Postfix - Sasl
Aqui les envio mi config completa para que la revises
#--nombre,dominios(s) y red(es)--#
myhostname = correo.subdominio.cu
mydomain = subdominio.cu
relayhost = 200.13.14.8
#--direccion que aparece en el from--#
myorigin = $mydomain
#--appending .domain is the MUA's job--#
append_dot_mydomain = no
biff = no
#--parametro TLS por defecto--#
smtpd_tls_cert_file=/etc/ssl/certs/ssl-cert-snakeoil.pem
smtpd_tls_key_file=/etc/ssl/private/ssl-cert-snakeoil.key
smtpd_use_tls=yes
smtpd_tls_session_cache_database = btree:${data_directory}/smtpd_scache
smtp_tls_session_cache_database = btree:${data_directory}/smtp_scache
#--ubicacion de direcctorios--#
queue_directory = /var/spool/postfix
command_directory = /usr/sbin
daemon_directory = /usr/lib/postfix
program_directory = /usr/lib/postfix
#--propietario de colas y procesos--#
mail_owner = postfix
setgid_group = postdrop
#--tratamientos de alias--#
alias_maps = hash:/etc/aliases
alias_database = hash:/etc/aliases
#--identificacion de usuarios locales--#
local_recipient_maps = $alias_maps unix:passwd.byname
#--entrega en paralelo para limitar el ancho de banda--#
default_destination_concurrency_limit = 10
local_destination_concurrency_limit = 10
local_destination_recipient_limit = 80
#--notificacion en caso de algun error--#
notify_classes = resource, software, policy
#--seguridad informatica--#
sender_bcc_maps = hash:/etc/postfix/sender_bcc
recipient_bcc_maps = hash:/etc/postfix/recipient_bcc
#--mensajes de error de entrega--#
bounce_template_file = /etc/postfix/bounce.cf
#--otros parametros de configuracion--#
recipient_delimiter = +
inet_interfaces = all
inet_protocols = all
#--2 mbytes maximo--#
message_size_limit = 2097152
#--50 mbytes buzon --#
mailbox_size_limit = 52428800
#--control de correo entrante / saliente--#
mynetworks = /etc/postfix/smtp_ip_permit
mydestination = $myhostname, $mydomain, localhost.$mydomain, localhost
#--habilitar el soporte sasl--#
smtpd_sasl_auth_enable = yes
smtp_sasl_auth_enable = yes
smtpd_sasl_security_options = noanonymous
smtpd_sasl_local_domain = $myhostname
broken_sasl_auth_clients = yes
smtpd_sasl_auth_enable = yes
#--habilitar el soporte tls--#
smtpd_tls_auth_only = no
smtp_use_tls = yes
smtp_tls_note_starttls_offer = yes
smtpd_tls_loglevel = 1
smtpd_tls_received_header = yes
smtpd_tls_session_cache_timeout = 3600s
tls_random_source = dev:/dev/urandom
#--host que pueden hacer smtp definidos en mynetworks--#
smtpd_client_restrictions =
permit_sasl_authenticated,permit_mynetworks,reject
smtpd_recipient_restrictions =
permit_mynetworks,permit_sasl_authenticated,reject_unauth_destination,check_policy_service
inet:127.0.0.1:60000
#--pasar toda la mesajeria a la cola hold para el mailscanner y filtrado--#
header_checks = regexp:/etc/postfix/header_checks
body_checks = regexp:/etc/postfix/body_checks
#--soporte para el MAILDIR--#
home_mailbox = Maildir/
#--restrinciones nacionales y la une--#
smtpd_restriction_classes =
admin_in,
nac_in,
nac_out,
yahoo_in,
yahoo_out,
smtpd_sender_restrictions =
check_recipient_access hash:/etc/postfix/_usuarios_admin_in,
check_recipient_access hash:/etc/postfix/_usuarios_nac_in,
check_recipient_access hash:/etc/postfix/_usuarios_yahoo_in,
reject_non_fqdn_sender,
permit
smtpd_recipient_restrictions =
check_sender_access hash:/etc/postfix/_usuarios_nac_out,
check_sender_access hash:/etc/postfix/_usuarios_yahoo_out,
permit_sasl_authenticated,
permit_mynetworks,
reject_non_fqdn_recipient,
reject_unknown_recipient_domain,
reject_unauth_destination,
reject
inter_out =
permit
admin_in =
check_recipient_access regexp:/etc/postfix/_filtro_admin,
reject
nac_out =
check_recipient_access regexp:/etc/postfix/_filtro_nac,
reject
nac_in =
check_sender_access regexp:/etc/postfix/_filtro_nac,
reject
yahoo_in =
check_sender_access regexp:/etc/postfix/_filtro_yahoo,
reject
yahoo_out =
check_recipient_access regexp:/etc/postfix/_filtro_yahoo,
reject
smtpd_data_restrictions = reject_unauth_pipelining
--
_________________________________________
/ Joan Manuel López de la Cruz \
| Administrador de Red |
| Phone: (0121) 383421 |
| Phone: (0121) 383465 Ext. 314 |
| Jabber: joanmanuel@jb.elecgtm.une.cu |
| Jabber: joanmanuel@jb.une.cu |
| Jabber: joanmanuel_l@yahoo.es |
| Linux User# 490001 |
\ Web: http://blog-admin.elecgtm.une.cu /
-----------------------------------------
\
\
.--.
|o_o |
|:_/ |
// \ \
(| | )
/'\_ _/`\
\___)=(___/
Reply to: