Comments (8)
If your firewall rule applied source-nat (made the source address appear to be from the local host instead of an external host) that would make the connection match the trusted networks rule, which would result in an open relay. It might also be referred to as a hairpin route or similar.
from docker-mailserver.
I doubt that.
Please check the instance using https://mxtoolbox.com/diagnostic.aspx and report the results here. My personal instance is not an open relay.
from docker-mailserver.
from docker-mailserver.
I‘ve just tested with http://www.aupads.org/test-relay.html, which gives more details. Your test result with it would be helpful.
did you made configuration changes aside from the documented possibilities? First thing I thought of is trusted networks. Have you changed its value?
given that the second test says that your host is an open relay, you should consider turning the service off as long as the issue is not solved.
from docker-mailserver.
I would suspect a configuration issue, also.
Running the tests against my deployment looks OK, I get:
from docker-mailserver.
You mentioned trusted networks - where is that setting? I don't believe I've changed it. I have set a relayhost as I want my outgoing mail to go via my ISPs mailserver currently.... Not sure if that would make a difference.
In the mean time, I've blocked port 25 on my firewall to all but my antispam service (which all my inbound mail should go through anyway)
from docker-mailserver.
I think I might have worked this out.... I use shorewall on the same machine that runs the docker containers. I specifically opened up port 25 to the host, but it looks like I didn't need to do that and by doing it, I ended up making it an open relay. Not sure I understand exactly what happened but removing the manual rules I put in for port 25 seems to have fixed it.
from docker-mailserver.
Thank you both for clarification! I'll close this. :)
from docker-mailserver.
Related Issues (20)
- Can't send email to gmail HOT 1
- [Request] enable TLSv1.3 explicitly to prevent default in some cases HOT 1
- DKIM record is invalid until whitespace is removed
- [Reuqest] Security Headers (CSP) should be added - especially `X-Frame-Options` HOT 1
- Catchall addresses HOT 7
- Newer systems should have `docker compose` rather than `docker-compose`
- Undelivered Mail Returned to Sender HOT 1
- [HELP] I want to send email with HTML
- Option to disable rspamd HOT 7
- POSTMASTER password ...
- Wrong Port in Documentation HOT 1
- Configuring mta to allow relaying HOT 3
- nginx reverse proxy config file HOT 2
- bin/production.sh pull not working
- MDA_HOST missing from mta/rootfs/usr/local/bin/entrypoint.sh
- Error jeboehm-mailserver_web
- Improvement regarding using command bin/production.sh run --rm web setup.sh HOT 4
- question: comparison with docker-mailserver/docker-mailserver HOT 2
- helm chart
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from docker-mailserver.