Postfix / MailScanner question - per domain relaying

Quintin S. Giesbrecht q at
Wed Oct 11 16:36:50 UTC 2017

Except that for 1 email domain I need to be able to receive from anywhere….


From: MailScanner [ at] On Behalf Of Martin Hepworth
Sent: Wednesday, October 11, 2017 12:36 AM
To: MailScanner Discussion <mailscanner at>
Subject: Re: Postfix / MailScanner question - per domain relaying

Do this at the firewall level so only the relays ip-addresses addresses are allowed port 25 inbound

On Tue, 10 Oct 2017 at 23:09, David Jones via MailScanner <mailscanner at<mailto:mailscanner at>> wrote:
On 10/10/2017 03:34 PM, Quintin S. Giesbrecht wrote:
> Thank you very much, that all makes sense.  Just a question that was raised now though...we're using MailWatch, and of course, the client IP is always our external relay's IP, so by using internal_networks and trusted_networks in spamassassin.conf, the RBL checks should then be done against the next IP address in the headers?  Do you know if MailWatch should then report the client IP as the actual sending server, and not our relay then?  Because that would be cool.

Nope.  Sorry.  The client IP will be the actual IP talking to the
MailScanner server.  Why don't you change the networking to combine the
mail services onto your MailScanner box.  MailScanner is going to work
best when it's directly on the Internet edge.  If you can't combine them
from a networking perspective then perhaps you need to setup MailScanner
on the other edge mail server and "federate" them to share MailScanner
and SpamAssassin configs using rsync to push configs from the "master."

David Jones

MailScanner mailing list
mailscanner at<mailto:mailscanner at>
Martin Hepworth, CISSP
Oxford, UK

This communication, including its attachments, if any, is confidential and intended only for the person(s) to whom it is addressed, and may contain proprietary and/or privileged material. Any unauthorized review, disclosure, copying, other distribution of this communication or taking of any action in reliance on its contents is strictly prohibited. If you have received this message in error, please notify SNJ immediately so that we may amend our records. Then, please delete this message, and its attachments, if any, without reading, copying or forwarding it to anyone.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <>

More information about the MailScanner mailing list