Scalix 11.1.0 CE with MailScanner and ClamAV on CentOS 4.5 is running on one of our servers. eth0 is the LAN interface and eth1 is the external interface.
Everything works fine except incoming spam.
)[root@mail sys]# lsof -i:25
COMMAND PID USER FD TYPE DEVICE SIZE NODE NAME
omsmtpd 7199 root 4u IPv4 2303915 TCP mail.somedomain.net:smtp (LISTEN)
omsmtpd 7199 root 5u IPv4 2303916 TCP 202.142.78.130:smtp (LISTEN)
sendmail 7377 root 4u IPv4 2304499 TCP localhost.localdomain:smtp (LISTEN
[root@mail sys]# cat /etc/mail/access
# Check the /usr/share/doc/sendmail/README.cf file for a description
# of the format of this file. (search for access_db in that file)
# The /usr/share/doc/sendmail/README.cf is part of the sendmail-doc
# package.
#
# by default we allow relaying from localhost...
localhost.localdomain RELAY
localhost RELAY
127.0.0.1 RELAY
To:fry1995@gm.com REJECT
To:kxzt1980@gu.com REJECT
To:xnssv1991@wb.com REJECT
To:rbk1988@kx.com REJECT
To:zgggk2008@gb.com REJECT
To:laohk1981@lw.com REJECT
To:qfv1992@xd.com REJECT
To:xlv2001@ah.com REJECT
Code: Select all
[root@mail sys]# cat smtpd.cfg
###############################################################################
# SMTP Relay Configuration
# ########################
#
# For details please see Scalix Overview - Security
#
###############################################################################
###############################################################################
# Relay Configuration
# ###################
#
# EXTENSIONS These extensions will be advertised by the EHLO reply
# DOMAIN_NAME Local host FQDN
# LOCAL_NAMES Local aliases of DOMAIN_NAME
# MAX_HOP_COUNT If the number of Received: header lines in a message sent to
# the relay exceed this number then the message will be
# rejected by the relay. The default value is zero and any
# non-positive value is interpreted as infinity. The default
# value means that no loop detection is done by the relay,
# any loop detection will only be done by sendmail.
# GREETING This is the text after the 220 on the connection
# greeting line some tokens can be used:
# %F - FQDN, %P - protocol, %N program name,
# %V - version, %D date
# LISTEN Comma separated host:port to listen to eg.
# LISTEN=mail.example.com:25,10.100.100.1:smtp
#
###############################################################################
EXTENSIONS=AUTH,DSN,8BITMIME
# Uncomment the following lines to enable the Submission and LMTP listeners
SUBMIT=ON
#LMTP=ON
[b]SMTPFILTER=TRUE[/b]
###############################################################################
# Catch-all recipients
# ####################
#
# Catch-all recipients are for catching email sent to unknown users, instead
# of non-delivering the email. More than one CATCH line can be used.
#
# CATCH PATTERN RECIPIENT
#
# PATTERN can be:
# user* - any unknown address starting with user
# @domain.com - any unknown address in domain.com
# user*@domain.com - any unknown user starting with user in domain.com
# RECIPIENT
# this is the recipient email address to redirect the email to. It can
# be local or remote, but is subject to any relay rules if remote.
#
# Authentication and Anti-Spamming Measures
# #########################################
#
# Each line is of the form:
# EVENT ACTION PATTERN PATTERN...
# When an event happens the SMTP Relay checks for a matching event/pattern
# sequentially in this file. When it finds the first match, it takes the
# action specified.
#
# ######
# EVENTS
# ######
#
# AUTH_SUCCESS An attempt is made to submit a
# successfully authenticated message.
#
# AUTH_MISMATCH An attempt is made to submit a
# successfully authenticated message but
# the originator name does not match
# the authenticated name.
#
# ANONYMOUS An attempt is made to submit a message
# sent without authentication or after
# failed authentication.
#
# SUBMIT An attempt is made to submit a message from
# the host specified in pattern
#
# RELAY An attempt is made to relay a message through the SMTP Relay
#
# ORIGINATOR An attempt is made to submit a message from a user whose
# email address matches pattern
#
# RECIPIENT An attempt is made to submit a message to a user whose
# email address matches pattern
#
# #######
# ACTIONS
# #######
#
# Accept The message is unconditionally accepted and processed
# normally.
#
# Defer The message is deferred with a 400 code
#
# Discard The message is accepted but then discarded
#
# Header The message is accepted, but an extra header is inserted.
#
# Reject The message is rejected with a 500 code
#
# If Log_ added to the start of an action, then the action is also recorded
# in the SMTP Relay log file.
#
# ########
# PATTERNS
# ########
#
# Hostname Patterns
# - an IP address, eg 123.234.132.231
# - an IP subnet and mask, eg 123.234.200.0/255.255.240.0
# - a hostname, eg bert.loc.co.uk
# - the end of a domain, eg .spammer.net
# - the start of a domain, 123.234.
# - the keyword ALL matches all hosts
# - the keyword LOCAL matches all hosts that do not contain a .
#
# Email Patterns - used by ORIGINATOR and RECIPIENT
# - *@*.spam.net
#
# DNSBL Patterns - These can be used by the SUBMIT EVENT to use DNS black
# list systems (See http://en.wikipedia.org/wiki/DNSBL )
# - DNSBL,host,reply eg DNSBL,bl.spamcop.net,ALL
#
###############################################################################
ANONYMOUS reject ALL
# NB Authenticated RELAYs are always allowed
RELAY accept 127.0.0.1
AUTH_SUCCESS accept ALL
#RECIPIENT Log_Reject fry1995@gm.com
#RECIPIENT Log_Reject kxzt1980@gu.com
#RECIPIENT Log_Reject xnssv1991@wb.com
#RECIPIENT Log_Reject rbk1988@kx.com
#RECIPIENT Log_Reject zgggk2008@gb.com
#RECIPIENT Log_Reject laohk1981@lw.com
#RECIPIENT Log_Reject qfv1992@xd.com
#RECIPIENT Log_Reject xlv2001@ah.com
RELAY Log_Reject ALL
# extra rules added to prevent open relay usage
RECIPIENT Log_Reject *@*@*
RECIPIENT Log_Reject *%*
RECIPIENT Log_Reject *!*
RECIPIENT Log_Reject *#*@*
# The following group sets the configuration for the submission listener
# This listener is only active if SUBMIT=ON is above
# By default it binds to port 587
[SUBMIT]
LISTEN=mail.ourdomain.net:587
# Reject all anonymous connections
ANONYMOUS Log_Reject ALL
# The following group sets the configuration for the lmtp listener
# This listener is only active if LMTP=ON is above
[LMTP]
LISTEN=localhost:24
[root@mail sys]#
please in resolving the problem
thank you