我们的主要服务器mail.mainserver.com位于[email protected]
我们还有两个其他域名:domain1.com 和 domain2.com,它们托管在 gmail 上。Gmail 正在将 catchall 电子邮件重新路由到[电子邮件保护]
在 /etc/postfix/main.cf 中
virtual_alias_domains = domain1.com, domain2.com
virtual_alias_maps = hash:/etc/postfix/virtual
在 /etc/postfix/virtual 中
@mail.mainserver.com [email protected]
@domain1.com [email protected]
@domian2.com [email protected]
这些设置在接收上述任一域的电子邮件时都有效,但我们遇到的问题是将电子邮件从虚拟别名(即[email protected]gmail)发送到现有的邮箱(即[email protected]
电子邮件不会被发送,而是被放入收件箱中[电子邮件保护]
有没有办法创建一个忽略列表,以便 Postfix 忽略对特定电子邮件地址的虚拟别名表的检查并将它们像发送到任何其他外部电子邮件地址一样发送?
提前致谢。
根据要求,这是我们的完整配置:
# Debian specific: Specifying a file name will cause the first
# line of that file to be used as the name. The Debian default
# is /etc/mailname.
#myorigin = /etc/mailname
smtpd_banner = $myhostname ESMTP $mail_name (Debian/GNU)
biff = no
# appending .domain is the MUA's job.
append_dot_mydomain = no
# Uncomment the next line to generate "delayed mail" warnings
#delay_warning_time = 4h
readme_directory = no
# TLS parameters
smtpd_tls_cert_file = /etc/ssl/certs/iRedMail_CA.pem
smtpd_tls_key_file = /etc/ssl/private/iRedMail.key
smtpd_use_tls=yes
smtpd_tls_session_cache_database = btree:${data_directory}/smtpd_scache
smtp_tls_session_cache_database = btree:${data_directory}/smtp_scache
# See /usr/share/doc/postfix/TLS_README.gz in the postfix-doc package for
# information on enabling SSL in the smtp client.
myhostname = mail.mainserver.com
alias_maps = hash:/etc/postfix/aliases
alias_database = hash:/etc/postfix/aliases
myorigin = mail.mainserver.com
mydestination = $myhostname, localhost, localhost.localdomain, localhost.$myhostname
relayhost =
mynetworks = 127.0.0.0/8
mailbox_size_limit = 0
recipient_delimiter = +
inet_interfaces = all
inet_protocols = ipv4
virtual_alias_domains = domain1.com,domain2.com
allow_percent_hack = no
swap_bangpath = no
mydomain = mainserver.com
mynetworks_style = host
smtpd_data_restrictions = reject_unauth_pipelining
smtpd_reject_unlisted_recipient = yes
smtpd_reject_unlisted_sender = yes
smtp_tls_security_level = may
smtp_tls_CAfile = $smtpd_tls_CAfile
# smtpd_sender_restrictions = permit_mynetworks, reject_sender_login_mismatch, permit_sasl_authenticated
smtpd_sender_restrictions = permit_mynetworks, permit_sasl_authenticated
delay_warning_time = 0h
maximal_queue_lifetime = 4h
bounce_queue_lifetime = 4h
proxy_read_maps = $canonical_maps $lmtp_generic_maps $local_recipient_maps $mydestination $mynetworks $recipient_bcc_maps $recipient_canonical_maps $relay_domains $relay_recipient_maps $relocated_maps $sender_bcc_maps $sender_canonical_maps $smtp_generic_maps $smtpd_sender_login_maps $transport_maps $virtual_alias_domains $virtual_alias_maps $virtual_mailbox_domains $virtual_mailbox_maps $smtpd_sender_restrictions
smtp_data_init_timeout = 240s
smtp_data_xfer_timeout = 600s
smtpd_helo_required = yes
smtpd_helo_restrictions = permit_mynetworks, permit_sasl_authenticated, reject_non_fqdn_helo_hostname, reject_invalid_helo_hostname, check_helo_access pcre:/etc/postfix/helo_access.pcre
queue_run_delay = 300s
minimal_backoff_time = 300s
maximal_backoff_time = 4000s
enable_original_recipient = no
disable_vrfy_command = yes
home_mailbox = Maildir/
allow_min_user = no
message_size_limit = 15728640
virtual_minimum_uid = 2000
virtual_uid_maps = static:2000
virtual_gid_maps = static:2000
virtual_mailbox_base = /var/vmail
