Relay to another Server NS8

Hi All

I’ve been using NS7 for a number of years now and really enjoying it.
We do have some slightly strange email routing rules due to our environment which we were able to get working well in NS7 and now trying to replicate this to NS8.

Previously we could just set the alternative domain to be handled by another server in NS7. But in NS8 i’m unsure how to achieve this.
Here is a screenshot of our NS7 settings.


Not sure where this could be set in NS8

Thanks in advance and also feel free to point me to any other posts that might be relevant
thanks

Hi,

It might well be that you have to look into DNS MX records instead of NS8. The ‘relay’ option as in NS7 can not be found on NS8

HTH

AFAIK NS7 do not act as authoritative DNS server…
And anyway, relaying (outside MX records) is simply… telling postfix how to deliver messages :wink:

I think there is a lot of what I am looking for in this post.

I’ll review this thread and see if I can replicate what I had setup on NS7 in NS8 by editing the postfix config

I think you just need a relay rule, see also Mail — NS8 documentation

Here is an example:

2 Likes

DUH!..

1 Like

Homer Simpson intensifies? :face_with_hand_over_mouth:

1 Like

Looks like Markus nailed it

1 Like

Hi All

A little background on our setup and how we manage our domains.

We currently have our @greenpeace.org MX records pointing to Google as we are using Gmail as our core email handler. This is historical and has been in place for many years (decision I was not involved in)

As we also operate sailing vessels that require email to be replicated on board to allow access in offline situations and queue emails ready to be sent once connection is restored, this is due to limited/ intermittent satellite connectivity while at sea.

We run Nethserver on board all our vessels. With another delivery service in between GTmail (from GTmarine) that will do compression on mail before exchanging between shore and vessels.

Nethserver is configured with a local domain @ship.greenpeace.net but also set up to be able to send and receive from @greenpeace.org addresses.

What we are seeing here with Nethserver 8 is because we set @greenpeace.org as another domain on the vessel it thinks it is authoritative for @greenpeace.org.

For example we have the following setup on the on board Nethserver
ship.user1@greenpeace.org
ship.user2@greenpeace.org
ship.user3@greenpeace.org

Emailing those addresses locally is fine with mail being delivered fine to those addresses

but when we want to send an email from the vessel to shore side staff

For example
office.user1@greenpeace.org
office.user2@greenpeace.org
office.user3@greenpeace.org

Email bounces as Nethserver cant find it as those office users as they are not defined locally on the vessel’s Nethserver.

On Nethserver 7 this worked fine for delivering mail locally to those addresses that were defined on board and for those addresses that were not it would use the “Relay to another server” setting that was define on @greenpeace.org

We already have the the following relays set in NS8 for testing but we still get a bounce.


Also a details diagram of our mail flow for our vessels.


Perhaps we have a niche case here and might not be configurable in the UI but perhaps in some config files we could amend. Just as i was getting my head around e-smith templates too.

Happy for any input and more Simpsons references warmly welcomed.

Thanks again for the support.

5 Likes

Please share the postfix config on NS7

config show postfix

and the mail domains:

db domains show

Did you already try to remove the greenpeace.org domain and just use the ship.greenpeace.org domain?
This way the messages to @greenpeace.org should be relayed to the GTmailplus relay onboard because of the relay rule.

Good point. Please check if there are custom templates used on NS7:

find /etc/e-smith/templates-custom/ -depth

Hi Markus

Thanks for the reply. Sorry for the delay I was moving house this month.

Here is the postfix config

[root@nethserver ~]# config show postfix
postfix=service
    AccessBypassList=192.168.214.23
    AccessPolicies=trustednetworks
    AlwaysBccAddress=archive@myts.greenpeace.net
    AlwaysBccStatus=enabled
    ConnectionsLimit=0
    ConnectionsLimitPerIp=0
    DynamicGroupAlias=disabled
    HeloHost=
    MessageQueueLifetime=1
    MessageSizeMax=30000000
    SenderValidation=disabled
    SmartHostName=192.168.214.23
    SmartHostPassword=xxxxxxxxx
    SmartHostPort=25
    SmartHostStatus=enabled
    SmartHostTlsStatus=enabled
    SmartHostUsername=relay
    SystemUserRecipientStatus=disabled
    TCPPorts=25,465,587
    access=green,red
    status=disabled

here is the db domains

 db domains show 
greenpeace.org=domain
    AlwaysBccAddress=
    AlwaysBccStatus=disabled
    Description=
    DisclaimerStatus=disabled
    RelayHost=192.168.214.23
    TransportType=Relay
    UnknownRecipientsActionDeliverMailbox=root
    UnknownRecipientsActionType=bounce
myts.greenpeace.net=domain
    AlwaysBccAddress=
    AlwaysBccStatus=disabled
    Description=
    DisclaimerStatus=disabled
    TransportType=LocalDelivery
    UnknownRecipientsActionDeliverMailbox=
    UnknownRecipientsActionType=bounce

nothing custom apart from a
etc/e-smith/templates-custom/etc/dovecot/dovecot.conf/90myvszlimit
default_vsz_limit = 1024 M

Problem with removing greenpeace.org domain means that users on board also use that domain to receive and send as @greenpeace.org
which we want to keep it unified between ship and office where everyone uses one single domain.
I’ll spend some more time to think about this in the coming weeks
for now we stay on NS7 which is working for us