On Mar 28, 5:32pm, Brian Reichert wrote:
} Subject: relay prevention
}
} What I want to do:
}
} a) If the sending host is within our domain, accept.
}
} b) If the sending host is without our domain, and the recipient is
} within our domain, accept.
}
} Conversely: if neither the sending host, nor the recipient, is
} within our domain, reject.
Here, inside doc.ic.ac.uk, we do this with:
# Allow anyone in DoC to send to anywhere.
# (Note that if this isn't present then relay_domains isn't checked!)
# 192.168.10 is the NTC network that phoenix is on
# 193.63.254 is the private net between phoenix and penguin
# 193.63.255 is the public net for sunsite machines
sender_net_accept_relay = 146.169.0.0/255.255.0.0:155.198.0.0/255.255.0.0:192.168.10.0/255.255.255.0:193.63.254.0/255.255.255.0:193.63.255.0/255.255.255.0
# I'm willing to relay mail onto these domains
# Just in case someone emails to, for example, archie@???
relay_domains = "*doc.ic.ac.uk"
If local_domains contains all your local domains then relay_domains isn't
necessary. I found I needed it because our local domain is "doc.ic.ac.uk"
but a few people mail to "archie.doc.ic.ac.uk".
--
--
Lee McLoughlin. Phone: +44 171 594 8388
ICParc, Imperial College, Fax: +44 171 594 8449
South Kensington, London. SW7 2BZ. UK. Email: L.McLoughlin@???
