7x31/mailcow-dockerized
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Forwarding hosts in postscreen

Browse Source
This commit is contained in:
Michael Kuron
2017-04-17 15:42:35 +02:00
parent 8822eb57c8
commit a75d916b74
5 changed files with 68 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
data/conf/postfix/main.cf
View File

@@ -24,7 +24,7 @@ milter_default_action = accept
milter_protocol = 6
minimal_backoff_time = 300s
plaintext_reject_code = 550
postscreen_access_list = permit_mynetworks, cidr:/opt/postfix/conf/postscreen_access.cidr
postscreen_access_list = permit_mynetworks, cidr:/opt/postfix/conf/postscreen_access.cidr, tcp:127.0.0.1:10027
postscreen_bare_newline_enable = no
postscreen_blacklist_action = drop
postscreen_cache_cleanup_interval = 24h

2
data/conf/postfix/master.cf
View File

@@ -55,3 +55,5 @@ zeyple unix - n n - - pipe
-o smtpd_recipient_restrictions=permit_mynetworks,reject
-o mynetworks=127.0.0.0/8
-o smtpd_authorized_xforward_hosts=127.0.0.0/8
127.0.0.1:10027 inet n n n - 0 spawn user=nobody argv=/opt/postfix/conf/whitelist_forwardinghosts.sh

11
data/conf/postfix/whitelist_forwardinghosts.sh Executable file
View File

@@ -0,0 +1,11 @@
#!/bin/bash
while true; do
read QUERY
QUERY=($QUERY)
if [ "${QUERY[0]}" != "get" ]; then
echo "500 dunno"
continue
fi
echo $(curl -s http://172.22.1.251:8081/forwardinghosts.php?host=${QUERY[1]})
done