postfix 郵件1

######郵件部分######

 

前提

1.保證環境的純淨

 

2.dns的配置

 

*此處關於dns不做解釋，可參照之前dns博客理解

[root@westos-mail ~]# yum install bind -y

 

[root@westos-mail ~]# systemctl start named

 

[root@westos-mail ~]# vim /etc/named.conf

 

 

[root@westos-mail ~]# vim /etc/named.rfc1912.zones  

 

[root@westos-mail ~]# cd /var/named/

[root@westos-mail named]# ls

data     named.ca     named.localhost  slaves

dynamic  named.empty  named.loopback

[root@westos-mail named]# cp -p named.localhost westos.com.zone

[root@westos-mail named]# vim westos.com.zone

 

[root@westos-mail named]# cp -p westos.com.zone qq.com.zone

[root@westos-mail named]# vim qq.com.zone

                                                 

[root@westos-mail named]# systemctl restart named

[root@westos-mail named]# systemctl stop firewalld

[root@westos-mail named]# systemctl disable firewalld  ##不關閉火牆，其他人不能dig到

rm '/etc/systemd/system/basic.target.wants/firewalld.service'

rm '/etc/systemd/system/dbus-org.fedoraproject.FirewallD1.service'

[root@westos-mail named]# vim /etc/resolv.conf

 

[root@westos-mail named]# dig -t mx westos.com

 

[root@westos-mail named]# dig -t mx qq.com

 

######postfix#####

1.基本定義

postfix提供smtp協議用來投遞郵件

默認端口25

 

[root@westos-mail named]# mail [email protected]

Subject: w

wq

.    ##用“.”來結束錄入內容併發送

EOT

 

   ##默認情況下郵件端口只在127.0.0.1上開啓

[root@westos-mail named]# netstat -antlpe | grep master

tcp        0      0 127.0.0.1:25            0.0.0.0:*               LISTEN      0          21046      1378/master         

tcp6       0      0 ::1:25                  :::*                    LISTEN      0          21047      1378/master         

***郵件日誌存儲地址   /var/log/maillog

 

mail        ##郵件查看

mailq       ##查看郵件隊列

postqueue -f    ##重新處理郵件隊列 

 

 

2.配置

[root@westos-mail named]# vim /etc/postfix/main.cf

76 myhostname = westos-mail.westos.com    ##指定mta主機名稱

83 mydomain = westos.com        ##指定mta的域名

99 myorigin = $mydomain         ##指定郵件來源結尾（@後面的字符內容）

116 inet_interfaces = all     ##25端口開啓的網絡端口

164 mydestination = $myhostname, $mydomain, localhost    ##接收郵件結尾字符的指定

 

[root@westos-mail named]# systemctl restart postfix.service

[root@westos-mail named]# systemctl stop firewalld

 

 

  ##更改後：

[root@westos-mail named]# netstat -antlpe | grep master

tcp        0      0 0.0.0.0:25              0.0.0.0:*               LISTEN      0          110726     928/master          

tcp6       0      0 :::25                   :::*                    LISTEN      0          110727     928/master          

 

 

3.郵件別名與羣發

 

[root@westos-mail named]# vim /etc/aliases

 97 admin:          root        ##郵件別名（用admin發送但是接收端顯示的是root）

 98 moreuser:       :include:/etc/postfix/moreuser   ##郵件羣發

 

[root@westos-mail named]# vim /etc/postfix/moreuser

  1 student

  2 root

~                                                  

[root@westos-mail named]# postalias /etc/aliases   ##立即生效

 

測試：

1）別名測試

[root@qq-mail ~]# mail [email protected]     發送端）

Subject: wq

wq

wq

wq

.

EOT

 

 

[root@westos-mail named]# mail        接收端）

Heirloom Mail version 12.5 7/5/10.  Type ? for help.

"/var/spool/mail/root": 1 message 1 new

>N  1 root                  Sat May 20 04:13  24/859   

& 1

Message  1:From [email protected]  Sat May 20 04:11:21 2017

Return-Path: <[email protected]>

X-Original-To: [email protected]

Delivered-To: [email protected]

Date: Sat, 20 May 2017 04:11:21 -0400

To: [email protected]

Subject: wq

User-Agent: Heirloom mailx 12.5 7/5/10

Content-Type: text/plain; charset=us-ascii

From: [email protected] (root)

Status: RO

 

wq

wq

wq

 

& q

 

2）羣發測試

[root@qq-mail ~]# mail [email protected]     發送端）

Subject: wqq

hahaha

.

EOT

[root@qq-mail ~]# mailq

Mail queue is empty

[root@westos-mail named]# mail  接收端）

Heirloom Mail version 12.5 7/5/10.  Type ? for help.

