[prev in list] [next in list] [prev in thread] [next in thread]
List: baruwa
Subject: Re: [Baruwa] Why relay access denied? Which server name to provide in email clients.
From: Manish Rane <manishr78 () gmail ! com>
Date: 2012-12-29 18:48:44
Message-ID: CA+z6RjE2e_bTFFp7=AGjC6hb+wg8xEnX+hmE2txLHeSnmBEkpQ () mail ! gmail ! com
[Download RAW message or body]
[Attachment #2 (multipart/alternative)]
I gottcha. So how do I set up IMAP authentication or SMTP in Baruwa? By
simply specifying
- Address (Either a hostname or IP address)
- Protocol (POP3, IMAP, SMTP)
- Port
- Enabled
Of zimbra server? Now since my server supports TLS with SMTP and IMAPS does
Baruwa need any separate configuration other than specified above? I didnt
find it anywhere so please let me know if there is any guide to do that.
--------------------------------------------------------------------------
Thanks and Regards,
Manish R
On Sat, Dec 29, 2012 at 11:04 PM, Jeremy McSpadden <jeremy@fluxlabs.net>wrote:
> Open relay has nothing to do with relay_domains. Open Relay means anyone
> can send through your server without authentication. You restrict it by
> using my_networks or sasl auth for example.
>
> mail -> baruwa -> zimbra
>
> Pastebin your current postfix main.cf
>
> --
> Jeremy McSpadden
> Flux Labs | Endless Solutions
> Cell : 850-890-2543 | Fax : 850-254-2955
>
> On Dec 29, 2012, at 11:31 AM, "Manish Rane" <manishr78@gmail.com> wrote:
>
> So I can specify the relay_domains parameter and save it from becoming
> open relay?
> On 29 Dec 2012 22:57, "Jeremy McSpadden" <jeremy@fluxlabs.net> wrote:
>
>> That is up to you.
>>
>> --
>> Jeremy McSpadden
>> Flux Labs | Endless Solutions
>> Cell : 850-890-2543 | Fax : 850-254-2955
>>
>> On Dec 29, 2012, at 11:11 AM, "Manish Rane" <manishr78@gmail.com> wrote:
>>
>> I see so what is the use of configuring sasl auth? Just for relaying
>> the mails? Can we not specify relay_domains and accept mails only for my
>> domain just like all other appliances do? Well sorry i may sound dumb but
>> trying to understand the architecture.
>> On 29 Dec 2012 22:33, "Jeremy McSpadden" <jeremy@fluxlabs.net> wrote:
>>
>>> Zimbra server
>>>
>>> --
>>> Jeremy McSpadden
>>> Flux Labs | Endless Solutions
>>> Cell : 850-890-2543 | Fax : 850-254-2955
>>>
>>> On Dec 29, 2012, at 11:04 AM, "Manish Rane" <manishr78@gmail.com> wrote:
>>>
>>> Hi Guys,
>>>
>>> So if baruwa is installed as a gateway role and I have zimbra server
>>> behind and assuming I have sasl authentication configured in postfix on
>>> baruwa; what server name or IP would user provide in their email client?
>>> Would that be zimbra or baruwa?
>>> On 28 Dec 2012 21:02, "Manish Rane" <manishr78@gmail.com> wrote:
>>>
>>>> By the way wondering how it can be open relay? can we not just restrict
>>>> is using relay_domains. I mean as soon as we add domain in web interface
>>>> is it not considered as relay_domains?
>>>>
>>>> --------------------------------------------------------------------------
>>>> Thanks and Regards,
>>>> Manish R
>>>>
>>>>
>>>> On Fri, Dec 28, 2012 at 1:50 PM, Andrew Colin Kissa <
>>>> andrew@topdog.za.net> wrote:
>>>>
>>>>>
>>>>> On 28 Dec 2012, at 10:13 AM, Manish Rane wrote:
>>>>>
>>>>> > I understand that I should only removed permit_sasl_authenticated
>>>>> entries rather than commenting all entries but I am still figuring out how
>>>>> users can get authenticated with a mail gw where actually they are
>>>>> configured on different mail server. Would you please share any online
>>>>> documentation or diagram which can help me to understand the scenario.
>>>>>
>>>>> You are using postfix on the gateway and zimbra as the mail
>>>>> destination.
