The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

exim trusted ip range

Discussion in 'General Discussion' started by anand, Jun 13, 2006.

  1. anand

    anand Well-Known Member

    Joined:
    Nov 11, 2002
    Messages:
    1,435
    Likes Received:
    1
    Trophy Points:
    38
    Location:
    India
    cPanel Access Level:
    DataCenter Provider
    On a customer server, i have some ip range on which the customer doesn't want any checks to be done. Any mails coming from these ips should be accepted without any checks inside exim.conf.

    I tried to look around however wasn't able to find how i can do that.

    Can anyone point me to correct location ?
     
  2. anand

    anand Well-Known Member

    Joined:
    Nov 11, 2002
    Messages:
    1,435
    Likes Received:
    1
    Trophy Points:
    38
    Location:
    India
    cPanel Access Level:
    DataCenter Provider
    **bump**

    anyone ?
     
  3. bmcgrail

    bmcgrail Well-Known Member

    Joined:
    Dec 8, 2003
    Messages:
    83
    Likes Received:
    0
    Trophy Points:
    6
    Not an easy solution. Definitely backup exim conf files and test on non-production box or at off peak times.

    Exim run’s check top down. You would need to setup an ACL at the top to see if these messages came from a trusted IP.

    Then you would need to setup a router at the top of the router config to call virtual_userdelivery if the message came from a trusted ip.

    Probably have to add custom code to /etc/antivirus.exim so that it doesn’t process anything in there too. And if you are running RBL checks in exim, I'm not sure how you'd bypass those.


    Not an exim expert, but something along the lines of

    Add ip’s to /etc/exim.nofilter

    Add to exim.conf

    Code:
    hostlist nofilter_hosts = lsearch;/etc/exim.nofilter
    Top of acl

    Code:
    accept hosts = +nofilter_hosts
    top of routers

    Code:
    nofilter:
      driver = accept
      hosts = +nofilter_hosts
      transport = virtual_userdelivery
    Remember, I’m not an expert and none of that is tested. Don’t know the ramifications of trying to bypass filters. Possible infinite loops?
     
  4. anand

    anand Well-Known Member

    Joined:
    Nov 11, 2002
    Messages:
    1,435
    Likes Received:
    1
    Trophy Points:
    38
    Location:
    India
    cPanel Access Level:
    DataCenter Provider
    Thanks will work on this on a trial server and see how it goes.
     
  5. anand

    anand Well-Known Member

    Joined:
    Nov 11, 2002
    Messages:
    1,435
    Likes Received:
    1
    Trophy Points:
    38
    Location:
    India
    cPanel Access Level:
    DataCenter Provider
    This would probably mean using chattr on exim.conf since cpanel can overwrite the custom config incase of an exim update. :( I probably need something in lines which are compatible of cpanel and can use cpanel WHM exim editor for it.

    Back to drawing board i guess.
     
Loading...

Share This Page