This shows you the differences between two versions of the page.
Next revision | Previous revision | ||
openbsd:mail:opensmtpd [2019/12/21 15:09] jrmu created |
openbsd:mail:opensmtpd [2020/01/06 09:32] (current) jrmu |
||
---|---|---|---|
Line 1: | Line 1: | ||
- | Inside /etc/mail/smtpd.conf: | + | Inside the sender's /etc/mail/smtpd.conf: |
<code> | <code> | ||
table aliases file:/etc/mail/aliases | table aliases file:/etc/mail/aliases | ||
Line 7: | Line 8: | ||
action "local_mail" mbox alias <aliases> | action "local_mail" mbox alias <aliases> | ||
- | action "outbound" relay host smtps://support@mail.ircnow.org \ | + | action "outbound" relay host smtp+tls://support@ircnow.org:587 \ |
auth <secrets> | auth <secrets> | ||
Line 16: | Line 17: | ||
Inside /etc/mail/secrets: | Inside /etc/mail/secrets: | ||
<code> | <code> | ||
- | support@ircnow.org support:PASSWORD | + | support support@ircnow.org:PASSWORD |
</code> | </code> | ||
+ | |||
+ | **Note**: You must include the full domain in the username (it may even be necessary to restart opensmtpd) or else you may get an 535 Authentication failed error. | ||
+ | |||
+ | Inside the mail relay's /etc/mail/smtpd.conf: | ||
+ | |||
+ | <code> | ||
+ | pki mail.ircnow.org cert "/etc/ssl/ircnow.org.fullchain.pem" | ||
+ | pki mail.ircnow.org key "/etc/ssl/private/ircnow.org.key" | ||
+ | |||
+ | # tables setup | ||
+ | table aliases file:/etc/mail/aliases | ||
+ | table domains file:/etc/mail/domains | ||
+ | table passwd passwd:/etc/mail/passwd | ||
+ | table virtuals file:/etc/mail/virtuals | ||
+ | table hosts file:/etc/mail/hosts | ||
+ | |||
+ | listen on lo0 mask-src | ||
+ | listen on lo0 port 10028 tag DKIM mask-src | ||
+ | listen on egress port 25 tls pki mail.ircnow.org mask-src | ||
+ | listen on egress port 587 tls-require pki mail.ircnow.org auth <passwd> mask-src | ||
+ | action "lmtp" lmtp "/var/dovecot/lmtp" rcpt-to virtual <virtuals> | ||
+ | action "relay" relay | ||
+ | action "relay_dkim" relay host smtp://127.0.0.1:10027 | ||
+ | |||
+ | match from any for domain <domains> action "lmtp" | ||
+ | match tag DKIM for any action "relay" | ||
+ | match from src <hosts> for any action "relay_dkim" | ||
+ | match auth from any for any action "relay_dkim" | ||
+ | </code> | ||
+ | |||
+ | **Note**: If you are getting 421 4.3.0 Temporary Error and the following message when you run # smtpd -dv -T all: | ||
+ | |||
+ | imsg: pony <- queue: IMSG_SMTP_MESSAGE_CREATE (len=12) | ||
+ | smtp: >>> 421 4.3.0 Temporary Error | ||
+ | |||
+ | This means smtpd has failed to create the directory or file holding the message. It is a permissions error that can probably be solved by doing this: | ||
+ | |||
+ | <code> | ||
+ | # rcctl stop smtpd | ||
+ | # rm -r /var/spool/smtpd | ||
+ | # rcctl start smtpd | ||
+ | </code> | ||
+ |