I'm trying to set up postfix as a relay, for some ancient equipment inside our netwrok which can't be upgraded to use current security protocols to send email.
At this stage I'm just trying to prove access using telnet.
The current state is that using telnet, on the machine where postfix is running, using 127.0.0.1, works:
Trying 127.0.0.1...
Connected to localhost.
Escape character is '^]'.
220-cogapp.com ESMTP Postfix
quit
But attempting it from that machine using its actual IP, or from another machine on the same subnet, fails:
Trying 192.168.1.14...
telnet: connect to address 192.168.1.14: Connection refused
telnet: Unable to connect to remote host
I don't believe that there is any blocking of port 25 on the machine. I can telnet to other services on it.
The postfix configurations that I'm aware of as being relevant are currently set as follows:
inet_interfaces = all
mynetworks = 127.0.0.0/8,192.168.1.0/24
mynetworks_style = subnet
smtpd_recipient_restrictions = permit_mynetworks
smtpd_relay_restrictions = permit_mynetworks, permit_sasl_authenticated, defer_unauth_destination
I assume that there are some other postfix config parameters that are I need to change. Can you help me figure out which these are?
TIA - Pat.
Edit - more complete dumps of config per advice from anx in the first reply:
$ postconf -n
biff = no
command_directory = /usr/sbin
config_directory = /etc/postfix
daemon_directory = /usr/libexec/postfix
data_directory = /var/lib/postfix
debug_peer_level = 2
debugger_command = PATH=/bin:/usr/bin:/usr/local/bin:/usr/X11R6/bin ddd $daemon_directory/$process_name $process_id & sleep 5
html_directory = /usr/share/doc/postfix/html
inet_interfaces = all
inet_protocols = all
mail_owner = _postfix
mailbox_size_limit = 0
mailq_path = /usr/bin/mailq
manpage_directory = /usr/share/man
message_size_limit = 10485760
myhostname = cogapp.com
mynetworks = 127.0.0.0/8,192.168.1.0/23
newaliases_path = /usr/bin/newaliases
queue_directory = /private/var/spool/postfix
readme_directory = /usr/share/doc/postfix
recipient_delimiter = +
sample_directory = /usr/share/doc/postfix/examples
sendmail_path = /usr/sbin/sendmail
setgid_group = _postdrop
smtpd_client_restrictions = permit_mynetworks permit_sasl_authenticated permit
smtpd_recipient_restrictions = permit_mynetworks
smtpd_tls_ciphers = medium
tls_random_source = dev:/dev/urandom
unknown_local_recipient_reject_code = 550
$ postconf -M
smtp inet n - n - 1 postscreen
smtpd pass - - n - - smtpd
dnsblog unix - - n - 0 dnsblog
tlsproxy unix - - n - 0 tlsproxy
submission inet n - n - - smtpd -o smtpd_tls_security_level=encrypt
smtp unix - - n - - smtp
pickup fifo n - n 60 1 pickup -o content_filter=
cleanup unix n - n - 0 cleanup
qmgr fifo n - n 300 1 qmgr
tlsmgr unix - - n 1000? 1 tlsmgr
rewrite unix - - n - - trivial-rewrite
bounce unix - - n - 0 bounce
defer unix - - n - 0 bounce
trace unix - - n - 0 bounce
verify unix - - n - 1 verify
sacl-cache unix - - n - 1 sacl-cache
flush unix n - n 1000? 0 flush
proxymap unix - - n - - proxymap
proxywrite unix - - n - 1 proxymap
relay unix - - n - - smtp -o smtp_fallback_relay=
showq unix n - n - - showq
error unix - - n - - error
retry unix - - n - - error
discard unix - - n - - discard
local unix - n n - - local
virtual unix - n n - - virtual
lmtp unix - - n - - lmtp
anvil unix - - n - 1 anvil
scache unix - - n - 1 scache
dovecot unix - n n - 25 pipe flags=DRhu user=_dovecot:mail argv=/usr/libexec/dovecot/dovecot-lda -d ${user}
policy unix - n n - - spawn user=nobody:mail argv=/usr/bin/perl /usr/libexec/postfix/greylist.pl