Re: [exim] ACL/Router

Top Page
Delete this message
Reply to this message
Author: Jakob Hirsch
Date:  
To: 'Exim-users'
Subject: Re: [exim] ACL/Router
Paulo Andre wrote:

>>>     deny     message = user unknown
>>>              domains = acc.darkstar.nom.za
>>>               !sender_domains = +acc_domains   
>> Should work. But you want this only be done for special local parts, 
>> so add a local_parts condition.
> I have tried the above ACL and it doesn't work, I have one domain to 
> allow in the db, and yet all domains can send, do I need some 
> 'condition' in the acl?


No, "condition" is only for things that cannot be done with any of the
predefined conditions (like domains and sender_domains).

Make sure you put this before an accept hits (I put these things right
after acl_check_rcpt).

And use the -bh command line option to run a fake smtp session and test
your acl setup. E.g.:

$ exim -bh 10.1.1.1

**** SMTP testing session as if from host 10.1.1.1
**** but without any ident (RFC 1413) callback.
**** This is not for real!

>>> host in hosts_connection_nolog? no (option unset)

[...]
220 ymmv.de ESMTP Exim 4.47 Wed, 16 Feb 2005 12:02:30 +0100
mail from:jh@???
>>> using ACL "acl_check_mail"
>>> processing "deny"

[...]
250 OK
rcpt to:pandre@???
>>> using ACL "acl_check_rcpt"
>>> processing "deny"

[...]
550 relay not permitted
LOG: H=[10.1.1.1] F=<jh@???> rejected RCPT pandre@???:
relay not permitted