In certain situations, authentication cannot be enabled for the SMTP protocol. This article describes how to allow a certain IP subnet to send without authenticating while leaving authentication enabled to prevent spamming
Issue cause
Users receive a "Relay Denied" error while sending messages without authentication.
Solution
If you cannot enable authentication for the entire server user base, you need to have a certain IP range or subnet that can be allowed remote delivery. This range will be used as the criteria on which delivery to remote domains will be allowed.
NOTE: This rule will apply to the entire server and has to be defined by the server administrator.
NOTE: Any other user connecting from a different IP address not covered by this rule, will still have to use authentication.
NOTE: This rule will apply to the entire server and has to be defined by the server administrator.
- Log into the webadmin interface as the "admin" user account.
- Go to "Security & Filtering".
- Select "Acceptance & Routing".
- Go to the "Advanced Settings" tab.
- Click on "Add acceptance / routing rule".
- Assign a name to the rule in the "Name" field.
- In the "Conditions" section, select: "Remote address" -> "IP".
- Click the "Add condition" button.
- Select the "Range" option and enter the IP range or subnet.
- In the "Actions" section, select: "Delivery" -> "Remote".
- Click the "Add action" button.
- Select the "Allow delivery for all users" option.
- Click the "Save Configuration" button.
NOTE: Any other user connecting from a different IP address not covered by this rule, will still have to use authentication.
OS:
LinuxWindowsFreeBSDNetBSDOpenBSDSolaris
Distros:
DEB based distros amd64