Shulou(Shulou.com)06/03 Report--

1,58.215.76.168 (internal mail acceptance server)

Accept Post Office Server

[root@mail6 conf] # cat main.cf

Alias_database = hash:/usr/prima/postfix/conf/aliases

Alias_maps = hash:/usr/prima/postfix/conf/aliases

Append_at_myorigin = yes

Append_dot_mydomain = no

Command_directory = / usr/prima/postfix/sbin

Config_directory = / usr/prima/postfix/conf

Daemon_directory = / usr/prima/postfix/libexec

Debug_peer_level = 2

Disable_vrfy_command = yes

Inet_interfaces = all

Local_recipient_maps = $alias_maps hash:/usr/prima/postfix/conf/virtual

Mail_owner = postfix

Mailbox_transport = maildrop

Maildrop_checkquota = yes

# The maildrop_checkquota_all controls whether reject mail only when all

# receipts are out of quota. This should be turned off.

Maildrop_checkquota_all = no

Maildrop_destination_recipient_limit = 1

Mailq_path = / usr/bin/mailq

Manpage_directory = / usr/prima/postfix/man

Maximal_backoff_time = 3600s

Maximal_queue_lifetime = 5400s

Minimal_backoff_time = 1800s

Mydestination = $myhostname $transport_maps

Myhostname = mail6.edong.com

Mynetworks = 127.0.0.0amp 8

Mynetworks_style = subnet

Newaliases_path = / usr/bin/newaliases

Queue_directory = / var/spool/postfix

Queue_run_delay = 60s

Readme_directory = / usr/prima/postfix/conf/README_FILES

Sample_directory = / usr/prima/postfix/conf/samples

Sendmail_path = / usr/sbin/sendmail

Setgid_group = postdrop

Smtp_skip_4xx_greeting = no

Smtpd_etrn_restrictions = reject

Smtpd_helo_required = yes

Smtpd_recipient_limit = 100

# freemail host checks

Smtpd_restriction_classes = from_freemail_host

From_freemail_host = xheader_if_reject check_client_access hash:/usr/prima/postfix/conf/freemail_hosts

Reject

Smtpd_recipient_restrictions = reject_unauth_pipelining

Permit_mynetworks

Reject_unknown_recipient_domain

Permit_sasl_authenticated

# xheader_if_reject reject_unknown_client

# xheader_if_reject reject_unknown_hostname

# xheader_if_reject reject_unknown_sender_domain

# xheader_if_reject reject_invalid_hostname

# xheader_if_reject reject_non_fqdn_hostname

# xheader_if_reject reject_non_fqdn_sender

# xheader_if_reject reject_non_fqdn_recipient

# check_sender_access hash:/usr/prima/postfix/conf/freemail_access

Reject_unauth_destination

Check_client_access hash:/usr/prima/postfix/conf/filter_server

Check_recipient_access regexp:/usr/prima/postfix/conf/mail_filter

Check_client_access hash:/usr/prima/postfix/conf/white_list_server

Reject_rbl_client zen.spamhaus.org

Smtpd_sasl_auth_enable = yes

Smtpd_sasl_local_domain = $myhostname

Soft_bounce = no

Strict_rfc821_envelopes = yes

Transport_maps = hash:/usr/prima/postfix/conf/transport

Virtual_alias_maps = hash:/usr/prima/postfix/conf/virtual

Bounce_queue_lifetime = 0

Smtpd_timeout = 60s

Parent_domain_matches_subdomains =

Relayhost = [gw2.edong.com]

Always_bcc =

Message_size_limit = 31457280

2. The main function of filter_server is to accept letters from the following two ip.

(note: after receiving all emails in 76.168, it will be redirected to gw1.edong.com and 203.191.144.138 via mail_filter, so check_client_access hash:/usr/prima/postfix/conf/filter_server in main.cf

Check_recipient_access regexp:/usr/prima/postfix/conf/mail_filter

The filter later accepts letters from the gateway. This allows you to filter a large portion of spam. )

[root@mail6 conf] # cat filter_server

203.191.144.138 OK

203.191.144.137 OK

3. Accept letters from customers

[root@mail6 conf] # cat white_list_server

58.215.76.168 OK

4. Send the received mail to the gateway gw1.edong.com for filtering, and then return to normal to enter the acceptance queue.