"/var/spool/mail/root": 1 message 1 new

>N  1 root                  Sat May 20 04:13  24/859   

& 1

Message  1:

From [email protected]  Sat May 20 04:13:15 2017

Return-Path: <[email protected]>

X-Original-To: [email protected]

Delivered-To: [email protected]

Delivered-To: [email protected]

Date: Sat, 20 May 2017 04:13:15 -0400

To: [email protected]

Subject: wqq

User-Agent: Heirloom mailx 12.5 7/5/10

Content-Type: text/plain; charset=us-ascii

From: [email protected] (root)

Status: R

 

hahaha

 

& q

Held 1 message in /var/spool/mail/root

[root@westos-mail named]# mail -u student

Heirloom Mail version 12.5 7/5/10.  Type ? for help.

"/var/mail/student": 1 message 1 new

>N  1 root                  Sat May 20 04:13  24/862   

& 1

Message  1:

From [email protected]  Sat May 20 04:13:15 2017

Return-Path: <[email protected]>

X-Original-To: [email protected]

Delivered-To: [email protected]

Delivered-To: [email protected]

Date: Sat, 20 May 2017 04:13:15 -0400

To: [email protected]

Subject: wqq

User-Agent: Heirloom mailx 12.5 7/5/10

Content-Type: text/plain; charset=us-ascii

From: [email protected] (root)

Status: R

 

hahaha

 

& q

Held 1 message in /var/mail/student

 

 

 

 

 

4.遠程主機測試郵件服務

[root@foundation13 kiosk]#  yum install telent -y   ##安裝服務

 

[root@foundation13 kiosk]# telnet 172.25.254.113 25   ##連接113主機的25端口

Trying 172.25.254.113...

Connected to 172.25.254.113.

Escape character is '^]'.

220 westos-mail.westos.com ESMTP Postfix

ehlo hello    ##打招呼，查看是否迴應

250-westos-mail.westos.com

250-PIPELINING

250-SIZE 10240000

250-VRFY

250-ETRN

250-ENHANCEDSTATUSCODES

250-8BITMIME

250 DSN

mail from:[email protected]   ##郵件來源

250 2.1.0 Ok

rcpt to:[email protected]    ##郵件去向

250 2.1.5 Ok

data

354 End data with <CR><LF>.<CR><LF>

wq          ##郵件內容

haha

lalala

.

250 2.0.0 Ok: queued as E2A022461FD

 

測試端：

[root@qq-mail ~]# mail

Heirloom Mail version 12.5 7/5/10.  Type ? for help.

"/var/spool/mail/root": 4 messages 1 new 3 unread

    1 root                  Sat May 20 03:46  22/730   

 U  2 Mail Delivery System  Sat May 20 04:12  76/2389  

 U  3 Mail Delivery System  Sat May 20 04:12  76/2389  

>N  4 [email protected]       Sat May 20 04:38  15/493   

& 4

Message  4:

From [email protected]  Sat May 20 04:38:35 2017

Return-Path: <[email protected]>

X-Original-To: [email protected]

Delivered-To: [email protected]

Status: R

 

wq

haha

lalala

 

& q

Held 4 messages in /var/spool/mail/root

You have mail in /var/spool/mail/root

[root@qq-mail ~]#

 

 

 

5.郵件客戶端的訪問控制

##限制客戶端

在mta上

[root@westos-mail ~]# postconf -e "smtpd_client_restrictions = check_client_access hash:/etc/postfix/access"  ##用參數檢測此文件使其識別文件內容

 

[root@westos-mail ~]# vim /etc/postfix/main.cf  ##自動生成在文件末尾

680 smtpd_client_restrictions = check_client_access hash:/etc/postfix/access

 

[root@westos-mail ~]# vim /etc/postfix/access

477 172.25.254.13 REJECT

 

[root@westos-mail ~]# postmap /etc/postfix/access    ##加密

[root@westos-mail ~]# cd /etc/postfix/

[root@westos-mail postfix]# ls    ##access.db即位加密文件

access     generic        master.cf  transport

access.db  header_checks  moreuser   virtual

canonical  main.cf        relocated

 

[root@westos-mail postfix]# systemctl restart postfix.service

  

測試：

實驗前：

[root@foundation13 kiosk]# telnet 172.25.254.113 25

Trying 172.25.254.113...

Connected to 172.25.254.113.

Escape character is '^]'.

220 westos-mail.westos.com ESMTP Postfix

mail from:[email protected]

250 2.1.0 Ok

rcpt to:[email protected]

250 2.1.5 Ok

data

354 End data with <CR><LF>.<CR><LF>

wq

haha

lalala

.

250 2.0.0 Ok: queued as E2A022461FD

Connection closed by foreign host.    ##連接成功

實驗後：

[root@foundation13 kiosk]# telnet 172.25.254.113 25

Trying 172.25.254.113...

Connected to 172.25.254.113.

Escape character is '^]'.

220 westos-mail.westos.com ESMTP Postfix

mail from:[email protected]

250 2.1.0 Ok

rcpt to:[email protected]

554 5.7.1 <unknown[172.25.254.13]>: Client host rejected: Access denied    ##連接被拒