Re: [CentOS] Sendmail restriction

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]



Feizhou wrote:
Ugo Bellavance wrote:

Hi,

    I'm looking for a way, in sendmail, to set access rule, saying:

Accept messages for domain.com only from this IP address.

I did some research yesterday, but could only find a way to restrict by IP for all domains managed by sendmail.

Any ideas?


Yes, add a lookup to check sending host ip against domain and add some rules to check. This has been tested in sendmail ruleset testing mode only...you probably want to run some tests of your own.

eg: your sendmail is configured to relay for example.org.

Add a domainip berkeley db.
example.org 192.168.10.4 in domainip


Add a map to sendmail.cf (after access map in this example)

# Access list database (for spam stomping)
Kaccess hash -T<TMPF> -o /etc/mail/access.db

# Domain ip list
Kdomainip hash /etc/mail/domainip.db

# Configuration version number
DZ8.13.1


Add rules to check sending host ip (client_addr) against domain. Put the four missing lines in your Local_check_rcpt ruleset. You cannot just copy and paste from this mail. Put a tab/tabs between the $: and $#error and the > character of each line

Probably easier, update /etc/hosts.{allow,deny} and/or update your firewall to block the port from undesirables.




--

Cheers
John

-- spambait
1aaaaaaa@xxxxxxxxxxxxxxxxxxxxxxx  Z1aaaaaaa@xxxxxxxxxxxxxxxxxxxxxxx
Tourist pics http://portgeographe.environmentaldisasters.cds.merseine.nu/

do not reply off-list
_______________________________________________
CentOS mailing list
CentOS@xxxxxxxxxx
http://lists.centos.org/mailman/listinfo/centos

[Index of Archives]     [CentOS]     [CentOS Announce]     [CentOS Development]     [CentOS ARM Devel]     [CentOS Docs]     [CentOS Virtualization]     [Carrier Grade Linux]     [Linux Media]     [Asterisk]     [DCCP]     [Netdev]     [Xorg]     [Linux USB]
  Powered by Linux