great tutorial made by falko. i have this problem: on postfix parameter mynetworks i have 127.0.0.0/8: -im testing the mailserver on a 192.168.1.X network and i'm able to send email.is this correct? -the sasl auth work but i can also send without authorization -if i send to a non existing virtual user i got one pop up that reject the sending. i will like always to send if im authorized, and after a wrong sending a mailer-daemon message on my mailbox that said like user unknow.is possible? anyone can help? my log. sending from 1 real vuser to another real vuser: Code: Oct 6 12:10:43 armail postfix/smtpd[3297]: connect from unknown[192.168.1.110] Oct 6 12:10:45 armail postfix/smtpd[3297]: A0A46590079: client=unknown[192.168.1.110] Oct 6 12:10:45 armail postfix/cleanup[3307]: A0A46590079: message-id=<[email protected]> Oct 6 12:10:45 armail postfix/qmgr[2683]: A0A46590079: from=<[email protected]>, size=512, nrcpt=1 (queue active) Oct 6 12:10:45 armail postfix/smtpd[3297]: disconnect from unknown[192.168.1.110] Oct 6 12:10:51 armail postfix/smtpd[3315]: connect from unknown[127.0.0.1] Oct 6 10:10:51 armail postfix/smtpd[3315]: 30FFB590080: client=unknown[127.0.0.1] Oct 6 12:10:51 armail postfix/cleanup[3307]: 30FFB590080: message-id=<[email protected]> Oct 6 12:10:51 armail postfix/qmgr[2683]: 30FFB590080: from=<[email protected]>, size=956, nrcpt=1 (queue active) Oct 6 10:10:51 armail postfix/smtpd[3315]: disconnect from unknown[127.0.0.1] Oct 6 12:10:51 armail amavis[3086]: (03086-01) Passed CLEAN, MYNETS LOCAL [192.168.1.110] [192.168.1.110] <[email protected]> -> <[email protected]>, Message-ID: <[email protected]>, mail_id: m0M39gIdkJVn, Hits: -0.655, size: 512, queued_as: 30FFB590080, 5478 ms Oct 6 12:10:51 armail postfix/smtp[3309]: A0A46590079: to=<[email protected]>, relay=127.0.0.1[127.0.0.1]:10024, delay=5.7, delays=0.16/0.02/0.01/5.5, dsn=2.0.0, status=sent (250 2.0.0 Ok: queued as 30FFB590080) Oct 6 12:10:51 armail postfix/qmgr[2683]: A0A46590079: removed Oct 6 12:10:51 armail postfix/pipe[3316]: 30FFB590080: to=<[email protected]>, relay=maildrop, delay=0.16, delays=0.01/0.05/0/0.11, dsn=2.0.0, status=sent (delivered via maildrop service) Oct 6 12:10:51 armail postfix/qmgr[2683]: 30FFB590080: removed my log using auth: Code: Oct 6 12:22:19 armail postfix/smtpd[3658]: connect from unknown[192.168.1.110] Oct 6 12:22:24 armail postfix/smtpd[3658]: 2F55559007F: client=unknown[192.168.1.110], sasl_method=PLAIN, [email protected] Oct 6 12:22:24 armail postfix/cleanup[3667]: 2F55559007F: message-id=<[email protected]> Oct 6 12:22:24 armail postfix/qmgr[2683]: 2F55559007F: from=<[email protected]>, size=514, nrcpt=1 (queue active) Oct 6 12:22:24 armail postfix/smtpd[3658]: disconnect from unknown[192.168.1.110] Oct 6 12:22:26 armail postfix/smtpd[3674]: connect from unknown[127.0.0.1] Oct 6 10:22:26 armail postfix/smtpd[3674]: 9FE6D590081: client=unknown[127.0.0.1] Oct 6 12:22:26 armail postfix/cleanup[3667]: 9FE6D590081: message-id=<[email protected]> Oct 6 12:22:26 armail postfix/qmgr[2683]: 9FE6D590081: from=<[email protected]>, size=958, nrcpt=1 (queue active) Oct 6 10:22:26 