Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

  • Congratulations gkittelson on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

Postfix windows clients

Status
Not open for further replies.

combait

Programmer
Nov 9, 2010
2
NL
We have a postfix email server setup, but i have a problem with windows email clients.The client can connect and receive its email, but is not unable to send an email to an extremal address.
The error message is "Relay access denied"
When we use a client like thunderbird there are no problems with sending en receiving email.

main.cf is posted below
# See /usr/share/postfix/main.cf.dist for a commented, more complete version


# Debian specific: Specifying a file name will cause the first
# line of that file to be used as the name. The Debian default
# is /etc/mailname.
myorigin = /etc/mailname

smtpd_banner = *****.com ESMTP $mail_name
biff = no

# appending .domain is the MUA's job.
append_dot_mydomain = no

# Uncomment the next line to generate "delayed mail" warnings
delay_warning_time = 4h

readme_directory = no

# TLS parameters
#smtpd_tls_cert_file = /etc/ssl/certs/.pem
#smtpd_tls_key_file = /etc/ssl/private/.key
smtpd_tls_cert_file = /etc/postfix/ssl/.crt
smtpd_tls_key_file = /etc/postfix/ssl/smtp_****_com.key.insecure
smtpd_tls_CAfile = /etc/ssl/certs/.crt
smtpd_use_tls = yes
smtpd_tls_session_cache_database = btree:${data_directory}/smtpd_scache
smtp_tls_session_cache_database = btree:${data_directory}/smtp_scache
smtpd_tls_security_level = may

# Performance settings
smtpd_client_connection_count_limit=2
smtpd_client_connection_rate_limit=10

# See /usr/share/doc/postfix/TLS_README.gz in the postfix-doc package for
# information on enabling SSL in the smtp client.

myhostname = ****
mydomain = *****
alias_maps = hash:/etc/aliases
alias_database = hash:/etc/aliases
mydestination = $myhostname
mynetworks = 10.0.0.0/8 127.0.0.0/8 [::ffff:127.0.0.0]/104 [::1]/128
mailbox_command = /usr/lib/dovecot/deliver -c /etc/dovecot/dovecot.conf -n -m "${EXTENSION}"
mailbox_size_limit = 0
recipient_delimiter = +
home_mailbox = Maildir/
disable_vrfy_command = yes
smtp_helo_required = no
smtpd_sasl_auth_enable = yes
smtpd_sasl_type = dovecot
smtpd_sasl_path = private/auth
smtpd_sasl_authenticated_header = yes
smtpd_sasl_local_domain = *****
smtpd_recipient_restrictions = permit_mynetworks permit_sasl_authenticated reject_unknown_sender_domain reject_unknown_recipient_domain reject_unauth_pipelining reject_non_fqdn_sender reject_non_fqdn_recipient permit_inet_interfaces reject_unauth_destination
smtp_client_restrictions = permit_mynetworks,permit_sasl_authenticated,reject_rbl_client relays.ordb.org, reject_rbl_client ipwhois.rfc-ignorant.org, reject_rbl_client zen.spamhaus.org
smtpd_sender_restrictions = permit_mynetworks,permit_sasl_authenticated,reject_rhsbl_sender dsn.rfc-ignorant.org,reject_sender_login_mismatch
smtp_use_tls = yes
smtpd_tls_received_header = yes
smtpd_tls_mandatory_protocols = SSLv3, TLSv1
smtpd_tls_mandatory_ciphers = medium
smtpd_tls_auth_only = no
smtpd_tls_session_cache_timeout = 3600s
tls_random_source = dev:/dev/urandom
smtpd_error_sleep_time = 60
smtpd_soft_error_limit = 60
smtpd_hard_error_limit = 10
default_process_limit = 3
message_size_limit = 20480000

smtpd_error_sleep_time = 60
smtpd_soft_error_limit = 60
smtpd_hard_error_limit = 10

tls_random_source = dev:/dev/urandom

# relocated users from the database
relocated_maps = pgsql:/etc/postfix/pgsql-relocated_maps.cf

# virtual domains
virtual_mailbox_domains = pgsql:/etc/postfix/pgsql-virtual_mailbox_domains.cf
virtual_alias_maps = pgsql:/etc/postfix/pgsql-virtual_alias_maps.cf
transport_maps = pgsql:/etc/postfix/pgsql-transport.cf
virtual_minimum_uid = 70000
virtual_uid_maps = pgsql:/etc/postfix/pgsql-virtual_uid_maps.cf
virtual_gid_maps = pgsql:/etc/postfix/pgsql-virtual_gid_maps.cf
virtual_mailbox_base = /
virtual_mailbox_maps = pgsql:/etc/postfix/pgsql-virtual_mailbox_maps.cf

# dovecot LDA
dovecot_destination_recipient_limit = 1
virtual_transport = dovecot:

debug_peer_level = 9

broken_sasl_auth_clients = yes


Can someone help me with this problem??
 
these are the error message from connecting with windows mail
Nov 9 15:25:07 SERVER1 postfix/smtpd[17880]: NOQUEUE: reject: RCPT from [***.***.***.***]: 554 5.7.1 <***@quicknet.nl>: Relay access denied; from=<***@combait.com> to=<****@quicknet.nl> proto=ESMTP helo=<LaptopPC>

And with thunderbird the log entry is

Nov 9 15:26:11 SERVER1 postfix/smtpd[17880]: connect from ****.quicknet.nl[***.***.***.***]
Nov 9 15:26:12 SERVER1 postfix/smtpd[17880]: 4016085645C: client=****.quicknet.nl[***.***.***.***], sasl_method=PLAIN, sasl_username=***@combait.com
Nov 9 15:26:12 SERVER1 postfix/cleanup[17863]: 4016085645C: message-id=<4CD95A02.9070509@combait.com>
Nov 9 15:26:12 SERVER1 postfix/qmgr[17862]: 4016085645C: from=<****@combait.com>, size=796, nrcpt=1 (queue active)
Nov 9 15:26:12 SERVER1 postfix/smtpd[17880]: disconnect from ****.quicknet.nl[***.***.***.***]
Nov 9 15:26:12 SERVER1 postfix/pickup[17861]: 59F7285660D: uid=**** from=<****@combait.com>
Nov 9 15:26:12 SERVER1 postfix/pipe[17929]: 4016085645C: to=<****@quicknet.nl>, relay=spamassassin, delay=0.14, delays=0.06/0/0/0.08, dsn=2.0.0, status=sent (delivered via spamassassin service)
Nov 9 15:26:12 SERVER1 postfix/qmgr[17862]: 4016085645C: removed
 
To ask a point of clarification: when you say Thunderbird, which works, is it running under Windows or Linux?

I have managed to get windows based MUA applications to work with Postfix, but it required messing around with the settings and the encryption standards.

Clearly something is getting converted incorrectly as with one client [***.***.***.***] isn't matching [***.***.***.***] when used with Thunderbird. It looks like [***.***.***.***] doesn't even have the same domain as [***.***.***.***].


 
Status
Not open for further replies.

Part and Inventory Search

Sponsor

Back
Top