Config Postfix - Advise

Discussion in 'Installation/Configuration' started by stef157, Apr 10, 2014.

  1. stef157

    stef157 Member

    Hi all,

    Here is my actual config, I would like to know what do you think about it…
    => what can I improve ? nor what I've to remove ?
    I've a problem for one customer :
    Code:
    ost client-tld.mail.eo.outlook.com[213.199.154.23]
        said: 501 5.1.7 Invalid address (in reply to MAIL FROM command)
    Thanks for all !

    Code:
    # See /usr/share/postfix/main.cf.dist for a commented, more complete version
    
    # Debian specific:  Specifying a file name will cause the first
    # line of that file to be used as the name.  The Debian default
    # is /etc/mailname.
    #myorigin = /etc/mailname
    
    double_bounce_sender=root
    bounce_notice_recipient=root
    delay_notice_recipient=root
    double_bounce_sender=root
    error_notice_recipient=root
    notify_classes = bounce, delay, policy, resource
    
    allow_percent_hack = no
    show_user_unknown_table_name=no
    
    
    #smtpd_banner = $myhostname ESMTP $mail_name (Debian/GNU)
    smtpd_banner = $myhostname ESMTP $mail_name
    biff = no
    smtpd_helo_required=yes
    
    # appending .domain is the MUA's job.
    append_dot_mydomain = no
    
    # Uncomment the next line to generate "delayed mail" warnings
    #delay_warning_time = 4h
    
    readme_directory = /usr/share/doc/postfix
    
    
    smtpd_tls_cert_file = /etc/postfix/smtpd.cert
    smtpd_tls_key_file = /etc/postfix/smtpd.key
    smtpd_use_tls = yes
    smtpd_tls_session_cache_database = btree:${data_directory}/smtpd_scache
    smtp_tls_session_cache_database = btree:${data_directory}/smtp_scache
    
    
    
    
    myhostname = server1.domain.tld
    alias_maps = hash:/etc/aliases, hash:/var/lib/mailman/data/aliases
    alias_database = hash:/etc/aliases, hash:/var/lib/mailman/data/aliases
    myorigin = /etc/mailname
    mydestination = server1.domain.tld, localhost, localhost.localdomain
    relayhost = 
    mynetworks = 127.0.0.0/8 [::1]/128
    mailbox_size_limit = 0
    recipient_delimiter = +
    inet_interfaces = all
    html_directory = /usr/share/doc/postfix/html
    virtual_alias_domains = 
    virtual_alias_maps = proxy:mysql:/etc/postfix/mysql-virtual_forwardings.cf, proxy:mysql:/etc/postfix/mysql-virtual_email2email.cf, hash:/var/lib/mailman/data/virtual-mailman
    virtual_mailbox_domains = proxy:mysql:/etc/postfix/mysql-virtual_domains.cf
    virtual_mailbox_maps = proxy:mysql:/etc/postfix/mysql-virtual_mailboxes.cf
    virtual_mailbox_base = /var/vmail
    virtual_uid_maps = static:5000
    virtual_gid_maps = static:5000
    inet_protocols = all
    smtpd_sasl_auth_enable = yes
    broken_sasl_auth_clients = yes
    smtpd_sasl_authenticated_header = yes
    
    smtpd_recipient_restrictions = 
     permit_mynetworks, 
     permit_sasl_authenticated, 
     check_recipient_access mysql:/etc/postfix/mysql-virtual_recipient.cf, 
     reject_unauth_destination
    
    smtpd_tls_security_level = may
    transport_maps = hash:/var/lib/mailman/data/transport-mailman, proxy:mysql:/etc/postfix/mysql-virtual_transports.cf
    relay_domains = mysql:/etc/postfix/mysql-virtual_relaydomains.cf
    relay_recipient_maps = mysql:/etc/postfix/mysql-virtual_relayrecipientmaps.cf
    proxy_read_maps = $local_recipient_maps $mydestination $virtual_alias_maps $virtual_alias_domains $virtual_mailbox_maps $virtual_mailbox_domains $relay_recipient_maps $relay_domains $canonical_maps $sender_canonical_maps $recipient_canonical_maps $relocated_maps $transport_maps $mynetworks $virtual_mailbox_limit_maps
    
    smtpd_sender_restrictions =  
     check_sender_access regexp:/etc/postfix/tag_as_originating.re, 
     permit_mynetworks, 
     permit_sasl_authenticated, 
     check_sender_access mysql:/etc/postfix/mysql-virtual_sender.cf, 
     check_sender_access regexp:/etc/postfix/tag_as_foreign.re
    
    smtpd_client_restrictions = 
     permit_mynetworks,
     permit_sasl_authenticated,
     reject_unknown_client_hostname
     check_client_access mysql:/etc/postfix/mysql-virtual_client.cf
    
    
    smtpd_client_message_rate_limit = 100
    maildrop_destination_concurrency_limit = 1
    maildrop_destination_recipient_limit = 1
    virtual_transport = dovecot
    header_checks = regexp:/etc/postfix/header_checks
    mime_header_checks = regexp:/etc/postfix/mime_header_checks
    nested_header_checks = regexp:/etc/postfix/nested_header_checks
    body_checks = regexp:/etc/postfix/body_checks
    owner_request_special = no
    dovecot_destination_recipient_limit = 1
    smtpd_sasl_type = dovecot
    smtpd_sasl_path = private/auth
    content_filter = amavis:[127.0.0.1]:10024
    receive_override_options = no_address_mappings
    message_size_limit = 0
    smtpd_tls_CAfile = /usr/local/ispconfig/interface/ssl/startssl.chain.class1.server.crt
    swap_bangpath = no
    append_at_myorigin = no
    
    #SPAM
    
    disable_vrfy_command = yes
    smtpd_helo_restrictions = 
     permit_mynetworks, 
     permit_sasl_authenticated, 
     reject_non_fqdn_helo_hostname, 
     reject_invalid_helo_hostname
    
    
    strict_rfc821_envelopes = yes
     

Share This Page