armail postfix/smtpd[3674]: disconnect from unknown[127.0.0.1] Oct 6 12:22:26 armail amavis[3086]: (03086-02) Passed CLEAN, MYNETS LOCAL [192.168.1.110] [192.168.1.110] <[email protected]> -> <[email protected]>, Message-ID: <[email protected]>, mail_id: QZgyHr2u0Et3, Hits: -0.686, size: 514, queued_as: 9FE6D590081, 2462 ms Oct 6 12:22:26 armail postfix/smtp[3669]: 2F55559007F: to=<[email protected]>, relay=127.0.0.1[127.0.0.1]:10024, delay=2.5, delays=0.04/0.01/0/2.5, dsn=2.0.0, status=sent (250 2.0.0 Ok: queued as 9FE6D590081) Oct 6 12:22:26 armail postfix/qmgr[2683]: 2F55559007F: removed Oct 6 12:22:26 armail postfix/pipe[3675]: 9FE6D590081: to=<[email protected]>, relay=maildrop, delay=0.03, delays=0.01/0.01/0/0.01, dsn=2.0.0, status=sent (delivered via maildrop service) Oct 6 12:22:26 armail postfix/qmgr[2683]: 9FE6D590081: removed my postconf -n Code: alias_database = hash:/etc/aliases alias_maps = hash:/etc/aliases broken_sasl_auth_clients = yes command_directory = /usr/sbin config_directory = /etc/postfix content_filter = amavis:[127.0.0.1]:10024 daemon_directory = /usr/libexec/postfix debug_peer_level = 2 html_directory = no inet_interfaces = all mail_owner = postfix mailq_path = /usr/bin/mailq.postfix manpage_directory = /usr/share/man mydestination = armail.argroup.it, localhost, localhost.argroup.it myhostname = armail.argroup.it mynetworks = 127.0.0.0/8 newaliases_path = /usr/bin/newaliases.postfix proxy_read_maps = $local_recipient_maps $mydestination $virtual_alias_maps $virtual_alias_domains $virtual_mailbox_maps $virtual_mailbox_domains $relay_recipient_maps $relay_domains $canonical_maps $sender_canonical_maps $recipient_canonical_maps $relocated_maps $transport_maps $mynetworks $virtual_mailbox_limit_maps queue_directory = /var/spool/postfix readme_directory = /usr/share/doc/postfix-2.3.3/README_FILES sample_directory = /usr/share/doc/postfix-2.3.3/samples sendmail_path = /usr/sbin/sendmail.postfix setgid_group = postdrop smtpd_recipient_restrictions = permit_mynetworks, permit_sasl_authenticated, reject_unauth_destination smtpd_sasl_auth_enable = yes smtpd_tls_cert_file = /etc/postfix/smtpd.cert smtpd_tls_key_file = /etc/postfix/smtpd.key smtpd_use_tls = yes transport_maps = proxy:mysql:/etc/postfix/mysql-virtual_transports.cf unknown_local_recipient_reject_code = 550 virtual_alias_domains = virtual_alias_maps = proxy:mysql:/etc/postfix/mysql-virtual_forwardings.cf, mysql:/etc/postfix/mysql-virtual_email2email.cf virtual_create_maildirsize = yes virtual_gid_maps = static:5000 virtual_mailbox_base = /home/vmail virtual_mailbox_domains = proxy:mysql:/etc/postfix/mysql-virtual_domains.cf virtual_mailbox_limit_maps = proxy:mysql:/etc/postfix/mysql-virtual_mailbox_limit_maps.cf virtual_mailbox_limit_override = yes virtual_mailbox_maps = proxy:mysql:/etc/postfix/mysql-virtual_mailboxes.cf virtual_maildir_limit_message = "The user you are trying to reach is over quota." virtual_overquota_bounce = yes virtual_uid_maps = static:5000
You can always send to a user that is on the same server without authentication. You need to authenticate if you send to a remote server.