>>>>>
>>>>> Zimbra provides both LDAP and IMAP interfaces, you need to setup SMTP
>>>>> AUTH
>>>>> on your gateway using SASL which supports both LDAP and IMAP and is
>>>>> well
>>>>> documented[1] on the postfix website
>>>>>
>>>>> [1] http://www.postfix.org/SASL_README.html
>>>>>
>>>>> --
>>>>> www.baruwa.org
>>>>>
>>>>>
>>>>>
>>>>>
>>>>> _______________________________________________
>>>>> Keep Baruwa FREE - http://pledgie.com/campaigns/12056
>>>>>
>>>>
>>>> _______________________________________________
>>> Keep Baruwa FREE - http://pledgie.com/campaigns/12056
>>>
>>>
>>> _______________________________________________
>>> Keep Baruwa FREE - http://pledgie.com/campaigns/12056
>>>
>>> _______________________________________________
>> Keep Baruwa FREE - http://pledgie.com/campaigns/12056
>>
>>
>> _______________________________________________
>> Keep Baruwa FREE - http://pledgie.com/campaigns/12056
>>
>> _______________________________________________
> Keep Baruwa FREE - http://pledgie.com/campaigns/12056
>
>
> _______________________________________________
> Keep Baruwa FREE - http://pledgie.com/campaigns/12056
>
>
[Attachment #5 (text/html)]
I gottcha. So how do I set up IMAP authentication or SMTP in Baruwa? By simply \
specifying <div><ul class="simple" style="font-family:'Lucida \
Grande','Lucida Sans \
Unicode',Geneva,Verdana,sans-serif;font-size:14px;line-height:21px;background-color:rgb(255,255,255)">
<li>Address (Either a hostname or IP address)</li><li>Protocol (POP3, IMAP, \
SMTP)</li><li>Port</li><li>Enabled</li></ul><div><font face="Lucida Grande, Lucida \
Sans Unicode, Geneva, Verdana, sans-serif"><span \
style="font-size:14px;line-height:21px">Of zimbra server? Now since my server \
supports TLS with SMTP and IMAPS does Baruwa need any separate configuration other \
than specified above? I didnt find it anywhere so please let me know if there is any \
guide to do that.</span></font></div> \
<div>--------------------------------------------------------------------------<br>Thanks \
and Regards,<br>Manish R<br></div> <br><br><div class="gmail_quote">On Sat, Dec 29, \
2012 at 11:04 PM, Jeremy McSpadden <span dir="ltr"><<a \
href="mailto:jeremy@fluxlabs.net" target="_blank">jeremy@fluxlabs.net</a>></span> \
wrote:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px \
#ccc solid;padding-left:1ex">
<div dir="auto">
<div>Open relay has nothing to do with relay_domains. Open Relay means anyone can \
send through your server without authentication. You restrict it by using my_networks \
or sasl auth for example. </div> <div><br>
</div>
<div>mail -> baruwa -> zimbra</div>
<div><br>
</div>
<div>Pastebin your current postfix <a href="http://main.cf" \
target="_blank">main.cf</a></div><div class="im"> <div><br>
<font face="Calibri, sans-serif">--</font>
<div>
<font face="Calibri, sans-serif">Jeremy McSpadden</font></div>
<div>
<font face="Calibri, sans-serif">Flux Labs | Endless Solutions</font></div>
<div>
<font face="Calibri, sans-serif">Cell : 850-890-2543 | Fax : \
850-254-2955</font></div> </div>
</div><div><div class="h5"><div><br>
On Dec 29, 2012, at 11:31 AM, "Manish Rane" <<a \
href="mailto:manishr78@gmail.com" target="_blank">manishr78@gmail.com</a>> \
wrote:<br> <br>
</div>
<blockquote type="cite">
<div>
<p>So I can specify the relay_domains parameter and save it from becoming open \
relay?</p> <div class="gmail_quote">On 29 Dec 2012 22:57, "Jeremy \
McSpadden" <<a href="mailto:jeremy@fluxlabs.net" \
target="_blank">jeremy@fluxlabs.net</a>> wrote:<br type="attribution"> <blockquote \
class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc \
solid;padding-left:1ex"> <div dir="auto">
<div>That is up to you.<br>
<br>
<font face="Calibri, sans-serif">--</font>
<div><font face="Calibri, sans-serif">Jeremy McSpadden</font></div>
<div><font face="Calibri, sans-serif">Flux Labs | Endless Solutions</font></div>
<div><font face="Calibri, sans-serif">Cell : 850-890-2543 | Fax : \
850-254-2955</font></div> </div>
<div><br>
On Dec 29, 2012, at 11:11 AM, "Manish Rane" <<a \
href="mailto:manishr78@gmail.com" target="_blank">manishr78@gmail.com</a>> \
wrote:<br> <br>
</div>
<blockquote type="cite">
<div>
<p>I see so what is the use of configuring sasl auth? Just for relaying the mails? \
Can we not specify relay_domains and accept mails only for my domain just like all \
other appliances do? Well sorry i may sound dumb but trying to understand the \
architecture.</p>
<div class="gmail_quote">On 29 Dec 2012 22:33, "Jeremy McSpadden" <<a \
href="mailto:jeremy@fluxlabs.net" target="_blank">jeremy@fluxlabs.net</a>> \
wrote:<br type="attribution"> <blockquote class="gmail_quote" style="margin:0 0 0 \
