Public Pastes
SHARE
TWEET

postfix conf

andrewjs18 Oct 27th, 2016 (edited) 6 Never
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
  1. ### mail.log error
  2. Dec  8 06:07:23 postfix/smtpd[22875]: connect from mail-qt0-f195.google.com[209.85.216.195]
  3. Dec  8 06:07:23 postfix/smtpd[22875]: Anonymous TLS connection established from mail-qt0-f195.google.com[209.85.216.195]: TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)
  4. Dec  8 06:07:23 postfix/smtpd[22875]: 933E917FBFB: client=mail-qt0-f195.google.com[209.85.216.195]
  5. Dec  8 06:07:23 postfix/cleanup[22879]: 933E917FBFB: message-id=<67a8b965-9877-3dba-94bc-f89d322a8f48@gmail.com>
  6. Dec  8 06:07:23 postfix/qmgr[541]: 933E917FBFB: from=<andrewshemo86@gmail.com>, size=2978, nrcpt=1 (queue active)
  7. Dec  8 06:07:23 postfix/smtpd[22875]: disconnect from mail-qt0-f195.google.com[209.85.216.195] ehlo=2 starttls=1 mail=1 rcpt=1 data=1 quit=1 commands=7
  8. Dec  8 06:07:24 postfix/smtp[22880]: Untrusted TLS connection established to smtp.sparkpostmail.com[54.71.210.40]:587: TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)
  9. Dec  8 06:07:24 postfix/smtp[22880]: 933E917FBFB: to=<me@gmail.com>, orig_to=<me@mysite.com>, relay=smtp.sparkpostmail.com[54.71.210.40]:587, delay=0.71, delays=0.2/0.01/0.4/0.11, dsn=5.7.1, status=bounced (host smtp.sparkpostmail.com[54.71.210.40] said: 550 5.7.1 Unconfigured Sending Domain <gmail.com> (in reply to end of DATA command))
  10. Dec  8 06:07:24 postfix/cleanup[22879]: 581FA17FD60: message-id=<20161208060724.581FA17FD60@mysite.com>
  11. Dec  8 06:07:24 postfix/qmgr[541]: 581FA17FD60: from=<>, size=5026, nrcpt=1 (queue active)
  12. Dec  8 06:07:24 postfix/bounce[22881]: 933E917FBFB: sender non-delivery notification: 581FA17FD60
  13. Dec  8 06:07:24 postfix/qmgr[541]: 933E917FBFB: removed
  14. Dec  8 06:07:24 postfix/smtp[22880]: Untrusted TLS connection established to smtp.sparkpostmail.com[35.162.3.13]:587: TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)
  15. Dec  8 06:07:24 postfix/smtp[22880]: 581FA17FD60: to=<me@gmail.com>, relay=smtp.sparkpostmail.com[35.162.3.13]:587, delay=0.58, delays=0.02/0/0.4/0.15, dsn=2.0.0, status=sent (250 2.0.0 OK 95/5C-30491-C98F8485)
  16. Dec  8 06:07:24 postfix/qmgr[541]: 581FA17FD60: removed
  17.  
  18.  
  19.  
  20.  
  21. ### main.cf postfix config
  22.  
  23. # See /usr/share/postfix/main.cf.dist for a commented, more complete version
  24.  
  25. # Debian specific:  Specifying a file name will cause the first
  26. # line of that file to be used as the name.  The Debian default
  27. # is /etc/mailname.
  28. #myorigin = /etc/mailname
  29.  
  30. smtpd_banner = $myhostname ESMTP $mail_name (Ubuntu)
  31. biff = no
  32.  
  33. # appending .domain is the MUA's job.
  34. append_dot_mydomain = no
  35.  
  36. # Uncomment the next line to generate "delayed mail" warnings
  37. #delay_warning_time = 4h
  38.  
  39. readme_directory = no
  40.  
  41. # TLS parameters
  42.  
  43. smtp_tls_loglevel = 1
  44. smtpd_tls_loglevel = 1
  45. #smtp_tls_security_level = may
  46. smtpd_tls_security_level = may
  47. smtpd_tls_auth_only = yes
  48. smtpd_tls_cert_file=/fullchain.pem
  49. smtpd_tls_key_file=/privkey.pem
  50. smtp_tls_session_cache_database = btree:${data_directory}/smtp_scache
  51. smtpd_tls_session_cache_database = btree:${data_directory}/smtpd_scache
  52. smtp_tls_mandatory_exclude_ciphers = aNULL, MD5 , DES, RC4, SRP, 3DES, eNULL
  53. smtpd_tls_mandatory_exclude_ciphers = aNULL, MD5 , DES, RC4, SRP, 3DES, eNULL
  54. smtp_tls_mandatory_protocols = !SSLv2, !SSLv3
  55. smtpd_tls_mandatory_protocols = !SSLv2, !SSLv3
  56. smtp_tls_protocols=!SSLv2,!SSLv3
  57. smtpd_tls_protocols=!SSLv2,!SSLv3
  58. smtp_tls_mandatory_ciphers=high
  59. smtpd_tls_mandatory_ciphers=high
  60. tls_high_cipherlist=EDH+CAMELLIA:EDH+aRSA:EECDH+aRSA+AESGCM:EECDH+aRSA+SHA384:EECDH+aRSA+SHA256:EECDH:+CAMELLIA256:+AES256:+CAMELLIA128:+AES128:+SSLv3:!aNULL:!eNULL:!LOW:!3DES:!MD5:!EXP:!PSK:!DSS:!RC4:!SEED:!ECDSA:CAMELLIA256-SHA:AES256-SHA:CAMELLIA128-SHA:AES128-SHA
  61.  
  62. # See /usr/share/doc/postfix/TLS_README.gz in the postfix-doc package for
  63. # information on enabling SSL in the smtp client.
  64.  
  65. smtpd_relay_restrictions = permit_mynetworks permit_sasl_authenticated defer_unauth_destination
  66. myhostname = mysite.com
  67. alias_maps = hash:/etc/aliases
  68. alias_database = hash:/etc/aliases
  69. myorigin = mysite.com
  70. mydestination = me.mysite.com, localhost.localdomain, localhost
  71. mynetworks = 127.0.0.0/8 [::ffff:127.0.0.0]/104 [::1]/128
  72. mailbox_size_limit = 0
  73. recipient_delimiter = +
  74. inet_interfaces = all
  75. inet_protocols = all
  76. virtual_alias_domains = mysite.com
  77. virtual_alias_maps = hash:/etc/postfix/forwarding
  78.  
  79. # Sparkpost
  80. smtp_sasl_auth_enable = yes
  81. smtp_sasl_password_maps = static:SMTP_Injection:apikey
  82. relayhost = [smtp.sparkpostmail.com]:587
  83. smtp_sasl_security_options = noanonymous
  84. smtp_tls_security_level = encrypt
  85. header_size_limit = 4096000
  86. smtp_use_tls = yes
RAW Paste Data
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy. OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!
 
Top