Доброго времени суток!Настроил почту вроде все норм...тока когда извне посылаю почту на свой сервер...на почтовом сервере отправителя приходит дилевери с такой вот ошибкой:
noc@mydomain.com
SMTP error from remote mailer after RCPT TO:<noc@mydomain.com>:
host mail.mydomain.com [xx.xx.254.134]: 554 5.7.1 <f82.mail.ru>:
Helo command rejected: Access denied
на серваке в логах:
postfix/smtpd[22782]: connect from f82.mail.ru[217.69.129.109]
postfix/smtpd[22782]: NOQUEUE: reject: RCPT from f82.mail.ru[217.69.129.109]: 554 5.7.1 <f82.mail.ru>: Helo command rejected: Access denied; from=<bobik_tobik@mail.ru> to=<noc@mydomain.com> proto=ESMTP helo=<f82.mail.ru>
postfix/smtpd[22782]: disconnect from f82.mail.ru[217.69.129.109]
с DNS записями все норм.
с моего сервака на наружные почтовики хорошо идет почта.
конфиг:
queue_directory = /var/spool/postfix
command_directory = /usr/sbin
daemon_directory = /usr/libexec/postfix
mail_owner = postfix
myhostname = mail.mydomain.com
mydomain = mydomain.com
myorigin = $mydomain
inet_interfaces = all
#Домены для которых почта доставляется локально:
mydestination = $myhostname, localhost.$mydomain, localhost
#Список своих сетей:
mynetworks_style = subnet
mynetworks = 127.0.0.0/8, 193.111.11.7/32
#Немного поправим пути к базе алиасов:
alias_maps = hash:/etc/postfix/aliases
alias_database = hash:/etc/postfix/aliases
#Уровень дебага:
debug_peer_level = 2
debugger_command =
PATH=/bin:/usr/bin:/usr/local/bin:/usr/X11R6/bin
xxgdb $daemon_directory/$process_name $process_id & sleep 5
sendmail_path = /usr/sbin/sendmail.postfix
newaliases_path = /usr/bin/newaliases
mailq_path = /usr/bin/mailq
setgid_group = postdrop
manpage_directory = /usr/share/man
sample_directory = /usr/share/doc/postfix-2.3.3/samples
readme_directory = /usr/share/doc/postfix-2.3.3/README_FILES
address_verify_map = btree:/var/spool/postfix/address_verify
#Здесь боремся со спамерами (мать их идти...)
show_user_unknown_table_name = no
smtpd_delay_reject = yes
smtpd_client_restrictions =
permit_mynetworks,
permit_sasl_authenticated,
check_client_access hash:$config_directory/client_access,
reject_unknown_client_hostname
smtpd_helo_restrictions =
permit_mynetworks,
permit_sasl_authenticated,
check_helo_access hash:$config_directory/hello_access,
reject_invalid_helo_hostname,
reject_unknown_helo_hostname,
reject_non_fqdn_helo_hostname,
reject
smtpd_sender_restrictions =
permit_mynetworks,
permit_sasl_authenticated,
check_sender_access hash:$config_directory/sender_access,
reject_authenticated_sender_login_mismatch,
reject_unknown_sender_domain,
reject_non_fqdn_sender,
reject_unlisted_sender,
reject
smtpd_recipient_restrictions = permit_mynetworks,
permit_sasl_authenticated,
reject_unlisted_recipient,
reject_unknown_recipient_domain,
reject_non_fqdn_recipient,
reject_unverified_recipient,
reject_rbl_client cbl.abuseat.org,
reject_unauth_destination,
check_policy_service inet:127.0.0.1:10023,
check_recipient_access hash:$config_directory/recipient_access,
reject
unknown_address_reject_code = 550
unknown_client_reject_code = 550
unknown_hostname_reject_code = 550
unknown_local_recipient_reject_code = 550
unknown_relay_recipient_reject_code = 550
unknown_virtual_alias_reject_code = 550
unknown_virtual_mailbox_reject_code = 550
nverified_sender_reject_code = 550
#Ограничения на некоторые комманды
disable_vrfy_command = yes
smtpd_error_sleep_time = 0s
default_process_limit = 10
smtpd_client_connection_count_limit = 8
bounce_size_limit = 2000
smtpd_client_message_rate_limit = 30
smtpd_connection_reuse_time_limit = 150s
smtpd_client_connection_rate_limit = 3
anvil_rate_time_unit = 1s
smtp_helo_timeout = 60s
smtpd_timeout = 60s
smtp_mail_timeout = 60s
smtp_rcpt_timeout = 60s
smtpd_client_recipient_rate_limit = 5
#Список виртуальных доменов:
virtual_mailbox_domains = proxy:mysql:$config_directory/mysql_virtual_domains_maps.cf
virtual_mailbox_base = /var/spool/mail/virtual/
virtual_mailbox_maps = proxy:mysql:$config_directory/mysql_virtual_mailbox_maps.cf
virtual_alias_maps = proxy:mysql:$config_directory/mysql_virtual_alias_maps.cf
virtual_minimum_uid = 203
virtual_uid_maps = static:203
virtual_gid_maps = static:203
#прикручиваем LDA от Dovecot:
virtual_transport = dovecot
#Указываем максимальный размер письма.
message_size_limit = 31457280
dovecot_destination_recipient_limit = 1
#----------------SASL-----------------
smtpd_sasl_type = dovecot
smtpd_sasl_auth_enable = yes
smtpd_sasl_security_options = noanonymous
broken_sasl_auth_clients = yes
smtpd_sasl_path = private/auth
Вариант для распечатки
(??) on 08-Янв-11, 19:02 
