[prev in list] [next in list] [prev in thread] [next in thread] 

List:       qmail
Subject:    Re: qmail relay question
From:       "Jon Thackray" <jgt () pobox ! com>
Date:       2003-02-26 23:21:53
[Download RAW message or body]

Dave Sill writes:
 > jgt@pobox.com wrote:
 > 
 > >Also, on abel I get the following bounce, which I'm not sure of the
 > >interpretation of (in particular, which localhost is which, and what
 > >domain is that 10.10.1.2 doesn't like).
 > 
 > You seem to have control/me set to localhost. It should be set to
 > something more descriptive. How about posting the output of
 > qmail-showctl on both systems?

Well, that turns out not to be necessary any more.

 > >What name do I need to add to
 > >burnside's rcpthosts to allow mail in from abel for relaying (or
 > >indeed for local delivery, as trying to mail from abel to
 > >jon@10.10.1.2 also bounces in the same way).
 > 
 > rcpthosts identifies domains that are delivered locally. If you want
 > abel to have relaying privileges, set RELAYCLIENT for connections from
 > abel using /etc/tcp.smtp on burnside.

Yes, I realise that I had got hold of the wrong end of the stick here.
I now have the following in /etc/tcp.smtp

127.:allow,RELAYCLIENT=""
10.10.1.7:allow,RELAYCLIENT=""
10.10.1.4:allow,RELAYCLIENT=""
10.10.1.8:allow,RELAYCLIENT=""

7 is abel, and 4 and 8 are two other linux machines on my home
network. I had something very close to this for a while, but it had a
superfluous dot (.) after the IP address due to my failure to parse
the pattern properly. I guess I could change it to

127.:allow,RELAYCLIENT=""
10.10.1.:allow,RELAYCLIENT=""

which I think should also work.

In abel's /var/qmail/control/me I have
abel.localdomain
which works fine

Meanwhile, in burnside's /var/qmail/control/rcpthosts I have
localhost

I then use a .qmail file in my home directory on abel to force my
local mail on abel to come to burnside, and abel forwards all remote
mail to burnside anyway because abel's /var/qmail/control/smtproutes
contains
:10.10.1.2
#:smtp.ntlworld.com

I intend to replicate abel's structure to my other local machines when
I get a round tuit.

I apologise if you thought this was still an open question, but
decided not to waste list bandwidth posting the solution as I had
mistakenly assumed nobody else was much interested in it.

Curiously, I previously had an alternative solution where I added
several external domains to burnside's rcpthosts, which then allowed
relaying to those domains, but even as I tried the experiment I was
convinced it was an unsafe and incorrect answer.

Anyway, thanks for taking the trouble to answer, and please accept my
apologies for not alerting you to the fact that I had solved the
problem.

-- 
Jon Thackray - jgt@pobox.com
+44 1223 425556 (H)
+44 7803 017991 (M)
[prev in list] [next in list] [prev in thread] [next in thread]