Paulo Andre wrote:
>>> deny message = user unknown
>>> domains = acc.darkstar.nom.za
>>> !sender_domains = +acc_domains
>> Should work. But you want this only be done for special local parts,
>> so add a local_parts condition.
> I have tried the above ACL and it doesn't work, I have one domain to
> allow in the db, and yet all domains can send, do I need some
> 'condition' in the acl?
No, "condition" is only for things that cannot be done with any of the
predefined conditions (like domains and sender_domains).
Make sure you put this before an accept hits (I put these things right
after acl_check_rcpt).
And use the -bh command line option to run a fake smtp session and test
your acl setup. E.g.:
$ exim -bh 10.1.1.1
**** SMTP testing session as if from host 10.1.1.1
**** but without any ident (RFC 1413) callback.
**** This is not for real!
>>> host in hosts_connection_nolog? no (option unset)
[...]
220 ymmv.de ESMTP Exim 4.47 Wed, 16 Feb 2005 12:02:30 +0100
mail from:jh@???
>>> using ACL "acl_check_mail"
>>> processing "deny"
[...]
250 OK
rcpt to:pandre@???
>>> using ACL "acl_check_rcpt"
>>> processing "deny"
[...]
550 relay not permitted
LOG: H=[10.1.1.1] F=<jh@???> rejected RCPT pandre@???:
relay not permitted
