-
Notifications
You must be signed in to change notification settings - Fork 146
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Connections from IP addresses not listed in mynetworks are not being rejected #38
Comments
Thank you for your report. I will look into it and try to set up a test case. |
bokysan
added a commit
that referenced
this issue
Oct 24, 2020
This should be resolved in the latest master. |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Hi! I'm testing your image and got an unexpected behaviour.
Running the relay in a device with 10.0.0.100 IP address:
docker run --rm --name postfix \ -e "ALLOWED_SENDER_DOMAINS=example.org" \ -e POSTFIX_mynetworks=192.168.0.0/16 \ -p 587:587 \ boky/postfix:v2.0.1
And then, sending an email from a local device with 10.0.0.103 IP address:
Accepts connection and sends email, but only 192.168.0.0/16 was allowed. So this shouldn't be possible.
I'm using
POSTFIX_smtpd_client_restrictions=permit_mynetworks,reject
as a workaround, and works like expected:docker run --rm --name postfix \ -e "ALLOWED_SENDER_DOMAINS=example.org" \ -e POSTFIX_mynetworks=192.168.0.0/16 \ -e POSTFIX_smtpd_client_restrictions=permit_mynetworks,reject \ -p 587:587 \ boky/postfix:v2.0.1
Maybe this
smtpd_client_restrictions=permit_mynetworks,reject
should be set by default in postfix configuration? Thanks!The text was updated successfully, but these errors were encountered: