User Tools
сервис_mta
Differences
This shows you the differences between two versions of the page.
| Both sides previous revision Previous revision Next revision | Previous revision Next revision Both sides next revision | ||
|
сервис_mta [2020/06/25 12:48] val [Настройка MTA на релеинг почты на основе аутентификации] |
сервис_mta [2021/03/10 12:32] val [Настройка MTA на релеинг почты на основе аутентификации] |
||
|---|---|---|---|
| Line 33: | Line 33: | ||
| === Debian/Ubuntu (postfix) === | === Debian/Ubuntu (postfix) === | ||
| <code> | <code> | ||
| - | root@server:~# debconf-set-selections <<< "postfix postfix/mailname string corpX.un" | ||
| root@server:~# debconf-set-selections <<< "postfix postfix/main_mailer_type string 'Internet Site'" | root@server:~# debconf-set-selections <<< "postfix postfix/main_mailer_type string 'Internet Site'" | ||
| + | root@server:~# debconf-set-selections <<< "postfix postfix/mailname string corpX.un" | ||
| root@server:~# apt install postfix | root@server:~# apt install postfix | ||
| - | root@server:~# debconf-show postfix | + | root@server:~# debconf-show postfix | grep destinations |
| root@server:~# man 1 postconf | root@server:~# man 1 postconf | ||
| Line 71: | Line 71: | ||
| <code> | <code> | ||
| server# nslookup -q=A corpX.un | server# nslookup -q=A corpX.un | ||
| + | </code> | ||
| + | |||
| + | === Настройка MTA postfix (Debian/Ubuntu) === | ||
| + | <code> | ||
| + | root@server:~# cat /etc/postfix/main.cf | ||
| + | </code><code> | ||
| + | ... | ||
| + | mydestination = server.corpX.un, localhost.corpX.un, , localhost, corpX.un | ||
| + | ... | ||
| + | </code><code> | ||
| + | root@server:~# postconf | ||
| + | |||
| + | root@server:~# service postfix check | ||
| + | |||
| + | root@server:~# service postfix reload | ||
| </code> | </code> | ||
| Line 94: | Line 109: | ||
| [server:/etc/mail] # /etc/rc.d/sendmail restart | [server:/etc/mail] # /etc/rc.d/sendmail restart | ||
| </code> | </code> | ||
| + | ==== Настройка MTA на релеинг почты из LAN ==== | ||
| - | === Настройка MTA postfix (Debian/Ubuntu) === | + | === postfix (Debian/Ubuntu) === |
| <code> | <code> | ||
| - | root@server:~# cat /etc/postfix/main.cf | + | root@gate:~# cat /etc/postfix/main.cf |
| </code><code> | </code><code> | ||
| ... | ... | ||
| - | mydestination = server.corpX.un, localhost.corpX.un, , localhost, corpX.un | + | mynetworks = ... 192.168.X.0/24 |
| ... | ... | ||
| </code><code> | </code><code> | ||
| - | root@server:~# postconf | + | root@gate:~# service postfix reload |
| - | + | ||
| - | root@server:~# service postfix check | + | |
| - | + | ||
| - | root@server:~# service postfix reload | + | |
| - | + | ||
| </code> | </code> | ||
| - | |||
| - | ==== Настройка MTA на релеинг почты из LAN ==== | ||
| === sendmail (FreeBSD) === | === sendmail (FreeBSD) === | ||
| Line 135: | Line 143: | ||
| [server:/etc/mail] # /etc/rc.d/sendmail restart | [server:/etc/mail] # /etc/rc.d/sendmail restart | ||
| </code> | </code> | ||
| + | ==== Настройка MTA на использование MTA провайдера ==== | ||
| - | === postfix (Ubuntu) === | + | === postfix (Debian/Ubuntu) === |
| <code> | <code> | ||
| root@server:~# cat /etc/postfix/main.cf | root@server:~# cat /etc/postfix/main.cf | ||
| </code><code> | </code><code> | ||
| ... | ... | ||
| - | mynetworks = ... 192.168.X.0/24 | + | relayhost = gate.corpX.un |
| ... | ... | ||
| </code><code> | </code><code> | ||
| root@server:~# service postfix reload | root@server:~# service postfix reload | ||
| </code> | </code> | ||
| - | ==== Настройка MTA на использование MTA провайдера ==== | ||
| === sendmail (FreeBSD) === | === sendmail (FreeBSD) === | ||
| Line 166: | Line 174: | ||
| </code> | </code> | ||
| - | === postfix (Debian/Ubuntu) === | + | |
| + | |||
| + | ==== Настройка MTA на релеинг почты домена corpX.un ==== | ||
| + | |||
| + | === Debian/Ubuntu === | ||
| <code> | <code> | ||
| - | root@server:~# cat /etc/postfix/main.cf | + | root@gate:~# cat /etc/postfix/main.cf |
| </code><code> | </code><code> | ||
| ... | ... | ||
| - | relayhost = gate.corpX.un | + | relay_domains = $mydestination, corpX.un |
| - | ... | + | |
| </code><code> | </code><code> | ||
| - | root@server:~# /etc/init.d/postfix reload | + | root@gate:~# service postfix reload |
| - | </code> | + | |
| - | ==== Настройка MTA на релеинг почты домена corpX.un ==== | + | root@gate:~# tail -f /var/log/mail.log |
| + | </code> | ||
| === FreeBSD === | === FreeBSD === | ||
| Line 200: | Line 211: | ||
| [gate:~] # tail -f /var/log/maillog | [gate:~] # tail -f /var/log/maillog | ||
| </code> | </code> | ||
