Date: Thu, 04 Oct 2007 10:32:35 -0400 From: Rob <bitabyss@gmail.com> To: Matthew Seaman <m.seaman@infracaninophile.co.uk>, FreeBSD Questions <freebsd-questions@freebsd.org> Subject: Re: Sendmail IP interface assignment -- how to? Message-ID: <4704F983.1060400@gmail.com> In-Reply-To: <47048068.4090806@infracaninophile.co.uk> References: <4703D9D0.6030900@gmail.com> <47048068.4090806@infracaninophile.co.uk>
next in thread | previous in thread | raw e-mail | index | archive | help
Matthew Seaman wrote: > Rob wrote: >> That closed port 25 on the extra NIC, but netstat still shows "tcp4 >> *.submission LISTEN". I definitely need to close port 587 in the 2nd >> NIC, but I was wondering about "best practices" for this. Shouldn't the >> submission thing ONLY be on the localhost IP? I'm thinking I can use: >> DAEMON_OPTIONS(`Addr=127.0.0.1,Port=587,Name=MSA,M=E') > > You also need: > FEATURE(no_default_msa) > otherwise, you're definitely heading in the right direction. Thanks, Matthew! That was the piece I was missing. I tried my Daemon_Options above, but found out its presence does not disable the default config to listen on all interfaces. I got it working by directly editing the .cf, but your trick does it from the macro config. The final result ended up as: FEATURE(no_default_msa)dnl # turn off MSA on all ports; only ue what's in Daemon_Options DAEMON_OPTIONS(`Port=smtp,Addr=127.0.0.1,Name=MTA') DAEMON_OPTIONS(`Port=smtp,Addr=172.23.23.10,Name=MTA') DAEMON_OPTIONS(`Port=2525,Addr=172.23.23.10,Name=MTA')dnl # smtp on alt port DAEMON_OPTIONS(`Port=587,Addr=127.0.0.1,Name=MSA,M=E') Once I knew the right keywords to google, I found this article that might be of use to others: "Five Tips for a Better sendmail Configuration" http://www.onlamp.com/pub/a/onlamp/2004/01/15/sendmail.html?page=1 -Thanks, Rob
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?4704F983.1060400>