Scalix Forums

I have scalix setup as an outgoing MTA only, as incoming emails are received at a separate machine, scanned and then forwarded to Scalix.

Everything is working flawlessly IF the user is accessing Scalix from inside the local lan or via SWA, the minute you try to access Scalix from another client -- this happens:

Nov 14 14:42:12 localhost postfix/smtpd[21397]: NOQUEUE: reject: RCPT from unknown[217.69.191.66]: 450 <burhan.khalid@am-ul.com>: Recipient address rejected: Greylisted, see http://isg.ee.ethz.ch/tools/postgrey/he ... .com.html; from=<burhan.khalid@am-ul.com> to=<burhan.khalid@am-ul.com> proto=ESMTP helo=<PC461715146293>

This is a test message that I sent to myself from Outlook running on a machine outside the network. It rejected my message, and I think its because eventhough I have enabled outgoing email authentication, it is not taking place in this setup.

In this case, my incoming email server is postfix running on a separate machine with mailwasher and a bunch of scanning+anti-spam+anti-virus applications, it then passes on the message via local smtp to the scalix machine for delivery.

I googled for a while and I found a way to check email addresses in postfix via ldap lookup (this example) but then I read in the forums that user passwords in Scalix are not stored in the ldap directory, but somewhere else.

Is there a way to configure this so that users can authenticate before sending? Am I barking up the wrong tree here?

I also need this functionality

I managed to solve this problem using SASL and having it authenticate users via IMAP. Worked great :)

Using what SASL provider? Cyrus SASL?

Yes Cyrus SASL, make sure you have the rimap mechanism installed for your library (check saslauthd -v):



Then just adjust your configuration for saslauthd and add the rimap option:



(I have -r because my authentication token requires the domain name, not just the email username).

Hope that helps

works great, thanks