Author: Dirk GROSSE OSTERHUES Date: To: Randy McAnally CC: exim-users Subject: Re: [exim] Accept local mail only from certain IP or auth
Hello Randy,
On 20/5/09 15:50, Randy McAnally wrote: > Hello all,
>
> I need an exim server to only accept local mail from a content filter
> (two IPs) and not the entire internet. Right now, a spammer can
> figure out the exim server's IP and bypass the content filter. [...]
> Is there a way to force exim to accept local mail only from the
> content filter if it is not authenticated?
You might want to have a look at the variable "relay_from_hosts" in
exim4.conf. Usually, hosts (i.e. IPs) in that list are allowed to relay
without authentication by ACL:
accept hosts = +relay_from_hosts
In addition, if you use TLS for authentication you might want to exclude
the IPs of your content filters from TLS advertise: