Internal Relay and Blocking
brkl...@gmail.com
for the life of me, I cannot figure out. Here's my problem:
The users of my Linux servers require the ability to send email but we
need to prevent them from sending email to outside domains. For
example, all users need to send messages to @domain1.com and
@domain2.com but cannot send messages to anywhere else. All messages
need to relay through my smarthost smarthost.domain1.com.
How can I get this to work? This is frustrating me to no end.
Thank you in advance!
Brian Klauss
Andrzej Adam Filip
> [...]
> The users of my Linux servers require the ability to send email but we
> need to prevent them from sending email to outside domains. For
> example, all users need to send messages to @domain1.com and
> @domain2.com but cannot send messages to anywhere else. All messages
> need to relay through my smarthost smarthost.domain1.com.
http://www.sendmail.org/~ca/email/restrict.html
Restricting local users from sending external mail
Last Update 2002-07-24
--
[pl>en Andrew] Andrzej Adam Filip : an...@onet.eu : an...@xl.wp.pl
- long f_ffree; /* free file nodes in fs */
+ long f_ffree; /* freie Dateiknoten im Dateisystem */
-- Seen in a translation
brkl...@gmail.com
> "brkla...@gmail.com" <brkla...@gmail.com> wrote:
> > [...]
> > The users of my Linux servers require the ability to send email but we
> > need to prevent them from sending email to outside domains. For
> > example, all users need to send messages to @domain1.com and
> > @domain2.com but cannot send messages to anywhere else. All messages
> > need to relay through my smarthost smarthost.domain1.com.
> > [...]
>
> http://www.sendmail.org/~ca/email/restrict.html
> Restricting local users from sending external mail
> Last Update 2002-07-24
Andrew,
Thank you but I forgot to mention that my servers fqdn is different
than the actual domain names used by the internal email users. In
this case, the servers are server.us.domain-intranet.com while the
email addresses are based on domain1.com and domain2.com. Will your
rule address this or are we looking at something completely different?
Thank you.
Eugene Grosbein
bgc> I am running Sendmail v8.13.8 and have a unique little problem that,
bgc> for the life of me, I cannot figure out. Here's my problem:
bgc> The users of my Linux servers require the ability to send email but we
bgc> need to prevent them from sending email to outside domains. For
bgc> example, all users need to send messages to @domain1.com and
bgc> @domain2.com but cannot send messages to anywhere else. All messages
bgc> need to relay through my smarthost smarthost.domain1.com.
bgc> How can I get this to work? This is frustrating me to no end.
This is pretty easy to achieve with milter-regex, it's configurtaion
would be like this:
reject
( envrcpt /@domain1\.com>/n ) or ( envrcpt /@domain2\.com>/n )
That's all.
Eugene
--
А если не будут брать, отключим газ.
Eugene Grosbein
bgc>> I am running Sendmail v8.13.8 and have a unique little problem that,
bgc>> for the life of me, I cannot figure out. Here's my problem:
bgc>> The users of my Linux servers require the ability to send email but we
bgc>> need to prevent them from sending email to outside domains. For
bgc>> example, all users need to send messages to @domain1.com and
bgc>> @domain2.com but cannot send messages to anywhere else. All messages
bgc>> need to relay through my smarthost smarthost.domain1.com.
bgc>> How can I get this to work? This is frustrating me to no end.
EG> This is pretty easy to achieve with milter-regex, it's configurtaion
EG> would be like this:
EG> reject
EG> ( envrcpt /@domain1\.com>/n ) or ( envrcpt /@domain2\.com>/n )
Sorry, not "or" but "and".
Andrzej Adam Filip
The short answer is "no".
--
[pl>en Andrew] Andrzej Adam Filip : an...@onet.eu : an...@xl.wp.pl
Round Numbers are always false.
-- Samuel Johnson
ska
> I am running Sendmail v8.13.8 and have a unique little problem that,
> for the life of me, I cannot figure out. Here's my problem:
>
> The users of my Linux servers require the ability to send email but we
> need to prevent them from sending email to outside domains. For
> example, all users need to send messages to @domain1.com and
> @domain2.com but cannot send messages to anywhere else. All messages
> need to relay through my smarthost smarthost.domain1.com.
Do you control the mail setup on the servers?
If so, you could setup mailertable to forward several domains to
smarthost and add a catchall "." entry to relay to the error: mailer
Otherwise:
I guess the follow logic would hold on smarthost?
if incoming_ip is in (ip1, ip2, ip3, ...)
then env rcpt is limited to (domain1, domain2, ...)
I'm not able to put this in sendmail rules, although it does not look
hard ...
But a mailter like MIMEDefang could do so easily, maybe mailter-regex
already mentioned.
Maybe you can disable relaying for these boxes by not listing them in
relay-domains.
Winfried Magerl
In article <slrngd68a9...@www.svzserv.kemerovo.su>,
isn't it easier to fix this on the server-side? Configuring sendmail on
your linux-servers without smarthost and the problem is fixed. Or configure
one of your linux-servers as pure intranet-server and use this server
for intranet-mail-only-smarthost.
regards
winfried
--
Winfried Magerl - Internet Administration
Siemens IT Solutions and Services, 81739 Munich, Germany
Internet-Mail: winfrie...@siemens.com