A bit of a challenge for the sendmail gurus out there :^)<br>
<br>
The organisation I work for has two e-mail domains:<br>
<br>
1) NT based Netscape Suitespot (domain = myorg.co.uk)<br>
2) Unix based (domain = unix.myorg.co.uk)<br>
<br>
Both domains have routes to external Internet e-mail. Each department within the organisation is charged a nominal per user amount to cover costs of maintaining the external Internet e-mail system (ie, comms costs, ISP costs, etc.). If a department that would fall within the org.co.uk domain doesn't want a user to have e-mail access, then the user does not have a Suitespot account set up. The IP address of their PC is also not entered into the Firewall system as a valid SMTP/POP user.<br>
<br>
My problem is with the Unix based users. These users have access to a groupware product that allows them to send and receive e-mail. They should be allowed to send mail to users in both unix.org.co.uk and org.co.uk. If a user is not authorised to send external Internet e-mail, then they need to be prevented from doing so.<br>
<br>
The Unix users are spread across five servers. One of the servers acts as the Internet e-mail gateway. When sending e-mail between the Unix based groupware systems, X.400 is used. Any SMTP mail uses the Internet e-mail gateway as the relay. Any mail received by the organisation to a user @unix.myorg.co.uk is routed through this Internet gateway.<br>
<br>
The Internet gateway server is running sendmail 8.9.3. Sendmail is configured so that mail sent to users @unix.myorg.co.uk is passed into the X.400 system. It's also configured to bounce mail sent to certain accounts using user access db as per the anti-spam instructions at sendmail.org ( So, that prevents unauthorised users from *receiving* Internet based e-mail.<br>
<br>
My problem is that I'm not sure how to prevent users from *sending* e-mail to any domains apart from myorg.co.uk and unix.myorg.co.uk.<br>
<br>
As mentioned previously, mail between the groupware systems in unix.myorg.co.uk is sent via X.400. What I need to do is configure sendmail so that if certain users attempt to send mail to any domain other than myorg.co.uk, the mail is returned to sender.<br>
<br>
Has anyone out there ever had to do anything similar to this? And did you have any success doing it?<br>
<br>
(I'm currently trying to get sendmail to use procmail to do this. i.e., use procmail to check the From: lines for user@unix.myorg.co.uk, and To: lines that don't match *.myorg.co.uk, and then bounce them back to the sender. I hope
<br>
<br>
Thanks for any help and advice you can give me.
<br>
The organisation I work for has two e-mail domains:<br>
<br>
1) NT based Netscape Suitespot (domain = myorg.co.uk)<br>
2) Unix based (domain = unix.myorg.co.uk)<br>
<br>
Both domains have routes to external Internet e-mail. Each department within the organisation is charged a nominal per user amount to cover costs of maintaining the external Internet e-mail system (ie, comms costs, ISP costs, etc.). If a department that would fall within the org.co.uk domain doesn't want a user to have e-mail access, then the user does not have a Suitespot account set up. The IP address of their PC is also not entered into the Firewall system as a valid SMTP/POP user.<br>
<br>
My problem is with the Unix based users. These users have access to a groupware product that allows them to send and receive e-mail. They should be allowed to send mail to users in both unix.org.co.uk and org.co.uk. If a user is not authorised to send external Internet e-mail, then they need to be prevented from doing so.<br>
<br>
The Unix users are spread across five servers. One of the servers acts as the Internet e-mail gateway. When sending e-mail between the Unix based groupware systems, X.400 is used. Any SMTP mail uses the Internet e-mail gateway as the relay. Any mail received by the organisation to a user @unix.myorg.co.uk is routed through this Internet gateway.<br>
<br>
The Internet gateway server is running sendmail 8.9.3. Sendmail is configured so that mail sent to users @unix.myorg.co.uk is passed into the X.400 system. It's also configured to bounce mail sent to certain accounts using user access db as per the anti-spam instructions at sendmail.org ( So, that prevents unauthorised users from *receiving* Internet based e-mail.<br>
<br>
My problem is that I'm not sure how to prevent users from *sending* e-mail to any domains apart from myorg.co.uk and unix.myorg.co.uk.<br>
<br>
As mentioned previously, mail between the groupware systems in unix.myorg.co.uk is sent via X.400. What I need to do is configure sendmail so that if certain users attempt to send mail to any domain other than myorg.co.uk, the mail is returned to sender.<br>
<br>
Has anyone out there ever had to do anything similar to this? And did you have any success doing it?<br>
<br>
(I'm currently trying to get sendmail to use procmail to do this. i.e., use procmail to check the From: lines for user@unix.myorg.co.uk, and To: lines that don't match *.myorg.co.uk, and then bounce them back to the sender. I hope
<br><br>
Thanks for any help and advice you can give me.