Postfix - Outgoing Mail from Exclusive IP Addresses

[KazimirM]

Hello Guys,
im trying to get the feature "Outgoing Mail from Exclusive IP Addresses" working, as with an updated Postfix configuration the menu entry for this functions does not appear anymore.
Maybe i am missing something in my configuration that tells Plesk to not show it anymore.

Plesk 12 - fresh installation on Debian Wheezy.

We only changed main.cfnd here is the configuration file (please note that the formatting was a bit corrupted by the plesk panel ):

alias_database					= hash:/etc/aliases
alias_maps					= hash:/etc/aliases, hash:/var/spool/postfix/plesk/aliases
append_dot_mydomain				= no
biff						= no
disable_vrfy_command = yes
header_checks					= regexp:/etc/postfix/header_checks
mailbox_size_limit				= 0
mailman_destination_recipient_limit = 1
mime_header_checks				= regexp:/etc/postfix/header_checks
plesk_virtual_destination_recipient_limit = 1
recipient_delimiter				= +
sender_dependent_default_transport_maps = hash:/var/spool/postfix/plesk/sdd_transport_maps
smtp_send_xforward_command = yes
smtp_tls_CAfile					= /etc/ssl/certs/ca-certificates.crt
smtp_tls_ciphers				= high
smtp_tls_protocols				= !SSLv2, !SSLv3
smtp_tls_security_level = may
smtp_tls_session_cache_timeout			= 600
smtp_tls_session_cache_database			= btree:${data_directory}/smtp_scache
smtpd_authorized_xforward_hosts = 127.0.0.0/8 [::1]/128
smtpd_banner					= $myhostname
smtpd_milters					= inet:127.0.0.1:12768
smtpd_proxy_timeout = 3600s
smtpd_relay_restrictions			= permit_mynetworks, permit_sasl_authenticated, defer_unauth_destination
smtpd_sender_restrictions			= check_sender_access hash:/var/spool/postfix/plesk/blacklists, permit_sasl_authenticated
smtpd_timeout = 3600s
smtpd_tls_CAfile				= $smtp_tls_CAfile
smtpd_tls_cert_file = /etc/postfix/postfix_default.pem
smtpd_tls_ciphers				= $smtp_tls_ciphers
smtpd_tls_dh1024_param_file			= /etc/postfix/postfix_dh2048.pem
smtpd_tls_key_file = $smtpd_tls_cert_file
smtpd_tls_protocols				= $smtp_tls_protocols
smtpd_tls_received_header			= yes
smtpd_tls_security_level = may
smtpd_tls_session_cache_timeout			= $smtp_tls_session_cache_timeout
smtpd_tls_session_cache_database		= btree:${data_directory}/smtpd_scache
tls_high_cipherlist				= ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-SHA384:ECDHE-ECDSA-AES256-SHA384:ECDHE-RSA-AES256-SHA:ECDHE-ECDSA-AES256-SHA:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-SHA256:ECDHE-ECDSA-AES128-SHA256:ECDHE-RSA-AES128-SHA:ECDHE-ECDSA-AES128-SHA:kEDH+AESGCM:DHE-RSA-AES256-SHA256:DHE-RSA-AES256-SHA:DHE-DSS-AES256-SHA:DHE-RSA-AES128-GCM-SHA256:DHE-DSS-AES128-GCM-SHA256:DHE-RSA-AES128-SHA256:DHE-RSA-AES128-SHA:DHE-DSS-AES128-SHA256:AES256-GCM-SHA384:AES128-GCM-SHA256:AES256:AES128:!MEDIUM:!aNULL:!eNULL:!EXPORT:!DES:!RC4:!MD5:!PSK
tls_random_bytes				= 64
tls_random_source				= dev:/dev/urandom
tls_ssl_options					= NO_COMPRESSION
transport_maps					= hash:/var/spool/postfix/plesk/transport
virtual_alias_maps				= $virtual_maps, hash:/var/spool/postfix/plesk/virtual
virtual_gid_maps = static:31
virtual_mailbox_base = /var/qmail/mailnames
virtual_mailbox_domains				= $virtual_mailbox_maps, hash:/var/spool/postfix/plesk/virtual_domains
virtual_mailbox_limit				= 0
virtual_mailbox_maps				= hash:/var/spool/postfix/plesk/vmailbox
virtual_transport = plesk_virtual
virtual_uid_maps = static:30
message_size_limit = 104857600
smtpd_client_restrictions = permit_mynetworks, permit_sasl_authenticated, reject_rbl_client sbl.spamhaus.org, reject_rbl_client xbl.spamhaus.org, reject_rbl_client dnsbl-1.uceprotect.net, reject_rbl_client dnsbl.sorbs.net
smtpd_recipient_restrictions = permit_mynetworks, permit_sasl_authenticated, reject_unauth_destination
smtpd_sasl_auth_enable = yes
inet_protocols = all
inet_interfaces = all
smtpd_use_tls = yes
smtp_use_tls = no
mynetworks = 
mydestination = localhost.$mydomain, localhost, localhost.localdomain
myhostname = newpleskserverinstallation.nodomain.intra

any suggestions?

@Parallels Guys, you are using a ton of deprecated Postfix configuration variables

 

[IgorG]

Make sure that you have correct Postfix version - http://download1.parallels.com/Ples...nistration-guide/index.htm?fileName=70212.htm

 

[KazimirM]

Hello Igor,
we are using Postfix 2.11 because of the need for strong openssl ciphers.

EDIT:
Which other configuration conditions should be true (or which file from psa checks for that) that plesk is recognizing this.
Menu item disappeared only after applying the configuration.

 

[IgorG]

Use postfix from Parallels if you need "Outgoing Mail from Exclusive IP Addresses" feature.

# rpm -qi postfix | grep Vendor
Version : 2.8.17 Vendor: Parallels

 

[KazimirM]

I didnt find any postfix package that will be installed from a Plesk/Parallels repository.
Both are Debian packages, but we replaced the standard one with a Debian Backport (also from official repo)
ii postfix 2.11.1-1~bpo70+1 amd64 High-performance mail transport agent
ii postfix-pcre 2.11.1-1~bpo70+1 amd64 PCRE map support for Postfix

Btw: We have no rpm since we are on Debian

EDIT:
i tried searching for the cli application that is handling this situation and i found: /opt/psa/admin/sbin/mailmng-transport
with that i was able to get plesk adding a master.cf entry for outgoing smtp without any error.

this was appended to master.cf:

OBFUS-12.123.123.234- unix - n n - - smtp -o smtp_bind_address=12.123.123.234 -o smtp_bind_address6= -o smtp_address_preference=ipv4 -o smtp_helo_name=OBFUS

Maybe the version detection from the GUI or something else is not recognizing my 2.11bpo etc... version string.