--
On Sun, Aug 25, 2002 at 07:45:14AM +0200, Nico Erfurth wrote:
>> hostlist relay_from_hosts = 127.0.0.1 : 192.168.1.0/8
>isn't /8 a little bit to big? this would be 192.*.*.* and in this space
>are public addresses too.
well yes, but this box is still inside a firewall and still being tested.
But you make a valid point.
>You must be careful, the ACLs are run from top to bottom, so if another
>rule denies you, your one will never be used, try exim -d -bh IP
It appears the right rule is denying me. What I don't understand is why it
can't seem to find the ip in the list.
so I added my workstation IP to the list like so.
hostlist relay_from_hosts = 127.0.0.1 : 192.168.1.2
Then ran a test session as you suggested as such:
exim -d -bh 192.168.1.2
The interesting bits are
check hosts = +relay_from_hosts
host in "127.0.0.1 : 192.168.1.2"? no (end of list)
host in "+relay_from_hosts"? no (end of list)
accept: condition test failed
processing "accept"
check authenticated = *
accept: condition test failed
processing "deny"
deny: condition test succeeded
SMTP>> 550 relay not permitted
550 relay not permitted
Does something here not seem right?
--
Ben Lutgens | http://people.sistina.com/~blutgens/
System Administrator | http://www.sistina.com/
Sistina Software Inc. |
"If you love something set it free, if it doesn't come back to you
hunt it down and set it on fire" -- George Carlin
--
[ Content of type application/pgp-signature deleted ]
--