[opensuse-es] ayuda con ldap y servidor de correo
Hola buenas tardes os comento. en mi servidor postfix tengo la siguiente configuracion, os la pongo abajo anexada (2). Bien, ahora quiero migrar a una configuracion de postfix basada en los usuarios del sistema a otra de usuarios virtuales basada en ldap. Para ello me he instalado una suse enterprise 10 que me ha puesto un servidor ldap y el retorno de la configuracion de postfix os la pongo tambien abajo (1). mi pregunta es si alguen me puede ayudar a configurar mi postfix contra ldap correctamente en el sentido de autentificacion smtp, seguridad, antispam etc. me podeis ayudar por favor? muchas gracias #################################### #retorno connfiguracion postfix LDAP #################################### postconf -n alias_maps = hash:/etc/aliases, ldap:/etc/postfix/ldapalias_maps_member.cf, ldap:/etc/postfix/ldapalias_maps.cf biff = no canonical_maps = hash:/etc/postfix/canonical command_directory = /usr/sbin config_directory = /etc/postfix content_filter = daemon_directory = /usr/lib/postfix debug_peer_level = 2 defer_transports = disable_dns_lookups = no disable_mime_output_conversion = no home_mailbox = html_directory = /usr/share/doc/packages/postfix/html inet_interfaces = all inet_protocols = all local_recipient_maps = $alias_maps, ldap:/etc/postfix/ldaplocal_recipient_maps.cf mail_owner = postfix mail_spool_directory = mailbox_command = mailbox_size_limit = 0 mailbox_transport = lmtp:unix:/var/lib/imap/socket/lmtp mailq_path = /usr/bin/mailq manpage_directory = /usr/share/man masquerade_classes = envelope_sender, header_sender, header_recipient masquerade_domains = ldap:/etc/postfix/ldapmasquerade_domains.cf masquerade_exceptions = root message_size_limit = 10240000 mydestination = $myhostname, localhost.$mydomain, $mydomain, ldap:/etc/postfix/ldapmydestination.cf myhostname = servidor-prueba.dominio.com mynetworks = 127.0.0.0/8, 192.168.1.0/24, [::1]/128, [fe80::]/64 mynetworks_style = subnet newaliases_path = /usr/bin/newaliases queue_directory = /var/spool/postfix readme_directory = /usr/share/doc/packages/postfix/README_FILES relayhost = relocated_maps = hash:/etc/postfix/relocated sample_directory = /usr/share/doc/packages/postfix/samples sender_canonical_maps = hash:/etc/postfix/sender_canonical sendmail_path = /usr/sbin/sendmail setgid_group = maildrop smtp_enforce_tls = no smtp_sasl_auth_enable = no smtp_sasl_security_options = noanonymous smtp_tls_enforce_peername = yes smtp_tls_per_site = ldap:/etc/postfix/ldapsmtp_tls_per_site.cf smtp_use_tls = yes smtpd_banner = $myhostname ESMTP $mail_name smtpd_client_restrictions = permit_mynetworks, reject_rbl_client relays.ordb.org, reject_rbl_client dnsbl.njabl.org, ldap:/etc/postfix/ldapaccess.cf, reject_unknown_client smtpd_helo_required = yes smtpd_helo_restrictions = permit_mynetworks, reject_invalid_hostname smtpd_recipient_restrictions = permit_sasl_authenticated, permit_auth_destination, permit_mynetworks, reject_unauth_destination, reject smtpd_sasl_auth_enable = yes smtpd_sender_restrictions = ldap:/etc/postfix/ldapaccess.cf, reject_unknown_sender_domain smtpd_tls_CApath = /etc/ssl/certs smtpd_tls_auth_only = no smtpd_tls_cert_file = /etc/ssl/servercerts/servercert.pem smtpd_tls_key_file = /etc/ssl/servercerts/serverkey.pem smtpd_use_tls = yes strict_8bitmime = no strict_rfc821_envelopes = yes transport_maps = ldap:/etc/postfix/ldaptransport_maps.cf unknown_local_recipient_reject_code = 550 virtual_alias_domains = hash:/etc/postfix/virtual virtual_alias_maps = ldap:/etc/postfix/ldapvirtual_alias_maps.cf, ldap:/etc/postfix/ldaplocal_recipient_maps.cf ###################################### #REtorno configuraicon postfix no ldap ###################################### alias_database = hash:/etc/aliases alias_maps = hash:/etc/aliases body_checks = regexp:/etc/postfix/body_checks broken_sasl_auth_clients = yes canonical_maps = hash:/etc/postfix/canonical command_directory = /usr/sbin config_directory = /etc/postfix daemon_directory = /usr/lib/postfix debug_peer_level = 5 defer_transports = header_checks = regexp:/etc/postfix/header_checks html_directory = /usr/share/doc/packages/postfix/html inet_interfaces = all local_recipient_maps = unix:passwd.byname $alias_maps mail_name = SUSE EMAIL mail_owner = postfix mail_spool_directory = /var/mail mailbox_command = mailbox_size_limit = 51200000 mailbox_transport = mailq_path = /usr/bin/mailq manpage_directory = /usr/share/man masquerade_classes = envelope_sender, header_sender, header_recipient masquerade_domains = masquerade_exceptions = root message_size_limit = 10240000 mydestination = localhost.$mydomain,$myhostname,dominio1.com, domimio2.com,dominiox.com mydomain = midominio.com myhostname = server.midominio.com newaliases_path = /usr/bin/newaliases queue_directory = /var/spool/postfix readme_directory = /usr/share/doc/packages/postfix/README_FILES relay_domains = $mydestination relayhost = relocated_maps = hash:/etc/postfix/relocated sample_directory = /usr/share/doc/packages/postfix/samples sender_canonical_maps = hash:/etc/postfix/sender_canonical sendmail_path = /usr/sbin/sendmail setgid_group = maildrop smtp_sasl_auth_enable = yes smtp_sasl_password_maps = hash:/etc/postfix/sasl_passwd smtpd_banner = ESMTP smtpd_client_restrictions = permit_mynetworks,permit_sasl_authenticated smtpd_error_sleep_time = 0 smtpd_helo_required = yes smtpd_helo_restrictions = smtpd_recipient_restrictions = reject_non_fqdn_sender, reject_non_fqdn_recipient, permit_mynetworks, permit_sasl_authenticated, reject_unauth_destination, reject_unauth_pipelining, reject_rbl_client relays.ordb.org, reject_rbl_client dnsbl.njabl.org, warn_if_reject, permit smtpd_sasl_auth_enable = yes smtpd_sasl_local_domain = $mydomain smtpd_sender_restrictions = hash:/etc/postfix/access,reject_unknown_sender_domain smtpd_use_tls = no strict_rfc821_envelopes = yes transport_maps = hash:/etc/postfix/transport unknown_local_recipient_reject_code = 550 virtual_alias_domains = hash:/etc/postfix/virtual_domains virtual_alias_maps = hash:/etc/postfix/virtual --------------------------------------------------------------------- Para dar de baja la suscripción, mande un mensaje a: opensuse-es+unsubscribe@opensuse.org Para obtener el resto de direcciones-comando, mande un mensaje a: opensuse-es+help@opensuse.org
participants (1)
-
Miren Urkijo