firewall: Resurrect port forwardings with different external ports.

[people/teissler/ipfire-2.x.git] / config / postfix / main.cf

diff --git a/config/postfix/main.cf b/config/postfix/main.cf
index 34434ce7f886a17c3768e7dd09cd89d7a7a98ae8..a3d7c321b13fe58cc765f67ee29cd0dd49da5d08 100644 (file)
--- a/config/postfix/main.cf
+++ b/config/postfix/main.cf
@@ -37,9 +37,10 @@ mynetworks = 127.0.0.0/8
 #in_flow_delay = 1s
 alias_maps = hash:/etc/aliases
 alias_database = hash:/etc/aliases
-#recipient_delimiter = +
+recipient_delimiter = +
 
 mailbox_transport = cyrus
+cyrus_destination_recipient_limit=1
 
 header_checks = regexp:/etc/postfix/header_checks
 #fast_flush_domains = $relay_domains
@@ -50,3 +51,33 @@ smtpd_banner = $myhostname ESMTP $mail_name ($mail_version)
 
 virtual_alias_maps = mysql:/etc/postfix/mysql-virtual.cf
 sender_canonical_maps = mysql:/etc/postfix/mysql-canonical.cf
+
+smtpd_sasl_type = cyrus
+smtpd_sasl_auth_enable = yes
+smtpd_sasl_security_options = noanonymous
+smtpd_sasl_local_domain = $myhostname
+broken_sasl_auth_clients = yes
+
+#smtp_sasl_password_maps = hash:/etc/postfix/sasl_passwd
+
+#content_filter=amavis:[127.0.0.1]:10024
+
+smtpd_helo_required = yes
+mime_header_checks=pcre:/etc/postfix/body_checks
+smtpd_recipient_restrictions =
+            reject_invalid_hostname,
+            #reject_non_fqdn_hostname,
+            reject_non_fqdn_sender,
+            reject_non_fqdn_recipient,
+            reject_unknown_sender_domain,
+            reject_unknown_recipient_domain,
+            reject_unauth_pipelining,
+            permit_mynetworks,
+            permit_sasl_authenticated,
+            reject_unauth_destination,
+            reject_rbl_client zombie.dnsbl.sorbs.net,
+            reject_rbl_client opm.blitzed.org,
+            reject_rbl_client list.dsbl.org,
+            reject_rbl_client sbl.spamhaus.org,
+            permit
+