[root@mail6 conf] # cat mail_filter

/ techsun.com.cn/ FILTER spamfilter: [gw1.edong.com]: 10025

# / [c-fC-F]. * .com.cn/ FILTER spamfilter: [gw1.edong.com]: 10025

/ thh@cnagg.com/ FILTER spamfilter: [gw1.edong.com]: 10025

# / .* / FILTER spamfilter: [gw1.edong.com]: 10025

five,

The parameter transport_maps corresponds to the addresses of all target recipients.

[root@mail6 conf] # cat transport

Weilesci.com maildrop:

Talentbright.com maildrop:

Shbizun.com maildrop:

Zambon.com.cn smtp:

Ags.co.th smtp:

Oweb.cn smtp:oweb.cn

Decens.cn maildrop:

6,master.conf

Spamfilter unix-n-smtp-o smtp_send_xforward_command=yes

It should be noted that this is the way through which spamfilter forwards the first received mail to the gateway, which mainly serves this function.

Some old postfix not only have the function of spamfilter, but also need | grep spamfilter to see if there is a relevant rpm, and if so, support it.

# =

# service type private unpriv chroot wakeup maxproc command + args

# (yes) (never)

# =

Smtp inet n-n-- smtpd

# 628 inet n-n-- qmqpd

Pickup fifo n-n 60 1 pickup

Cleanup unix n-n-0 cleanup

# qmgr fifo n-n 300 1 qmgr

Qmgr fifo n-n 300 1 nqmgr

Rewrite unix-- n-- trivial-rewrite

Bounce unix-- n-0 bounce

Defer unix-- n-0 bounce

Flush unix n-n 1000? 0 flush

Proxymap unix-- n-- proxymap

Smtp unix-- n-- smtp

Relay unix-- n-- smtp

#-o smtp_helo_timeout=5-o smtp_connect_timeout=5

Showq unix n-n-- showq

Error unix-- n-- error

Local unix-n n-- local

Virtual unix-n n-- virtual

Lmtp unix-- n-- lmtp

#

# Interfaces to non-Postfix software. Be sure to examine the manual

# pages of the non-Postfix software to find out what options it wants.

#

# maildrop. See the Postfix MAILDROP_README file for details.

#

Maildrop unix-n n-- pipe

Flags=DORhu user=vmail argv=/usr/prima/maildrop/bin/maildrop-d ${recipient}-w 90

#

# The Cyrus deliver program has changed incompatibly, multiple times.

#

Old-cyrus unix-n n-- pipe

Flags=R user=cyrus argv=/cyrus/bin/deliver-e-m ${extension} ${user}

# Cyrus 2.1.5 (Amos Gouaux)

Cyrus unix-n n-- pipe

User=cyrus argv=/cyrus/bin/deliver-e-r ${sender}-m ${extension} ${user}

Uucp unix-n n-- pipe

Flags=Fqhu user=uucp argv=uux-r-n-z-a$sender-$nexthopping rmail ($recipient)

Ifmail unix-n n-- pipe

Flags=F user=ftn argv=/usr/lib/ifmail/ifmail-r $nexthop ($recipient)

Bsmtp unix-n n-- pipe

Flags=Fq. User=foo argv=/usr/local/sbin/bsmtp-f $sender $nexthop $recipient

Spamfilter unix-n-smtp-o smtp_send_xforward_command=yes

2009-04-28

Welcome to subscribe "Shulou Technology Information " to get latest news, interesting things and hot topics in the IT industry, and controls the hottest and latest Internet news, technology news and IT industry trends.