[Postfixbuch-users] Mails von authentifizierten Benutzern and ungültige Empfänger annehmen

Dominik Schulz lkml at ds.gauner.org
Fr Okt 7 11:16:27 CEST 2011


Hallo Liste,

ich habe ein kleines Problem mit meinem Postfix.

Er lehnt mails von authentifizierten Benutzern (SMTP-Auth) an ungültige,
lokale Adressen ab. Das ist grundsätzlich erstmal nicht schlimm, aber wenn
ich jetzt eine Mail an eine große Anzahl von (lokalen) Empfängern schicke
nimmt der Postfix die Mail nicht an und lässt meine User mit einer relativ
nutzlosen Fehlermeldung alleine.

Wie bringe ich den Postfix dazu Mails von authentifizierten Benutzern
immer anzunehmen und später ggf. zu bouncen?

Verständlicherweise möchte ich das nur für legitime Nutzer. Für Mails die
aus dem Internet kommen sollte das nicht natürlich nicht gelten.

Auszug aus dem mail.log:
Oct  7 08:36:34 vs-mail-pf postfix/smtpd[14110]: 0F2FBEE0003: reject: RCPT
from unknown[1.2.3.4]: 550 5.1.1 <asdhsdtgerh at domain.tld>: Recipient
address rejected: User unknown in virtual mailbox table;
from=<admin at domain.tld> to=<asdhsdtgerh at domain.tld> proto=ESMTP
helo=<mypc.mylocalnet>

Postconf -n (anonymisiert):
2bounce_notice_recipient = postmaster
alias_database = hash:/etc/aliases
alias_maps = hash:/etc/aliases
anvil_rate_time_unit = 60s
anvil_status_update_time = 600s
append_dot_mydomain = no
biff = no
bounce_queue_lifetime = 2d
config_directory = /etc/postfix
default_database_type = btree
inet_interfaces = all
inet_protocols = ipv4
mailbox_size_limit = 0
maximal_queue_lifetime = 3d
message_size_limit = 26214400
milter_default_action = accept
milter_protocol = 2
mydestination = mail.domain.tld, localhost
myhostname = mail.domain.tld
mynetworks = [::1]/128
myorigin = /etc/mailname
proxy_read_maps = $local_recipient_maps     $mydestination
$virtual_alias_maps     $virtual_alias_domains     $virtual_mailbox_maps
  $virtual_mailbox_domain   $relay_recipient_maps     $relay_domains
$canonical_maps     $sender_canonical_maps     $recipient_canonical_maps
  $relocated_maps     $transport_maps   mynetworks
proxy:mysql:/etc/postfix/maps/access_recipient_roles.cf
readme_directory = no
recipient_delimiter = +
relayhost =
smtp_tls_session_cache_database = btree:${data_directory}/smtp_scache
smtp_use_tls = yes
smtpd_banner = $myhostname ESMTP $mail_name (Debian/GNU)
smtpd_client_connection_count_limit = 25
smtpd_client_connection_rate_limit = 60
smtpd_client_message_rate_limit = 1000
smtpd_client_recipient_rate_limit = 1000
smtpd_recipient_restrictions = check_recipient_access
proxy:mysql:/etc/postfix/maps/access_recipient_roles.cf,
check_client_access btree:/etc/postfix/maps/access_client,
check_helo_access btree:/etc/postfix/maps/access_helo, check_sender_access
btree:/etc/postfix/maps/access_sender, check_recipient_access
btree:/etc/postfix/maps/access_recipient, reject_non_fqdn_sender,
reject_non_fqdn_recipient,        reject_unknown_sender_domain,
reject_unknown_recipient_domain, permit_sasl_authenticated,
permit_mynetworks, reject_invalid_helo_hostname,
reject_unknown_helo_hostname,
reject_non_fqdn_helo_hostname,reject_unknown_client_hostname,reject_unknown_reverse_client_hostname,
       reject_rbl_client ix.dnsbl.manitu.net, reject_rbl_client
zen.spamhaus.org, check_policy_service inet:127.0.0.1:60000,
reject_unauth_destination,permit
smtpd_sasl_auth_enable = yes
smtpd_sasl_path = private/auth
smtpd_sasl_type = dovecot
smtpd_tls_auth_only = no
smtpd_tls_cert_file = /etc/ssl/certs/mail.domain.tld.crt
smtpd_tls_key_file = /etc/ssl/private/mail.domain.tld.key
smtpd_tls_session_cache_database = btree:${data_directory}/smtpd_scache
smtpd_use_tls = yes
soft_bounce = no
transport_maps = btree:/etc/postfix/maps/transport
unverified_recipient_reject_code = 577
virtual_alias_maps = proxy:mysql:/etc/postfix/maps/virtual_alias_maps.cf,
     proxy:mysql:/etc/postfix/maps/virtual_alias_domain_maps.cf,
proxy:mysql:/etc/poix/maps/virtual_alias_domain_mailbox_maps.cf,
proxy:mysql:/etc/postfix/maps/virtual_vacation_alias_maps.cf
virtual_gid_maps = static:111
virtual_mailbox_domains =
proxy:mysql:/etc/postfix/maps/virtual_domain_maps.cf,
proxy:mysql:/etc/postfix/maps/virtual_domain_alias_maps.cf
virtual_mailbox_maps = proxy:mysql:/etc/postfix/maps/virtual_mailbox_maps.cf
virtual_minimum_uid = 107
virtual_transport = dovecot
virtual_uid_maps = static:107
-- 
Best Regards,
Dominik Schulz




Mehr Informationen über die Mailingliste Postfixbuch-users