[Linux] [Fwd: qmail-postfix]
Nick Seidenman
nicks@argate.net
Sun, 16 Jul 2000 19:35:37 -0400 (EDT)
On Sun, 16 Jul 2000 blalock@ieee.org wrote:
> > Just give a hollar if you get stuck, but it should all be pretty
> > straightforward.
> >
> > nick
> Ok, I seem to be stuck. :( I have postfix sending mail, made it that far
> with qmail. :) My set up is as follows
> domainname - basicq.com, mail.basicq.com pointing at my firewall
> address. Firewall box inside address 192.168.x.x, name good.domain
>
> The postfix server (behind firewall box) I changed the domain to
> basicq.com, computer name kerryb, user kerryb with home kerrycb. address
> 192.168.x.xx
>
> section for smaple setup as follows:
> <snip>
> Running Postfix inside an intranet
>
> The simplest way to set up Postfix on a host inside a firewalled network
> is to send all your mail to an intranet mail gateway, and to
> let that mail gateway take care of forwarding.
>
> Send mail as user@domain. This is optional but highly recommended
> because it allows users to change machines without
> hassle.
>
> /etc/postfix/main.cf:
> myorigin = $mydomain
> ##Is $my.domain = basicq.com ?
Yes. But note, that you should have a file in /etc/postfix called
postfix.cw (similar to sendmail.cw if you're using sendmail) that lists
all the domains for which this MTA will accept mail. So if your machine's
name is kerryb, you should have
basicq.com
kerryb.basicq.com
and any other domains for which this guy's gonna accept incoming email.
> Forward all mail to an intranet mail gateway, except for mail for
> the local machine:
This is for outgoing mail, not incoming. Are you trying to use this MTA
to forward to some other one? If so, there are better, simpler ways to do
this, I think.
> /etc/postfix/main.cf:
> relayhost = $mydomain
> ## same here?
Again, if you're using some other host to send mail TO hosts outside your
domain, then you have a relay host. It doesn't sound like that's what
you're trying to set up, so don't even bother configuring a relay host.
Leave it as
relayhost =
(i.e., nothing after the '=').
> This assumes that your organization has set up internal MX records
> for the local domain.
>
> If your intranet does not use MX records internally, you have to
> specify the intranet mail gateway host itself:
>
> /etc/postfix/main.cf:
> relayhost = host.my.domain
> ## as above did not work, tried [firewall outside address-basicq.com]
> ## this did not work
> If your intranet does not use DNS internally, you have to disable
> DNS lookups as well:
>
> /etc/postfix/main.cf:
> disable_dns_lookups = yes
> ## did not do this step, was not sure.
> ## did not try the below configuration.
Why would you disable dns lookups?
> In addition to the above you can configure Postfix to deliver
> intranet mail directly instead of sending it via the intranet mail
> gateway.
>
> Specify routing information for the internal domain in the
> transport table, and enable transport table lookups.
>
> /etc/postfix/transport:
> my.domain smtp:
> .my.domain smtp:
> thishost.my.domain local: !!!important!!!
> localhost.my.domain local: !!!important!!!
>
> /etc/postfix/main.cf:
> transport_maps = hash:/etc/postfix/transport
>
> <snip>
>
> I could send the main.cf file if that would help. I have it sending mail
Tell me a little bit more about your network. Is the machine running
postfix going to be the main machine for email? That is, will email be
delivered to this machine for others in your domain to pick up? Will this
machine act as a relay for OUTBOUND email, or will the other machines in
your network be allowed to establish their own outbound connections when
sending mail?
----------------------------------------------------------------------
Nick Seidenman, CISSP | "Ugly programs are like ugly
Senior Security Consultant | suspension bridges: they're much
Hyperon, Inc. | more liable to collapse than
www.hyperon.com | pretty ones." -Eric Raymond