using the setup below that I
> can have the postfix box reject email based on the To: address (before
> it gets to the exchange box)?
>
> +----------+ +----------+ +-----------------------+ +----------+
> | Internet | -> | Firewall | ->| Postfix + SA + Amavis | -> | Exchange |
> +----------+ +----------+ +-----------------------+ +----------+
Yes, and it's important that you do so -- otherwise you flood innocent
bystanders with bounces for emails they never sent.... There are actually
RBLs which list sites which don't do end-recipient verification on their
relay MTAs, and they're becoming more and more frequently used....
The exact details vary slightly with Exchange and Postfix versions, but what
you want to set up is a $relay_recipient_map on Postfix which lists valid
Exchange addresses.
If it's just a few addresses and they change rarely, do it by hand. If it's
a lot of addresses or they change frequently, you can configure Postfix to
directly query Exchange about recipient validity via LDAP.
Alternately, you can also write a simple Perl script which queries Exchange
over LDAP, and generates a local database on the Postfix box from the
results. That's the approach I generally use -- in large setups it performs
better than firing up an LDAP query for each incoming email, and it means
that even when Exchange goes down you can still check recipient validity.
<<a rel="nofollow" href="http://www.postfix.org/docs.html";>http://www.postfix.org/docs.html</a>> has links to a couple of howto's on it,
or you can ask away here if you need more detailed information....
later,
chris
</pre>
<!--X-Body-of-Message-End-->
<!--X-MsgBody-End-->
<!--X-Follow-Ups-->
<hr>
<!--X-Follow-Ups-End-->
<!--X-References-->
<ul><li><strong>References</strong>:
<ul>
<li><strong><a name="00710" href="msg00710.html">[ale] postfix + amavis + spamassassin - Reject based on to address</a></strong>
<ul><li><em>From:</em> ale1 at cybertechcafe.net (Nathan J. Underwood)</li></ul></li>
</ul></li></ul>
<!--X-References-End-->
<!--X-BotPNI-->
<ul>
<li>Prev by Date:
<strong><a href="msg00740.html">[ale] How can I [rudely] make up an HTML+Graphic e-mail</a></strong>
</li>
<li>Next by Date:
<strong><a href="msg00742.html">[ale] Teaching Opportunity</a></strong>
</li>
<li>Previous by thread:
<strong><a href="msg00712.html">[ale] postfix + amavis + spamassassin - Reject based on to address</a></strong>
</li>
<li>Next by thread:
<strong><a href="msg00715.html">[ale] HotLinuxJobs recruiting for a senior RHAS administrator in South Florida</a></strong>
</li>
<li>Index(es):
<ul>
<li><a href="maillist.html#00741"><strong>Date</strong></a></li>
<li><a href="threads.html#00741"><strong>Thread</strong></a></li>
</ul>
</li>
</ul>
<!--X-BotPNI-End-->
<!--X-User-Footer-->
<!--X-User-Footer-End-->
</body>
</html>