[Prev][Next][Index][Thread]
Re: preventing relaying from outside?
torben fjerdingstad writes:
> In other words, I simply dont want the outside world to relay to
> the outside world through our host.
I don't see anything special about your situation. It looks like a
standard FAQ 5.4 situation. Yes, you have to list 128 subnets of a
class B network, but that's not exactly rocket science. See message
6887 from the archives, where Ivan Kohler laid out his tcprange program.
> Our customers are free to decide if they want to relay through
> our gateway or not.
"Our customers" is defined, from qmail's perspective, to be those
hosts listed in rcpthost. You can list entire domains by starting the
name with a period. You would insert your whole domain with two lines
like this:
uni-c.dk
.uni-c.dk
> tcpserver can deny incoming mail from specific networks, and
> rcpthost can control denial of relaying to specific hosts.
> Thats not what I need.
I think you missed the part about tcpcontrol and RELAYCLIENT, and also
the part about wildcards in rcpthost.
--
-russ <nelson@xxxxxxxxxx> http://www.crynwr.com/~nelson | Freedom is the
Crynwr Software supports freed software | PGPok | primary cause of peace.
521 Pleasant Valley Rd. | +1 315 268 1925 voice | Taxes feed the naked
Potsdam, NY 13676-3213 | +1 315 268 9201 FAX | and clothe the hungry.
Follow-Ups:
References: