#  These entries are just an example.  You can find more documentation on the postfix website to what these entries mean. 
#  Any line with the "#" symbol next to it means that it is not being read by your postfix program.  Please feel free to use
#  this configuration file but with the understanding that you are ultimately responsible for the options and settings you choose
#  to use. This file was created as an example only. I accept no responsibility for problems this may cause you. Created on 03/01/04.

command_directory = /usr/local/sbin
daemon_directory = /usr/libexec/postfix
mailq_path = /usr/bin/mailq
manpage_directory = /usr/local/man
newaliases_path = /usr/bin/newaliases
queue_directory = /var/spool/postfix
readme_directory = /usr/local/share/doc/postfix/readme
sample_directory = /etc/postfix
sendmail_path = /usr/sbin/sendmail

myhostname = mail.yourdomain.com
mydomain = example.com
myorigin = example.com
mynetworks = 127.0.0.0/8, 192.168.0.0/24

mail_owner = _postfix
setgid_group = _postdrop
default_privs = nobody
# always_bcc = backupmail
soft_bounce = no

alias_maps = hash:/etc/aliases
alias_database = hash:/etc/aliases

# The following is for Amavisd operation. Although we think that Amavisd is one of the better ways of enabling
# anti-virus and SpamAssassin, if you disagree with us you'll probably want to use content_filter = smtp:[127.0.0.1]:10025
# instead of the smtpd_proxy_ options.
smtpd_proxy_filter = 127.0.0.1:10024
smtpd_proxy_timeout = 100s
smtpd_proxy_ehlo = mail.yourdomain.com
recipient_delimiter = +

# SSL/TLS encrypted email is nice to have. You can get the TLS patch at http://www.aet.tu-cottbus.de/personen/jaenicke/postfix_tls
# If you don't want or need TLS, then comment out the next two sections.
#smtp_use_tls = yes
#smtp_tls_key_file = /etc/postfix/ssl/mail.yourdomain.com.pem
#smtp_tls_cert_file = /etc/postfix/ssl/mail.yourdomain.com.crt
#smtp_tls_CAfile = /etc/postfix/ssl/ca.crt

#smtpd_use_tls = yes
#smtpd_tls_key_file = /etc/postfix/ssl/mail.yourdomain.com.pem
#smtpd_tls_cert_file = /etc/postfix/ssl/mail.yourdomain.com.crt
#smtpd_tls_CAfile = /etc/postfix/ssl/ca.crt
#smtpd_tls_loglevel = 1
#smtpd_tls_received_header = yes
#smtpd_tls_session_cache_timeout = 3600s
#tls_random_source = dev:/dev/urandom

# Only enable this if you need sasl authenticated smtpd.
#smtpd_tls_auth_only = yes
#smtpd_sasl_auth_enable = yes
#smtpd_sasl_security_options = noanonymous
#smtpd_sasl_local_domain =
#broken_sasl_auth_clients = yes

inet_interfaces = all

mail_spool_directory = /var/mail
#home_mailbox = Maildir/
#mailbox_command = /usr/local/bin/procmail
smtpd_banner = $myhostname

mydestination = $myhostname, localhost.$mydomain, example.com, mail.yourdomain.com, 
transport_maps = hash:/etc/postfix/maps/transport
#header_checks = pcre:/etc/postfix/maps/header_checks.short
#body_checks = pcre:/etc/postfix/maps/body_checks.short
#mime_header_checks = regexp:/etc/postfix/maps/mime_header_checks
relay_domains = $transport_maps
virtual_alias__maps = hash:/etc/postfix/maps/virtual
	hash:/etc/postfix/maps/virtual
virtual_alias_domains = $virtual_alias_maps
mynetworks = /etc/postfix/mynetworks
local_recipient_maps = $alias_maps

local_destination_concurrency_limit = 8
default_destination_concurrency_limit = 16
in_flow_delay = 1s
debug_peer_level = 2

debugger_command = PATH=/bin:/usr/bin:/usr/local/bin:/usr/X11R6/bin xxgdb $daemon_directory/$process_name $process_id & sleep 5

disable_vrfy_command = yes
smtpd_etrn_restriction = reject
message_size_limit = 32768000
bounce_size_limit = 65536
header_size_limit = 32768
smtpd_recipient_limit = 128
smtpd_timeout = 180

strict_rfc821_envelopes = yes
allow_untrusted_routing = no
smtpd_soft_error_limit = 10
smtpd_hard_error_limit = 25

smtpd_client_restrictions =

smtpd_helo_required = yes
smtpd_helo_restrictions =

smtpd_sender_restrictions = check_recipient_access
	hash:/etc/postfix/maps/access-inbound

smtpd_recipient_restrictions =
	permit_mynetworks,
	permit_sasl_authenticated,
	reject_unauth_destination,
#	reject_unknown_client,
#	reject_non_fqdn_hostname,	#This has caused a fair number of wrongful rejections.
#	reject_unknown_hostname,	#This has caused a fair number of wrongful rejections.
	reject_invalid_hostname,
	reject_unauth_pipelining,
	reject_non_fqdn_sender,
	reject_unknown_sender_domain,
#	reject_multi_recipient_bounce,
	reject_non_fqdn_recipient,
	reject_unknown_recipient_domain,
#	reject_unverified_recipient,		# This has caused me problems sending out mail from another account.
#	check_sender_access hash:/etc/postfix/maps/rejects
# You can use a rejects file to reject mail from specific people who have decided to attempt to abuse your host.


# manpage_directory: The location of the Postfix on-line manual pages.
#
manpage_directory = /usr/local/man

# sample_directory: The location of the Postfix sample configuration files.
#
sample_directory = /etc/postfix

# readme_directory: The location of the Postfix README files.
#
readme_directory = /usr/local/share/doc/postfix/readme


unknown_local_recipient_reject_code = 450