Koozali.org: home of the SME Server

Legacy Forums => General Discussion (Legacy) => Topic started by: Billy on October 27, 2003, 03:51:12 PM

Title: Blocking certain users
Post by: Billy on October 27, 2003, 03:51:12 PM

I need to block certain SME users from being able to send external email. They should only be able to send and receive mail from users on the internal network.

Is this possible?

Title: Re: Blocking certain users
Post by: Byte on October 27, 2003, 04:05:03 PM

You could use IPTABLES

Title: Re: Blocking certain users
Post by: Charlie Brady on October 27, 2003, 06:05:35 PM

Byte wrote:

> You could use IPTABLES

No you couldn't. That would block all mail, not mail based on recipient address.

Selectively blocking relaying for particular local IP addresses would be possible using a custom template for /etc/tcprules/tcp.smtp. Forcing a particular workstation to have a fixed IP address can be done via the hosts table.

Charlie

Title: Re: Blocking certain users
Post by: Byte on October 27, 2003, 06:42:43 PM

not even adding something like this


    $OUT .= "    /sbin/iptables --append Forward$AllowLocals " .
"-s ! 192.168.1.78 -d 0/0 -p tcp --dport
25 -j denylog\n";

I know its alot to do if you have alot of users but they might not

Title: Re: Blocking certain users external email
Post by: Alejandro Lengua on November 05, 2003, 09:22:33 PM

Charlie, do you have any sample or url that could point to us?

I plan to have some users email accounts restricted to the local domain,
however in my case SME will be only an email server and another computer (another Linux distro also) will be the firewall.