MESSAGE
DATE | 2021-12-21 |
FROM | raf
|
SUBJECT | Re: [Hangout - NYLXS] Adding Additional domains and outgoing email
|
From hangout-bounces-at-nylxs.com Fri Jan 7 05:08:57 2022 Return-Path: X-Original-To: archive-at-mrbrklyn.com Delivered-To: archive-at-mrbrklyn.com Received: from www2.mrbrklyn.com (www2.mrbrklyn.com [96.57.23.82]) by mrbrklyn.com (Postfix) with ESMTP id 1E647164030; Fri, 7 Jan 2022 05:08:55 -0500 (EST) X-Original-To: hangout-at-www2.mrbrklyn.com Delivered-To: hangout-at-www2.mrbrklyn.com Received: by mrbrklyn.com (Postfix, from userid 1000) id 0E48D164002; Fri, 7 Jan 2022 05:07:43 -0500 (EST) Resent-From: Ruben Safir Resent-Date: Fri, 7 Jan 2022 05:07:43 -0500 Resent-Message-ID: <20220107100743.GK20897-at-www2.mrbrklyn.com> Resent-To: hangout-at-mrbrklyn.com X-Original-To: ruben-at-mrbrklyn.com Delivered-To: ruben-at-mrbrklyn.com Received: from russian-caravan.cloud9.net (russian-caravan.cloud9.net [168.100.1.4]) by mrbrklyn.com (Postfix) with ESMTP id 95584163FD5 for ; Tue, 21 Dec 2021 22:20:28 -0500 (EST) Received: by russian-caravan.cloud9.net (Postfix) id 3A752342815; Tue, 21 Dec 2021 22:20:07 -0500 (EST) Delivered-To: postfix-users-outgoing-at-cloud9.net Received: from localhost (localhost [127.0.0.1]) by russian-caravan.cloud9.net (Postfix) with ESMTP id 392883426F8 for ; Tue, 21 Dec 2021 22:20:07 -0500 (EST) X-Virus-Scanned: amavisd-new at cloud9.net Received: from russian-caravan.cloud9.net ([127.0.0.1]) by localhost (russian-caravan.cloud9.net [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id l0JZ-UTbbhF4 for ; Tue, 21 Dec 2021 22:20:07 -0500 (EST) Received: by russian-caravan.cloud9.net (Postfix, from userid 54) id 1775834281A; Tue, 21 Dec 2021 22:20:07 -0500 (EST) Delivered-To: postfix-users-at-cloud9.net Received: from localhost (localhost [127.0.0.1]) by russian-caravan.cloud9.net (Postfix) with ESMTP id EA47F342815 for ; Tue, 21 Dec 2021 22:20:06 -0500 (EST) X-Virus-Scanned: amavisd-new at cloud9.net Received: from russian-caravan.cloud9.net ([127.0.0.1]) by localhost (russian-caravan.cloud9.net [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id BbT6YKeZKoxp for ; Tue, 21 Dec 2021 22:20:06 -0500 (EST) Received: from ook.raf.org (ook.raf.org [139.99.156.21]) (using TLSv1.2 with cipher ADH-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by russian-caravan.cloud9.net (Postfix) with ESMTPS id 474103426F8 for ; Tue, 21 Dec 2021 22:20:06 -0500 (EST) Received: from localhost (localhost [127.0.0.1]) by ook.raf.org (Postfix) with ESMTP id 0B1465DE73 for ; Wed, 22 Dec 2021 14:19:51 +1100 (AEDT) X-Virus-Scanned: Debian amavisd-new at ook.raf.org Received: from ook.raf.org ([127.0.0.1]) by localhost (ook.raf.org [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id FYRjOOKsdfKv for ; Wed, 22 Dec 2021 14:19:49 +1100 (AEDT) Received: by ook.raf.org (Postfix, from userid 1001) id CECAE61AE6; Wed, 22 Dec 2021 14:19:49 +1100 (AEDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=raf.org; s=001; t=1640143189; bh=Oz5iPRmxA6njfI1/VBPC0GABqXfnozOLHyZCZf2czAM=; h=Date:From:To:Subject:References:In-Reply-To:From; b=KGk3F/pTzorjayYEY5GZ4aMXmHSt0REJAis8eb5gFrfWDWb/10vzSDAHmKlnXRZ+S KknKUNlUePPWI+b1TszeaDpMvPo3ue+oDsGBDTgnQGMYBTCOGiISWITs8zssk8Oh3n bVRwgciD4M2slB68FrX1CFAETq8ByLrVfEP8LHUCX1nR8u9PiZy4e8FeQvpduXlUgp 6V/Zs226wHEX11lK12cVwWxNi5k5b0HndeoRGTT6PxjouTfyGPdPWeR+/y5gTivVQP rkX5kt/CiTHlD75RrcI+HGyiE+kq9nTEQg4dGeVj7mK98ZoioXk34JlWFtbNcAL2eV GiuPmCYQPe7QA== Date: Wed, 22 Dec 2021 14:19:49 +1100 From: raf To: postfix-users-at-postfix.org Message-ID: Mail-Followup-To: postfix-users-at-postfix.org References: <8e8e3633-1574-aea2-ef68-bb6cea73e751-at-mrbrklyn.com> MIME-Version: 1.0 Content-Disposition: inline In-Reply-To: <8e8e3633-1574-aea2-ef68-bb6cea73e751-at-mrbrklyn.com> Precedence: bulk Subject: Re: [Hangout - NYLXS] Adding Additional domains and outgoing email X-BeenThere: hangout-at-nylxs.com X-Mailman-Version: 2.1.30rc1 List-Id: NYLXS Tech Talk and Politics List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit Errors-To: hangout-bounces-at-nylxs.com Sender: "Hangout"