transport_maps = proxy:mysql:/etc/postfix/mysql/transport_maps_user.cf, proxy:mysql:/etc/postfix/mysql/transport_maps_domain.cf
virtual_mailbox_domains = proxy:mysql:/etc/postfix/mysql/virtual_mailbox_domains.cf
virtual_mailbox_maps = proxy:mysql:/etc/postfix/mysql/virtual_mailbox_maps.cf
#virtual_alias_maps = proxy:mysql:/etc/postfix/mysql/virtual_alias_maps.cf, proxy:mysql:/etc/postfix/mysql/domain_alias_maps.cf, proxy:mysql:/etc/postfix/mysql/catchall_maps.cf, proxy:mysql:/etc/postfix/mysql/domain_alias_catchall_maps.cf
virtual_alias_maps = hash:/etc/postfix/virtual
sender_bcc_maps = proxy:mysql:/etc/postfix/mysql/sender_bcc_maps_user.cf, proxy:mysql:/etc/postfix/mysql/sender_bcc_maps_domain.cf
recipient_bcc_maps = proxy:mysql:/etc/postfix/mysql/recipient_bcc_maps_user.cf, proxy:mysql:/etc/postfix/mysql/recipient_bcc_maps_domain.cf
relay_domains = $mydestination, proxy:mysql:/etc/postfix/mysql/relay_domains.cf
smtpd_sender_login_maps = proxy:mysql:/etc/postfix/mysql/sender_login_maps.cf
smtpd_sasl_auth_enable = yes
smtpd_sasl_local_domain =
broken_sasl_auth_clients = yes
smtpd_sasl_security_options = noanonymous
smtpd_sasl_authenticated_header = no
smtpd_recipient_restrictions = reject_unknown_sender_domain, reject_unknown_recipient_domain, reject_non_fqdn_sender, reject_non_fqdn_recipient, reject_unlisted_recipient, check_policy_service inet:127.0.0.1:7777, check_policy_service inet:127.0.0.1:10031, permit_mynetworks, permit_sasl_authenticated, reject_unauth_destination, check_recipient_access hash:/etc/postfix/whitelist_recipients
smtpd_end_of_data_restrictions = check_policy_service inet:127.0.0.1:10031
smtpd_tls_security_level = may
smtpd_tls_loglevel = 0
smtpd_tls_CAfile = /etc/ssl/certs/iRedMail_CA.pem
tls_random_source = dev:/dev/urandom
mailbox_command = /usr/lib/dovecot/deliver
virtual_transport = dovecot
dovecot_destination_recipient_limit = 1
smtpd_sasl_type = dovecot
smtpd_sasl_path = ./dovecot-auth
content_filter = smtp-amavis:[127.0.0.1]:10024
smtp-amavis_destination_recipient_limit = 1
luser_relay = [email protected]
local_recipient_maps =
答案1
这是正常的。
如果 domain1.com 和 domain2.com 托管在 google 上,则您不能在您的服务器 virtual_alias_domains 中写入它们。
如果你把它们放在 virtual_alias_domains 中,你就告诉你的 postfix 他负责这个域,然后他会看到他必须将任何以 domain1.com 或 domain2.com 为目的地的电子邮件发送到[电子邮件保护]
这正是他正在做的事情。
postconf -nf请发布,postconf -Mf以及的输出dovecot -n。
有没有办法添加某种白名单,
白名单是一个错误的术语。(它与垃圾邮件过滤有关。)
但你为什么不简单地按照我说的做,注释掉
# virtual_alias_domains = domain1.com,domain2.com
或者完全删除相同的行
# @domain1.com [email protected]
# @domian2.com [email protected]
将其注释掉或者删除。
如果 domain1.com、domain2.com 托管在 google 上,并且您希望服务器 mail.mainserver.com 将这两个域的电子邮件发送给 google,那么如果这些域是服务器 mail.mainserver.com 上的真实域、虚拟域或别名域,则不会发生这种情况。
服务器不会将它们发走,因为它觉得自己对这两个域名负有责任。此外,您的 /etc/postfix/virtual 规定,任何发往 domain1.com 的邮件都应转发到[电子邮件保护]与域名 domian2.com 的任何邮件都应转发到[电子邮件保护]。这就是为什么这两个域名的所有电子邮件都会进入收件箱[电子邮件保护]。
或者强制 Postfix 将所有电子邮件发送到外部?
如果您想要将所有内容转发到外部,您可以:
a) 将外部电子邮件放入 /etc/postfix/virtual 中
@mail.mainserver.com [email protected]
b) 使用 。向前文件
c)安装 procmail 并创建 /etc/procmailrc,内容如下
#
# Forward everything to [email protected]
#
:0:
! [email protected]
d) 如果您觉得更棒,请安装 dovecot/sieve 并编写一条规则将所有电子邮件重定向到外部服务器。Sieve 的配置有点棘手,如果您在使用前 3 种方法时遇到问题,那么您可能无法成功使用这种方法。
#
# Forward everything coming from [email protected]
# to [email protected]
#
if address :is ["From"] "[email protected]" {
redirect "[email protected]";
stop;
}
可能还有其他方法,但我认为这些是最简单的。