| - | |||
| - | === Debian/Ubuntu === | ||
| - | <code> | ||
| - | root@gate:~# cat /etc/postfix/main.cf | ||
| - | </code><code> | ||
| - | ... | ||
| - | relay_domains = $mydestination, corpX.un | ||
| - | </code><code> | ||
| - | root@gate:~# service postfix reload | ||
| - | |||
| - | root@gate:~# tail -f /var/log/mail.log | ||
| - | </code> | ||
| - | |||
| ==== Настройка MTA на релеинг почты на основе аутентификации ==== | ==== Настройка MTA на релеинг почты на основе аутентификации ==== | ||
| Line 221: | Line 219: | ||
| <code> | <code> | ||
| # cat /etc/postfix/main.cf | # cat /etc/postfix/main.cf | ||
| - | ... | + | </code><code> |
| - | smtpd_sasl_path = private/auth | + | |
| - | smtpd_sasl_auth_enable = yes | + | |
| - | smtpd_sasl_type = dovecot | + | |
| ... | ... | ||
| smtpd_tls_cert_file = /root/server.crt | smtpd_tls_cert_file = /root/server.crt | ||
| Line 230: | Line 225: | ||
| smtpd_use_tls = yes | smtpd_use_tls = yes | ||
| ... | ... | ||
| + | smtpd_relay_restrictions = ... permit_sasl_authenticated ... | ||
| + | ... | ||
| + | smtpd_sasl_path = private/auth | ||
| + | smtpd_sasl_auth_enable = yes | ||
| + | smtpd_sasl_type = dovecot | ||
| + | |||
| + | #for kerberos gssapi | ||
| + | line_length_limit = 8192 | ||
| </code> | </code> | ||
| Line 250: | Line 253: | ||
| </code><code> | </code><code> | ||
| # newaliases | # newaliases | ||
| + | |||
| + | # apt install logwatch | ||
| + | ... | ||
| # mail root | # mail root | ||
| Line 267: | Line 273: | ||
| === Добавление учетных записей пользователей виртуальных доменов === | === Добавление учетных записей пользователей виртуальных доменов === | ||
| - | [[Управление учетными записями в Linux]], [[Управление учетными записями в FreeBSD]] | + | [[Управление учетными записями в Linux]] |
| === Настройка MTA на поддержку виртуального домена === | === Настройка MTA на поддержку виртуального домена === | ||
| + | |||
| + | == postfix (Debian/Ubuntu) == | ||
| + | <code> | ||
| + | root@server:~# cat /etc/postfix/main.cf | ||
| + | </code><code> | ||
| + | ... | ||
| + | mydestination = server.corpX.un, localhost.corpX.un, corpX.un, compX.un, localhost | ||
| + | virtual_alias_maps = hash:/etc/postfix/virtual | ||
| + | ... | ||
| + | </code><code> | ||
| + | root@server:~# cat /etc/postfix/virtual | ||
| + | </code><code> | ||
| + | info@corpX.un user1 | ||
| + | info@compX.un user2 | ||
| + | </code><code> | ||
| + | root@server:~# postmap /etc/postfix/virtual | ||
| + | |||
| + | root@server:~# service postfix reload | ||
| + | |||
| + | gate.isp.un$ mail info@corpX.un | ||
| + | |||
| + | gate.isp.un$ mail info@compX.un | ||
| + | |||
| + | server# mail -u user1 | ||
| + | |||
| + | server# mail -u user2 | ||
| + | </code> | ||
| == sendmail (FreeBSD) == | == sendmail (FreeBSD) == | ||
| Line 298: | Line 331: | ||
| [server:/etc/mail] # /etc/rc.d/sendmail restart | [server:/etc/mail] # /etc/rc.d/sendmail restart | ||
| </code> | </code> | ||
| - | |||
| - | == postfix (Debian/Ubuntu) == | ||
| - | <code> | ||
| - | root@server:~# cat /etc/postfix/main.cf | ||
| - | </code><code> | ||
| - | ... | ||
| - | mydestination = server.corpX.un, localhost.corpX.un, corpX.un, compX.un, localhost | ||
| - | virtual_alias_maps = hash:/etc/postfix/virtual | ||
| - | ... | ||
| - | </code><code> | ||
| - | root@server:~# cat /etc/postfix/virtual | ||
| - | </code><code> | ||
| - | info@corpX.un user1 | ||
| - | info@compX.un user2 | ||
| - | </code><code> | ||
| - | root@server:~# postmap /etc/postfix/virtual | ||
| - | |||
| - | root@server:~# service postfix reload | ||
| - | </code> | ||
| - | |||
| - | === Тестирование === | ||
| - | <code> | ||
| - | gate# mail info@corpX.un | ||
| - | |||
| - | gate# mail info@compX.un | ||
| - | |||
| - | server# mail -u user1 | ||
| - | |||
| - | server# mail -u user2 | ||
| - | </code> | ||
| - | |||
| ==== Сокрытие названия сервиса ==== | ==== Сокрытие названия сервиса ==== | ||
| - | === Ubuntu (postfix) === | + | === Debian/Ubuntu (postfix) === |
| <code> | <code> | ||
| # postconf -d | grep mail_name | # postconf -d | grep mail_name | ||
| Line 339: | Line 341: | ||
| # postconf -e 'smtpd_banner = $myhostname ESMTP $mail_name (Windows 2008R2)' | # postconf -e 'smtpd_banner = $myhostname ESMTP $mail_name (Windows 2008R2)' | ||
| - | # /etc/init.d/postfix reload | + | # service postfix reload |
| </code> | </code> | ||
сервис_mta.txt · Last modified: 2024/06/19 09:09 by val
Page Tools
Except where otherwise noted, content on this wiki is licensed under the following license: CC Attribution-Share Alike 4.0 International
