[ Date Index ] [ Thread Index ] [ <= Previous by date / thread ] [ Next by date / thread => ]
On 21/03/06 09:33:58, mike@xxxxxxxxxxxxx wrote:
G'day all, I have the following... internet | | firewall---smtp protected network | | smtp dmz mail from the internet is forwarded to the dmz smtpthe dmz smtp runs spamassassin and some other filtering stuff, if the mail is passed it get sent to my mail smtp server in the protected zone.The problem I have is that some spam is still getting through and I dont have a catchall email address.So email that get sent to a non account gets bounced.I noticed that I was replying to people with 505 User known which I don't really want to do. Of course some of this is failing due to bogus domains and some is getting through.
Ok, I hve got it to work and here it is in case I want it again or other want it.
internet | | firewall -- smtp protected | | exposed smtp | mailscanner | internal smtpI am using mailscanner which use mail queues and two copies of sendmail. I wanted to reject unknown users at the incoming mta rather than double bouncing out of my protected smtp.
Lots of hints on the web but no actual details. Eventually... Add your domains to relay-domains domain1.com domain2.org this allows sendmail to relay for these domains. add the valid users to access turn the file into a db file cat access|makemap hash access.db restart sendmail, that's it.My internet facing smtp only accepts mail for mike and abuse everything else, the last line, is rejected. Everything from domain2.org is accepted because there is nothing access for it.
When changing the access file you don't need to restart sendmail, a reload will do. kill -1 <pid of sendmail>
Whew... -- 'ooroo Mike...(:)-) --------------------------------------------------- Email: mike@xxxxxxxxxxxxx o You need only two tools. o ///// A hammer and duct tape. If it /@ `\ /) ~ doesn't move and it should use > (O) X< ~ Fish!! the hammer. If it moves and `\___/' \) ~ shouldn't, use the tape. \\\ --------------------------------------------------- -- The Mailing List for the Devon & Cornwall LUG Mail majordomo@xxxxxxxxxxxxx with "unsubscribe list" in the message body to unsubscribe. FAQ: www.dcglug.org.uk/linux_adm/list-faq.html