Postfix – Multiple IP SMTP Banner Configuration

email-serverlinuxpostfixsmtp

I've installed postfix 2.11.3 and we have multiple IP addresses on our server which we want to host two domains, isolated and running on their own IPs.

domain1  unix -       -       n       -       -       smtp
   -o smtp_bind_address=1.1.1.1
   -o smtp_helo_name=mail.abc.com
   -o syslog_name=postfix-mail.abc.com

domain2  unix -       -       n       -       -       smtp
   -o smtp_bind_address=2.2.2.2
   -o smtp_helo_name=mail.xyz.com
   -o syslog_name=postfix-mail.xyz.com

Following transporter /etc/postfix/sender_transport also defined in main.cf:

@abc.com    domain1:
@xyz.com    domain2:

After restarting postfix, it stopped listening on port 25:

[root@postfix-2.11.3]# telnet 1.1.1.1 25
Trying 1.1.1.1...
telnet: connect to address 1.1.1.1: Connection refused

But if I use following line in master.cf it listen on 25 and i can see banner if i telnet:

1.1.1.1:smtp inet  n - n - - smtpd -o myhostname=mail.abc.com 
2.2.2.2:smtp inet  n - n - - smtpd -o myhostname=mail.xyz.com

But I want to tell my mail server when you send out email use specific domain just like sender_transport

What i am doing wrong?

Notes:

I have removed following line from master.cf and replaced with above domain1 and domain2:

smtp      inet  n       -       n       -       -       smtpd

Best Answer

Solution - Postfix version 2.7 or above required:

/etc/postfix/master.cf

#smtp      inet  n       -       n       -       -       smtpd
127.0.0.1:smtp inet  n     -       n       -       -       smtpd
      -o syslog_name=postfix-localhost
      -o smtp_helo_name=localhost
      -o smtp_bind_address=127.0.0.1
      -o myhostname=localhost

65.xxx.xxx.100:smtp inet  n     -       n       -       -       smtpd
      -o syslog_name=postfix-mail.abc.com
      -o smtp_helo_name=mail.abc.com
      -o smtp_bind_address=65.xxx.xxx.100
      -o myhostname=mail.abc.com

65.xxx.xxx.200:smtp inet  n     -       n       -       -       smtpd
      -o syslog_name=postfix-mail.xyz.com
      -o smtp_helo_name=mail.zyx.com
      -o smtp_bind_address=65.xxx.xxx.200
      -o myhostname=mail.xyz.com

abc-out  unix -       -       n       -       -       smtp
   -o smtp_bind_address=65.xxx.xxx.100
   -o smtp_helo_name=mail.abc.com
   -o syslog_name=postfix-mail.abc.com

xyz-out  unix -       -       n       -       -       smtp
   -o smtp_bind_address=65.xxx.xxx.200
   -o smtp_helo_name=mail.xyz.com
   -o syslog_name=postfix-mail.xyz.com

/etc/postfix/main.cf

sender_dependent_default_transport_maps = hash:/etc/postfix/sender_transport

/etc/postfix/sender_transport

# Use source IP - 65.xxx.xxx.100
@abc.com                abc-out:
@example.com            abc-out:

# Use source IP - 65.xxx.xxx.200 
@xyz.com                xyz-out:

Run command to generate hash db

postmap hash:/etc/postfix/sender_transport

Restart/Reload postfix

service postfix reload

Testing

[root@localhost ~]# telnet 65.xxx.xxx.200 25
Trying 65.xxx.xxx.200...
Connected to 65.xxx.xxx.200.
Escape character is '^]'.
220 mail.xyz.com ESMTP Postfix

Sending email test

[root@localhost ~]# telnet localhost 25
Trying ::1...
telnet: connect to address ::1: Connection refused
Trying 127.0.0.1...
Connected to localhost.
Escape character is '^]'.
220 localhost ESMTP Postfix
helo localhost
250 localhost
mail from: spatel@xyz.com
250 2.1.0 Ok
rcpt to: spatel@gmail.com
250 2.1.5 Ok
data
354 End data with <CR><LF>.<CR><LF>
Hello world!
.
250 2.0.0 Ok: queued as 93E708207BA

Got to gmail Inbox > Show Original

Delivered-To: spatel@gmail.com
Received: by 10.xxx.xxx.xxx with SMTP id w64csp782609qgd;
        Tue, 9 Dec 2014 09:35:57 -0800 (PST)
X-Received: by 10.xxx.xxx.xxx with SMTP id o28mr4132552yha.168.1418146557180;
        Tue, 09 Dec 2014 09:35:57 -0800 (PST)
Return-Path: <spatel@xyz.com>
Received: from mail.xyz.com ([65.xxx.xxx.200])
        by mx.google.com with ESMTPS id n10si743294ykc.114.2014.12.09.09.35.56
        for <spatel@gmail.com>
        (version=TLSv1.2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128);
        Tue, 09 Dec 2014 09:35:56 -0800 (PST)
...
...
Message-Id: <20141209173720.93E708207BA@localhost.localdomain>
Date: Tue,  9 Dec 2014 12:37:11 -0500 (EST)
From: spatel@xyz.com

Hello world!

Voila!! see it used 65.xxx.xxx.200 IP address to sent out email..

Received: from mail.xyz.com ([65.xxx.xxx.200])

Related Solutions

Postfix – Fixing Mail Loops Back to Myself Issue

This happens when domain.com has an MX record (or, in the absence of an MX, an A record) that points to your Postfix server, but your Postfix server is not configured to accept mail for that domain. It's commonly seen in two situations:

You've acquired a new domain that you want to use for email, but you just forgot to add it to Postfix. There are a couple ways to do it. In my case, I'm using the virtual table to map addresses to real local users, so I list my domains in the virtual_alias_domains directive in main.cf.
The domain has its MX record set to a host that resolves to 127.0.0.1. Some malware will use this trick so they can set their return address to a valid domain, which most anti-spam measures will check for. However, the MX effectively prevents any delivery to that address, so the sender doesn't have to deal with replies or bounces.

POSTFIX fatal: no SASL authentication mechanisms

You can have saslauthd installed but not have any mechanisms installed. It's quite frustrating and poor error-proofing, IMO.

"no applicable SASL mechanisms" literally means it can't find any of its mechanisms. On a Fedora-based system you'd need to install the cyrus-sasl-plain package if you want to use the 'PLAIN' auth mechanisms (i.e. SMTP/STARTTLS).

yum install cyrus-sasl-plain

apt-get install libsasl2-modules