Re: sender restriction - help
- aio shin a écrit :
> hi list,This is an unusual requirement. What problem are you trying to solve?
> I need help on this scenario that I want to accomplish.
> ex: I have the ff:
> my mail server is : 192.168.1.254
> -I have other network which is 192.168.10.0/24 which I included at mynetwork.
> -I need that user1@... can send only from IP 192.168.10.21
> using my mailserver, other than that, user1 should be denied relaying.
Why do you care about the IP? Better use SASL...
Anyway, you can achieve this using restriction classes
0.0.0.0/0 REJECT blah blah
but this does not scale. if you want to scale, you need a policy service
> -user2 should be able to send from 192.168.10.0/24 by relaying to myBy default, all users sending from mynetworks are allowed relay. so you
> mail server (192.168.1.254)
don't need to do anything.
if sending from outside, then do not rely on the sender for relay
authorization. The sender address is eaisly forged.
> any idea how to accomplish?
> currently Im searching postfix docs related to sender restriction but
> no success yet.