Block user to send email locally or externally

-

Step 1:
Open file /opt/zimbra/conf/zmconfigd/smtpd_sender_restrictions.cf and add the below line at the top.

 %%contains VAR:zimbraMtaSmtpdSenderRestrictions check_sender_access lmdb:/opt/zimbra/common/conf/restricted_senders%%

 Then execute:

 zmprov ms `zmhostname` +zimbraMtaSmtpdSenderRestrictions "check_sender_access lmdb:/opt/zimbra/common/conf/restricted_senders"
Step 2:
Open file /opt/zimbra/conf/zmconfigd.cf and add below lines before "RESTART mta".

 POSTCONF    smtpd_restriction_classes  local_only
POSTCONF    local_only  FILE  postfix_check_recipient_access.cf
Note: We can find like below

 SECTION mta DEPENDS amavis
 -----------
 -----------
 -----------
RESTART mta
Step 3:
Create a file /opt/zimbra/conf/postfix_check_recipient_access.cf and add the following line.

 check_recipient_access lmdb:/opt/zimbra/common/conf/local_domains, reject
Step 4:
Create a file /opt/zimbra/common/conf/restricted_senders and enter the list of users that you want to block. Follow this syntax:

 user@yourdomain.com            local_only
Step 5:
Create an empty file /opt/zimbra/common/conf/local_domains, here we list all the domains where restricted users allowed to send mails. But we will keep this blank file as we don't want to send emails inside or outside from this id.
Following is the command :

 touch /opt/zimbra/common/conf/local_domains
Note: When we keep this file empty restricted sender can not send self email as well.
yourdomain.com              OK 
otheralloweddomain.com      OK

 i.e.: Allow User/Domain (user@domain.com OK/domain.com OK)
Step 6:
Set ownership permissions for created files

 $chown zimbra:zimbra /opt/zimbra/conf/postfix_check_recipient_access.cf
$chmod 644 /opt/zimbra/conf/postfix_check_recipient_access.cf
$chown :zimbra /opt/zimbra/common/conf/restricted_senders
$chmod 775 /opt/zimbra/common/conf/restricted_senders
$chown :zimbra /opt/zimbra/postfix/conf/local_domains
$chmod 775 /opt/zimbra/postfix/conf/local_domains
Step 7:
Run the below commands as Zimbra user.

 $postmap /opt/zimbra/common/conf/restricted_senders
$postmap /opt/zimbra/common/conf/local_domains
$zmmtactl stop
$zmmtactl start
REF:
https://wiki.zimbra.com/wiki/Block_user_to_send_email_locally_or_externally

Comments

Post a Comment

Popular posts from this blog

Cambium cnPilot E400/E410/E500 Configuration Tutorial

-
Image
Basic Connectivity:   Router (Broadband/mikrotik |dhcp enabled) >>> E400/E410/E500 + LAPTOP Cambium (Powered ON) [POE port] >>>> LAPTOP [LAN port] Step 1: Open Cambium controller in the browser. Step 2: After entering in to the site click on the Onboard Device option from Home Tab of Left Panel. Step 3: In the Onboard Option, we will get Claim Device option to adopt a Cambium AP. Step 4: Now we will move to the Cambium AP configuration Part. Below are credentials of default login access of cnpilot E400/E410/E500/E410/E500. IP:192.168.0.1 Command Line Access: Username: admin Telnet: Disabled by default Password: admin SSH: Enabled by default (on standard port: 22) ***We can also use dhcp IP to login to the cnpilot E400/E410/E500. We will get login page. Step 5: We can see several TAB on left panel. On the DashBoard Tab, we will get some overall information. Some are useful for the configuration; some are useful for troubleshoo...
Read more

Disabling Zimbra's AntiSpam, Amavis and AntiVirus filtering

-
 Check whether antispam and antivirus service is enabled currently on server using the given command zmprov -l gs <mail.example.com> | egrep -i 'serviceen|servicein'  The above command will list all the services which are currently installed and enabled on the server. Disable the antivirus and antispam services using the given commands zmprov -l ms <mail.example.com> -zimbraServiceEnabled antispam  zmprov -l ms <mail.example.com> -zimbraServiceEnabled amavis zmprov -l ms <mail.example.com> -zimbraServiceEnabled antivirus  Comment the following line in the file /opt/zimbra/postfix/conf/main.cf content_filter = smtp-amavis:[127.0.0.1]:10024  Restart services on server zmcontrol restart  Confirm that the antispam and antivirus services are disabled with the given command zmprov -l gs <mail.example.com> | egrep -i 'serviceen|servicein'  zmcontrol status 
Read more

Error "Unable to retrive Zimbra GPG key for package validation"

-
From the installation log we see: Executing: /tmp/tmp.mSlzRMclVa/gpg.1.sh --keyserver keyserver.ubuntu.com --recv-keys 9BE6ED79 gpg: requesting key 9BE6ED79 from hkp server keyserver.ubuntu.com gpg: keyserver timed out gpg: keyserver receive failed: keyserver error 1. Open port 11371 11371 tcp,udp hkp OpenPGP HTTP Keyserver 2. Force it to use port 80: gpg --keyserver hkp://keyserver.ubuntu.com:80 --recv-keys 9BE6ED79 Ref: https://wiki.zimbra.com/wiki/Error_%22Unable_to_retrive_Zimbra_GPG_key_for_package_validation%22
Read more