Replacing the My networks relay list by user/password credentials

davrot · May 20, 2025, 4:19pm

Hello everyone,

I would like to replace / accompany the “MTA configuration-> My networks” IP list
(The list of “trusted” SMTP clients that have more privileges than “strangers”. In particular, “trusted” SMTP clients are allowed to relay mail through the MTA)
with User/Password credentials. Hence a user, that needs to sign and then relay an email, doesn’t need to be in a known and trusted IP range. Also it would gave me a better feeling if not only the IP decides if a mail is relayed or not.

Is there something build-in that I missed?

Otherwise I need to modify the mta config, right?
smtpd_sasl_auth_enable = yes
smtpd_sasl_security_options = noanonymous
smtpd_relay_restrictions = permit_sasl_authenticated

Thanks!

best wishes
David

martijn · May 21, 2025, 6:59am

The gateway uses Postfix and postfix supports SASL.

Configuring SASL depends on the Linux distribution (RHEL/Debian/…)

For general information on how to configure SASL in Postfix, see

Topic		Replies	Views
Some security related questions Gateway	0	61	December 4, 2009
Sending Email through sendgrid Gateway	1	67	May 14, 2012
Smtp user authentication Gateway	1	96	November 10, 2016
Config ciphermail gateway General	1	242	October 4, 2023
Using the Web GUI certificate for SMTP TLS, changing MTA config file Gateway	4	125	April 11, 2017

Replacing the My networks relay list by user/password credentials

Related topics