This is an old revision of the document!
If your system is behind a DSL line or not public available IP address, you need to configure a Mailserver you will send the mail out via. Citadel offers this in:
Administration->Domain names and Internet mail configuration->Smart hosts
Depending on your situations this can be several items.
Since relay access usualy must not be available to the public (since its abused to send spam) the relaying mailserver has to be protected from alowing random persons on the internet doing a relay. If your server sends via a VPN, or is always coming from a defined IP, alowing relay access for this ip may be a solution.
If not, or if using public servers not under your control specifying username / password is the way to go. The syntax herefore is:
- Portnumber defaults to 25; can be ommitted.
- yourrelay.com the hostname. If you know that the IP of your relay doesn't change, you should directly configure an IP here. This reduces the risk of failure if i.e. the DNS is unavailable.
- Password: your secret. If it contains special characters (:@ and so on) you have to URL-encode them @ → %40 : → %3A
- Username: The user on the system. If it contains special characters (:@ and so on) you have to URL-encode them @ → %40 : → %3A
- you may use i.e. http://meyerweb.com/eric/tools/dencoder/ to do the URL encoding for you; Please note you should only submit the nonsecret parts for security reasons.
Currently citadel itsel does not support TLS on this way on its own. There is a workaround for this:
All modern distributions ship stunnel; on some the package is named stunnel4 - since version 3 is also available but has no config file.
here is a sample stunnel configuration to configure a gmail relay: (put them i.e. to /etc/stunnel4/smtprelay.conf)
sslVersion = SSLv3 chroot = /var/lib/stunnel4/ setuid = stunnel4 setgid = stunnel4 pid = /stunnel4.pid socket = l:TCP_NODELAY=1 socket = r:TCP_NODELAY=1 client = yes [ssmtprelay] protocol = smtp accept = 127.0.0.1:8025 connect = smtp.googlemail.com:25
Once you restart stunnel, you should find it binding port 8025 for you to relay:
netstat -alnpt |grep stunnel tcp 0 0 127.0.0.1:8025 0.0.0.0:* LISTEN 17523/stunnel4
now you configure this relay in citservers Smart Host tab:
now you should be able to test your relay.