exim4, how to allow relay for local net, but not the entire internet?
I know the answer to this must be staring me in the face, but I can't find it.
I have the whole smarthost thing setup with exim4 running on my server, happily receiving mail for local delivery all day and blocking the 10-per-second spam attacks trying to use my server to relay spam.
Sending mail is another beast. I can't seem to get the right combination. Granted, all I've tried is using "dpkg-reconfigure exim4-config" and haven't dived into editing the config template file directly because I don't want to. Basically, I want what I would consider a normal setup:
1) don't relay anything if the SMTP connection comes from the internet interface
2) relay everything if it comes from the interface on 192.168.1.*
3) accept local mail deliveries on internet facing port
Using the click-through config tool, I can only set relay rules for the DESTINATION addresses, not the source. I could always work around it by running another instance of exim4 using a different config file listening on a different port/interface, but this problem seems so basic I didn't think I'd have to do that.
Last edited by dombrowsky; 01-31-2009 at 10:29 AM.
|