投稿者: sudo adduser info
sudo -u info nano /home/info/.forward
sudo chown info:info /home/info/.forward
sudo chmod 600 /home/info/.forward
sudo systemctl restart postfix
SRS化
外部から届いたメール(例:someone@gmail.com → info@some.domain)を
Postfixが .forward で info@another.domain に転送する際に、
SPFを通すために「Envelope From(Return-Path)」を書き換える(SRS化)設定を行う。sudo apt update
sudo apt install postsrsd
sudo systemctl enable postsrsd
sudo systemctl start postsrsd
sudo systemctl status postsrsd
SPF設定(DNS側)
TXT some.domain "v=spf1 a mx ~all"
A mail.some.domain 3600 x.x.x.x
最後の'.'は必須# GoogleのDNSを使って確認
dig MX some.domain @8.8.8.8 +short
dig A mail.some.domain @8.8.8.8 +short/etc/postfix/main.cf
# =============================================
# 基本設定
# =============================================
# ホスト名・ドメイン設定
myhostname = mail.some.domain
mydomain = some.domain
myorigin = $mydomain
# ローカル配送対象ドメイン
mydestination = $myhostname, localhost.$mydomain, localhost, $mydomain
# リスン設定
inet_interfaces = all
inet_protocols = all
# メールボックス形式 (Maildir推奨)
home_mailbox = Maildir/
# =============================================
# 中継設定(外部転送許可)
# =============================================
# 内部からの中継許可ネットワーク(必要に応じて調整)
mynetworks = 127.0.0.0/8 [::1]/128
# 外部中継は拒否
relay_domains =
# =============================================
# セキュリティ・認証関連
# =============================================
# 不正中継を防止
smtpd_recipient_restrictions =
permit_mynetworks,
reject_unauth_destination
# TLS通信を有効化(証明書を導入済みなら)
smtp_use_tls = yes
smtpd_use_tls = yes
smtpd_tls_cert_file = /etc/ssl/certs/ssl-cert-snakeoil.pem
smtpd_tls_key_file = /etc/ssl/private/ssl-cert-snakeoil.key
smtpd_tls_security_level = may
smtp_tls_security_level = may
smtpd_tls_loglevel = 1
# =============================================
# SRS設定(転送時のSPFエラー回避)
# =============================================
sender_canonical_classes = envelope_sender
sender_canonical_maps = tcp:127.0.0.1:10001
recipient_canonical_classes = envelope_recipient
recipient_canonical_maps = tcp:127.0.0.1:10002
# =============================================
# ログ詳細設定(トラブル解析用)
# =============================================
debug_peer_level = 2
smtpd_tls_received_header = yes
smtp_tls_note_starttls_offer = yes
# =============================================
# その他の推奨設定
# =============================================
# ホスト名が正引き・逆引き可能であること
# 必要に応じて hostname コマンドで確認
#
# メールキューを短時間で再試行
maximal_queue_lifetime = 2d
bounce_queue_lifetime = 2d
# メッセージサイズ上限 (例: 50MB)
message_size_limit = 52428800
mailbox_size_limit = 2147483648
apt -y install mailutils
*info@FDQNの例
adduser info
passwd info
su - info
/etc/aliases
#info: postmaster
Sudo newaliases
.forward
hogehoge@some.domain
vi /etc/aliases
#info: postmaster
Sudo newaliases