On Tue, Dec 21, 2021 at 06:52:23AM -0500, Ruben Safir wrote:
> I want to add a domain for the office in addition to my current domain. > > I've done this before, following the outline in: > http://www.postfix.org/VIRTUAL_README.html#canonical > > using > > [ruben-at-www2 ~]$ cat /etc/postfix/main.cf|grep mydest > mydestination = www.domain1.com, www2.domain1.com, home.domain1.com, > domain1.com, domain2.com, domain3.com, domain4.com, domain5.com, > newistdomain.com > > So I can receive mail satisfactory and this has been good enough since I > normally ssh in from remote and use mutt and all my outgoing email is > transformed to name-at-domain.com > > I need for select users from the newistdomain.com to have that > name-at-newistdomain.com > > I am using thunderbird and dovecot to pop mail from the system. At > home, this is no problem as I am on the local network. I just set up the > smtp server to the postfix host running postfix.
That should probably be the same for all Thunerbird users as well.
> mydomain = domain1.com > masquerade_domains = domain1.com, domain1.com #which is probably wrong > myhostname = domain1.com
I'm sure that domain1.com doesn't need to appear twice in the masquerade_domains parameter, but it's harmless.
> How do I securely open postfix to relay email received from these > specific external office locals using newistdoman.coms
If you can already connect using Thunderbird, you must have an entry for submission and/or submissions/smtps (i.e., port 587 and/or 465) in /etc/postfix.master.cf, you just need to override the smtpd_recipient_restrictions or smtpd_relay_restrictions parameters there to permit SASL-authenticated users t osend mail whereever they want. e.g.:
smtps inet n - y - - smtpd -o syslog_name=postfix/$service_name -o smtpd_tls_wrappermode=yes -o smtpd_sasl_auth_enable=yes -o smtpd_client_restrictions= -o smtpd_helo_restrictions= -o smtpd_sender_restrictions= -o smtpd_recipient_restrictions= -o smtpd_relay_restrictions=permit_sasl_authenticated,reject
submission inet n - y - - smtpd -o syslog_name=postfix/$service_name -o smtpd_tls_security_level=encrypt -o smtpd_sasl_auth_enable=yes -o smtpd_tls_auth_only=yes -o smtpd_client_restrictions= -o smtpd_helo_restrictions= -o smtpd_sender_restrictions= -o smtpd_recipient_restrictions= -o smtpd_relay_restrictions=permit_sasl_authenticated,reject
Or have the relevant parameters set similarly in /etc/postfix/main.cf.
> and how do I get > those accounts to default to name-at-newistdoman.com ?
I think that that's something that should be specified in Thunderbird itself.
But if the Thunderbird clients are configured with an incorrect/non-ideal sender domain, and you need Postfix to override that, you can probably handle that either with canonical or generic address rewriting:
http://www.postfix.org/ADDRESS_REWRITING_README.html#canonical (incoming/outgoing) http://www.postfix.org/ADDRESS_REWRITING_README.html#generic (outgoing only)
Any parameter changes that need to be added can be added to the service declaration in master.cf using -o options.
But since this is only for "select users", it probably makes more sense for those users to just set their correct from address in Thunderbird (unless I've misunderstood something).
cheers, raf _______________________________________________ Hangout mailing list Hangout-at-nylxs.com http://lists.mrbrklyn.com/mailman/listinfo/hangout
|
|