Здравствуйте всем,установил postfix по статье "postfix_sasl+mysql ... ".
внутри почта ходит без вопросов.
---------------
1. с интернета когда отправляют на корпоративный адрес, получают письмо:
Delivery to the following recipient failed permanently:
    admin@мойдомен.ru
Technical details of permanent failure:
Google tried to deliver your message, but it was rejected by the recipient domain. We recommend contacting the other email provider for further information about the cause of this error. The error that the other server returned was: 550 550 5.1.7 <123@gmail.com>: Sender address rejected: undeliverable address: host gmail-smtp-in.l.google.com[74.125.79.27] said: 555 5.5.2 Syntax error. 5si4313202eyf.42 (in reply to MAIL FROM command) (state 14).
----------------
2. с корпоративной почты отправляем в мир письмо, получаем ответ:
This is the mail system at host mail.мойдомен.ru.
I'm sorry to have to inform you that your message could not
be delivered to one or more recipients. It's attached below.
For further assistance, please send mail to postmaster.
If you do so, please include this problem report. You can
delete your own text from the attached returned message.
                   The mail system
<123@gmail.com>: host gmail-smtp-in.l.google.com[209.85.129.27] said:
    550-5.7.1 [111.222.333.444] The IP you're using to send mail is not
    authorized 550-5.7.1 to send email directly to our servers. Please use the
    SMTP 550-5.7.1 relay at your service provider instead. Learn more at
    550 5.7.1 http://mail.google.com/support/bin/answer.py?answer=10336
    12si5151048fks.5 (in reply to end of DATA command)
----------------
где 123@gmail.com - адрес в инете.
admin@мойдомен.ru - корпоративный адрес.
mail.мойдомен.ru - корпоративный почтовый сервер,
111.222.333.444 - адрес почтового сервера.
мойдомен.ru - зарегестрирован.
dns поднят и настроен.
----------------------
зона:
$ORIGIN .
$TTL 86400      ; 1 day
мойдомен.ru                     IN SOA  www.мойдомен.ru. admin.мойдомен.ru. (
                                2009020401 ; serial
                                86400      ; refresh (1 day)
                                7200       ; retry (2 hours)
                                8640000    ; expire (14 weeks 2 days)
                                86400      ; minimum (1 day)
                                )
                        NS      ns4.nic.ru.
                        NS      ns.мойдомен.ru.
                        IN      A       111.222.333.444
мойдомен.ru.            IN      MX      10 mail.мойдомен.ru.
$ORIGIN мойдомен.ru.
$TTL 360000     ; 4 days 4 hours
ns                      A       111.222.333.444
mail                    A       111.222.333.444
www                     A       111.222.333.444
-----------------
main.cf postfix'a
queue_directory = /var/spool/postfix
command_directory = /usr/local/sbin
base = /usr/local/etc/postfix
daemon_directory = /usr/local/libexec/postfix
mail_owner = postfix
default_privs = nobody
myhostname = mail.мойдомен.ru
mydomain = мойдомен.ru
myorigin = $mydomain
inet_interfaces = all
mydestination = $myhostname, localhost.$mydomain, localhost, $mydomain
local_recipient_maps = $virtual_mailbox_maps, $virtual_alias_maps, $alias_maps
mynetworks = 127.0.0.0/8, 192.168.0.0/24
alias_maps = hash:/etc/aliases
alias_database = hash:/etc/aliases
header_checks = regexp:$base/header_checks
smtpd_banner = $myhostname ESMTP
debug_peer_level = 2
debug_peer_list = 127.0.0.1, мойдомен.ru
smtpd_client_restrictions =  permit_mynetworks,
                             permit_sasl_authenticated,
                             check_client_access hash:$base/client_access,
                             reject_unknown_client_hostname
smtpd_helo_restrictions =       check_helo_access hash:$base/hello_access,
                                permit_mynetworks,
                                permit_sasl_authenticated,
                                reject_invalid_helo_hostname,
                                reject_non_fqdn_helo_hostname,
                                reject_unknown_helo_hostname
smtpd_sender_restrictions =     permit_mynetworks,
                                check_sender_access hash:$base/sender_access,
                                reject_authenticated_sender_login_mismatch,
                                reject_unknown_sender_domain,
                                reject_unlisted_sender,
                                reject_unverified_sender
smtpd_recipient_restrictions =  permit_mynetworks,
                                check_client_access hash:/usr/local/etc/postfix/client_access,
                                check_sender_access hash:/usr/local/etc/postfix/sender_access,
                                reject_unauth_destination,
                                reject_rbl_client list.dsbl.org,
                                reject_rbl_client relays.ordb.org,
                                reject_rbl_client dynablock.wirehub.net,
                                reject_rbl_client blackholes.wirehub.net,
                                reject_rbl_client dnsbl.njabl.org
smtpd_etrn_restrictions = reject
smtpd_reject_unlisted_sender = yes
disable_vrfy_command = yes
strict_rfc821_envelopes = yes
show_user_unknown_table_name = no
address_verify_sender = <мойдомен.ru>
unverified_sender_reject_code = 550
smtpd_helo_required = yes
smtp_always_send_ehlo = yes
smtpd_hard_error_limit = 8
smtpd_timeout = 120s
smtp_helo_timeout = 60s
smtp_mail_timeout = 60s
smtp_rcpt_timeout = 90s
smtpd_sasl_auth_enable = yes
smtpd_sasl_application_name = smtpd
broken_sasl_auth_clients = yes
smtpd_sasl_security_options = noanonymous
smtpd_sender_login_maps = mysql:$base/mysqlLookupMaps/sender.conf
transport_maps = mysql:$base/mysqlLookupMaps/transport.conf
virtual_alias_maps = mysql:$base/mysqlLookupMaps/alias.conf
virtual_mailbox_domains = mysql:$base/mysqlLookupMaps/domain.conf
virtual_mailbox_maps = mysql:$base/mysqlLookupMaps/mailbox.conf
virtual_mailbox_base = /var/spool/mail
virtual_mailbox_limit_maps = mysql:$base/mysqlLookupMaps/quota.conf
virtual_maildir_extended=yes
virtual_mailbox_limit_override=yes
virtual_create_maildirsize = yes
virtual_overquota_bounce = yes
virtual_maildir_limit_message="Sorry, the user's maildir has overdrawn his diskspace quota, please try again later"
message_size_limit = 10485760
virtual_gid_maps = static:1981
virtual_uid_maps = static:1981
virtual_minimum_uid = 1000
content_filter=smtp-amavis:[127.0.0.1]:10024
почти неделю читаю форумы, мануалы.. чувствую нутром, что либо dns криво сделан, либо надо добавить MX запись relay. Но зачем?