.8ex;border-left:1px #ccc solid;padding-left:1ex"> <div dir="auto">
<div>Zimbra server<br>
<br>
<font face="Calibri, sans-serif">--</font>
<div><font face="Calibri, sans-serif">Jeremy McSpadden</font></div>
<div><font face="Calibri, sans-serif">Flux Labs | Endless Solutions</font></div>
<div><font face="Calibri, sans-serif">Cell : 850-890-2543 | Fax : \
850-254-2955</font></div> </div>
<div><br>
On Dec 29, 2012, at 11:04 AM, "Manish Rane" <<a \
href="mailto:manishr78@gmail.com" target="_blank">manishr78@gmail.com</a>> \
wrote:<br> <br>
</div>
<blockquote type="cite">
<div>
<p>Hi Guys,</p>
<p>So if baruwa is installed as a gateway role and I have zimbra server behind and \
assuming I have sasl authentication configured in postfix on baruwa; what server name \
or IP would user provide in their email client? Would that be zimbra or baruwa?</p>
<div class="gmail_quote">On 28 Dec 2012 21:02, "Manish Rane" <<a \
href="mailto:manishr78@gmail.com" target="_blank">manishr78@gmail.com</a>> \
wrote:<br type="attribution"> <blockquote class="gmail_quote" style="margin:0 0 0 \
.8ex;border-left:1px #ccc solid;padding-left:1ex"> By the way wondering how it can be \
open relay? can we not just restrict is using relay_domains. I mean as soon as we add \
domain in web interface is it not considered as relay_domains?<br clear="all"> \
<div>--------------------------------------------------------------------------<br> \
Thanks and Regards,<br> Manish R<br>
</div>
<br>
<br>
<div class="gmail_quote">On Fri, Dec 28, 2012 at 1:50 PM, Andrew Colin Kissa <span \
dir="ltr"> <<a href="mailto:andrew@topdog.za.net" \
target="_blank">andrew@topdog.za.net</a>></span> wrote:<br> <blockquote \
class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc \
solid;padding-left:1ex"> <div><br>
On 28 Dec 2012, at 10:13 AM, Manish Rane wrote:<br>
<br>
> I understand that I should only removed permit_sasl_authenticated entries rather \
than commenting all entries but I am still figuring out how users can get \
authenticated with a mail gw where actually they are configured on different mail \
server. Would you please share any online documentation or diagram which can help me \
to understand the scenario.<br> <br>
</div>
You are using postfix on the gateway and zimbra as the mail destination.<br>
<br>
Zimbra provides both LDAP and IMAP interfaces, you need to setup SMTP AUTH<br>
on your gateway using SASL which supports both LDAP and IMAP and is well<br>
documented[1] on the postfix website<br>
<br>
[1] <a href="http://www.postfix.org/SASL_README.html" \
target="_blank">http://www.postfix.org/SASL_README.html</a><br> <div>
<div><br>
--<br>
<a href="http://www.baruwa.org" target="_blank">www.baruwa.org</a><br>
<br>
<br>
<br>
<br>
_______________________________________________<br>
Keep Baruwa FREE - <a href="http://pledgie.com/campaigns/12056" \
target="_blank">http://pledgie.com/campaigns/12056</a><br> </div>
</div>
</blockquote>
</div>
<br>
</blockquote>
</div>
</div>
</blockquote>
<blockquote type="cite">
<div><span>_______________________________________________</span><br>
<span>Keep Baruwa FREE - <a href="http://pledgie.com/campaigns/12056" \
target="_blank"> http://pledgie.com/campaigns/12056</a></span><br>
</div>
</blockquote>
</div>
<br>
_______________________________________________<br>
Keep Baruwa FREE - <a href="http://pledgie.com/campaigns/12056" \
target="_blank">http://pledgie.com/campaigns/12056</a><br> <br>
</blockquote>
</div>
</div>
</blockquote>
<blockquote type="cite">
<div><span>_______________________________________________</span><br>
<span>Keep Baruwa FREE - <a href="http://pledgie.com/campaigns/12056" \
target="_blank"> http://pledgie.com/campaigns/12056</a></span><br>
</div>
</blockquote>
</div>
<br>
_______________________________________________<br>
Keep Baruwa FREE - <a href="http://pledgie.com/campaigns/12056" \
target="_blank">http://pledgie.com/campaigns/12056</a><br> <br>
</blockquote>
</div>
</div>
</blockquote>
<blockquote type="cite">
<div><span>_______________________________________________</span><br>
<span>Keep Baruwa FREE - <a href="http://pledgie.com/campaigns/12056" \
target="_blank">http://pledgie.com/campaigns/12056</a></span><br> </div>
</blockquote>
</div></div></div>
<br>_______________________________________________<br>
Keep Baruwa FREE - <a href="http://pledgie.com/campaigns/12056" \
target="_blank">http://pledgie.com/campaigns/12056</a><br> \
<br></blockquote></div><br></div>
_______________________________________________
Keep Baruwa FREE - http://pledgie.com/campaigns/12056
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic