PBX Platforms
Page tree
Skip to end of metadata
Go to start of metadata

Setting Relay Host in Postfix

  1. SSH into system
  2. nano /etc/postfix/main.cf
    • change relayhost = [ipaddress of smtp server]
  3. postfix reload


Authentication to Postfix

  1. SSH into system
     
  2. nano /etc/postfix/sasl_passwd and add the following line at the bottom of the file.
    1. relayhost username:password
       
    2. than we need to run the following commands

      run 
      postmap hash:/etc/postfix/sasl_passwd

      in main.cf add:
      smtp_sasl_auth_enable = yes
      smtp_sasl_password_maps = hash:/etc/postfix/sasl_passwd
      smtp_sasl_security_options =

      then do postfix reload

      refer to http://postfix.state-of-mind.de/patr...ilservers.html for more info

    3. Force postfix to rewrite from address

      For ISPs like 1and1 that will reject the message if the from user and the sending 
      user don't match you can add these rules to /etc/postfix/generic replacing all 
      "[email protected]" with the real data used above for authentication.

      root [email protected] 
      [email protected] [email protected] 
      [email protected] [email protected] 
      [email protected] [email protected] 
      [email protected] [email protected] 
      asterisk [email protected] 
      [email protected] [email protected] 
      [email protected] [email protected] 
      [email protected] [email protected] 
      [email protected] [email protected]
      [email protected] [email protected]al-domain.com

      To rewrite the domain for all addresses from the local pbx, use this format in /etc/postfix/generic:
      @freepbx.localdomain @real-domain.com 

      Add the following to the end of /etc/postfix/main.cf 
      smtp_generic_maps = hash:/etc/postfix/generic

      Then run:
      postmap /etc/postfix/generic
      service postfix restart


      NOTE: This is only needed if the maillog only has lines in it regarding "Connection RESET in response to MAIL FROM" 
      or something similar.  This indicates that the mail server is rejecting it based on how we are identifying 
      ourselves.  This is generally used in conjunction with them setting up a real email box with a real user and using 
      the accounts actual email address to send from.  Again, this is only really for paranoid mail hosts.

2 Comments

  1. United States

    TLS entry if need  See above 


    in main.cf add:
    smtp_sasl_auth_enable = yes
    smtp_sasl_password_maps = hash:/etc/postfix/sasl_passwd
    smtp_sasl_security_options =

    smtp_tls_security_level = may


  2. United States

    Format of above for tls or port change


    1. nano /etc/postfix/main.cf
      • change relayhost = [ipaddress of smtp server]

      relayhost = [smtp.gmail.com]:587