accepting email addresses based on ldap

A

Arndt Reimers

New Member
Jan 30, 2018
2
0
1
54
Hello,

i would like to let proxmox mailgateway check for valid email addresses in realtime with ldap backend

actually i setup ldap in mailfilter, but it results only in blocking mails but not rejecting mails

it is possible ?

Best Regards
Arr
 
The Proxmox Mail Gateways uses SMTP to check for valid email addresses.

See "Configuration/Mail Proxy/Options: Verify Receivers"

If you not familiar with this, you can get more detailed explanation in the old deployment guide, "chapter 3.3.5"
https://www.proxmox.com/en/downloads/item/proxmox-mail-gateway-deployment-guide

A check via LDAP is not implemented. (one reason is that not all email servers got their users in a LDAP database).
 
tom said:
A check via LDAP is not implemented. (one reason is that not all email servers got their users in a LDAP database).
Click to expand...

Hi tom,

does that mean that LDAP, contrary to what the documentation says and the GUI leads us to believe, is in fact not supported on PMG 5.0.x? If so, will it ever be implemented?

Best Regards
Jbu
 
jbu_inmedias said:
Hi tom,

does that mean that LDAP, contrary to what the documentation says and the GUI leads us to believe, is in fact not supported on PMG 5.0.x?
Click to expand...

No, this means that checking valid users is not using LDAP.

jbu_inmedias said:
If so, will it ever be implemented?

Best Regards
Jbu
Click to expand...

No, as our solution works also for mail servers without LDAP, so its more flexible.

LDAP on Proxmox Mail Gateway can be used to create WHO objects for the rule system, for login on the end user web quarantine interface.

And quite useful feature: if a user got for example 10 email addresses in his mailbox, the daily spam report summarizes all this in just ONE report. Without LDAP query, this will lead to 10 single daily reports.
 
tom said:
No, this means that checking valid users is not using LDAP.
Click to expand...
Thanks for the quick answer. SMTP checks are great and all, but they take more time than say, a local LDAP server. With that in mind:
  1. Is it possible to disable SMTP checks?
  2. Would it be possible to do implement LDAP checks ourselves (http://www.postfix.org/LDAP_README.html), and have them survive updates? I'm thinking we can probably customize the template files, but just to be sure.
 
jbu_inmedias said:
Thanks for the quick answer. SMTP checks are great and all, but they take more time than say, a local LDAP server. With that in mind:
Click to expand...

Did you benchmark this? How? We use also caches here, so we do not see any performance problems in our test setups and our customer setups.

jbu_inmedias said:
  1. Is it possible to disable SMTP checks?
  2. Would it be possible to do implement LDAP checks ourselves (http://www.postfix.org/LDAP_README.html), and have them survive updates? I'm thinking we can probably customize the template files, but just to be sure.
Click to expand...

Receiver Verification is not enabled by default, so yes, this can be configured.

And yes, you can do custom postifx changes but make sure you edit the postfix templates (see admin guide).
 
tom said:
No, this means that checking valid users is not using LDAP.

And quite useful feature: if a user got for example 10 email addresses in his mailbox, the daily spam report summarizes all this in just ONE report. Without LDAP query, this will lead to 10 single daily reports.
Click to expand...

Hi Tom,

How did you exactly mean this? For Recipient verification LDAP cannot be used you stated. How can I 'Unify Email Aliases' such that end users only receive 1 daily report?

Best regards,

Jacco
 
Jacco Branderhorst said:
Hi Tom,

How did you exactly mean this? For Recipient verification LDAP cannot be used you stated. How can I 'Unify Email Aliases' such that end users only receive 1 daily report?

Best regards,

Jacco
Click to expand...

Configure LDAP. I assume your users/email addresses are stored in a LDAP directory?
 
You must log in or register to reply here.
Top Bottom