Login | Register For Free | Help
Search for: (Advanced)

Mailing List Archive: exim: users

ACL and extract option

  

 
exim users RSS feed   Index | Next | Previous | View Threaded


towern at gmail

Nov 24, 2009, 3:53 AM

Post #1 of 2 (488 views)
Permalink
ACL and extract option
Hi

At the start of my exim config i have that list:

ACL_CONF=h172.16.1.14=smtp h172.16.1.13=smtp h77.252.144.151=smtp \
h172.16.1.2=fake h77.259.44.22=fake \
h77.259.44.23=mx h172.16.1.4=mx \
h77.259.44.24=mx h172.16.1.3=mx \
h=mx

After that:

acl_smtp_rcpt = acl_check_rcpt${extract {h$interface_address}{ACL_CONF}
{_$value} {} }
acl_smtp_mime = acl_check_mime${extract {h$interface_address}{ACL_CONF}
{_$value} {} }
acl_smtp_data = acl_check_data${extract {h$interface_address}{ACL_CONF}
{_$value} {} }
acl_smtp_predata = acl_check_predata${extract
{h$interface_address}{ACL_CONF} {_$value} {} }
acl_smtp_mail = acl_check_mail${extract {h$interface_address}{ACL_CONF}
{_$value} {} }
acl_smtp_helo = acl_check_helo${extract {h$interface_address}{ACL_CONF}
{_$value} {} }
acl_smtp_connect = acl_check_connect${extract
{h$interface_address}{ACL_CONF} {_$value} {} }
acl_smtp_quit = acl_check_quit${extract {h$interface_address}{ACL_CONF}
{_$value} {} }

After that acl rules:

begin acl

acl_check_connect_smtp:
........

acl_check_helo_smtp:
..........

This means that suffix 'smtp' with rule for example 'acl_check_helo'
relays with hosts from my first listing:

'h172.16.1.14=smtp h172.16.1.13=smtp h77.252.144.151=smtp'

and is not connected with:

h172.16.1.2=fake h77.259.44.22=fake \
h77.259.44.23=mx h172.16.1.4=mx \
h77.259.44.24=mx h172.16.1.3=mx \
h=mx

?

I tried to use `exim -be` but I'am a little bit confused how to check
this variables.

Regards!

--
## List details at http://lists.exim.org/mailman/listinfo/exim-users
## Exim details at http://www.exim.org/
## Please use the Wiki with this list - http://wiki.exim.org/


exim-users at spodhuis

Nov 24, 2009, 10:38 AM

Post #2 of 2 (416 views)
Permalink
Re: ACL and extract option [In reply to]
On 2009-11-24 at 12:53 +0100, tower wrote:
[ snip ACL setup ]
>
> I tried to use `exim -be` but I'am a little bit confused how to check
> this variables.

-be does expansion testing, it doesn't trigger ACL checks.

Use:
exim -bh $source_ip -bs
and type in SMTP.

If you need more detail, then:
exim -bh $source_ip -d+acl+expand -bs

Regards,
-Phil


--
## List details at http://lists.exim.org/mailman/listinfo/exim-users
## Exim details at http://www.exim.org/
## Please use the Wiki with this list - http://wiki.exim.org/

exim users RSS feed   Index | Next | Previous | View Threaded
 
 


Interested in having your list archived? Contact Gossamer Threads
 
  Web Applications & Managed Hosting Powered by Gossamer Threads Inc.