Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    SMTP server on pfSense.

    Scheduled Pinned Locked Moved pfSense Packages
    27 Posts 9 Posters 6.2k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • GertjanG
      Gertjan @apetrenko
      last edited by

      @apetrenko said in SMTP server on pfSense.:

      what I have to upgrade

      Wasn't telling you what to upgrade. Don't know your hardware.
      And with "PCI/SoC/ISO" all bets are off. Like patching a firewall with a mail server ;)

      I do like the solution you found šŸ‘

      No "help me" PM's please. Use the forum, the community will thank you.
      Edit : and where are the logs ??

      1 Reply Last reply Reply Quote 0
      • bingo600B
        bingo600
        last edited by

        Won't the above solution need some kind of golang runtime/libraries to be installed ??
        How do you ensure those packages are kept up2date ??

        If you find my answer useful - Please give the post a šŸ‘ - "thumbs up"

        pfSense+ 23.05.1 (ZFS)

        QOTOM-Q355G4 Quad Lan.
        CPUĀ  : Core i5 5250U, Ram : 8GB Kingston DDR3LV 1600
        LANĀ  : 4 x Intel 211, DiskĀ  : 240G SAMSUNG MZ7L3240HCHQ SSD

        A 1 Reply Last reply Reply Quote 0
        • R
          rcoleman-netgate Netgate @apetrenko
          last edited by

          @apetrenko said in SMTP server on pfSense.:

          I found a better and simple solution: https://github.com/wiggin77/mailrelay installed on pfSense.

          Sideloading packages into pfSense will likely fail or disappear when you upgrade the platform. If you reach out to TAC you will be told to remove any repos and sideloaded programs before we will ever look at your machine.

          Ryan
          Repeat, after me: MESH IS THE DEVIL! MESH IS THE DEVIL!
          Requesting firmware for your Netgate device? https://go.netgate.com
          Switching: Mikrotik, Netgear, Extreme
          Wireless: Aruba, Ubiquiti

          A 1 Reply Last reply Reply Quote 0
          • A
            apetrenko @bingo600
            last edited by

            @bingo600 binary is static. update package -- standard sysadmin task. Right?

            1 Reply Last reply Reply Quote 0
            • A
              apetrenko @rcoleman-netgate
              last edited by

              @rcoleman-netgate since updates are coming no more often than 1 time per 3-5 years, I'm safe on this problem. :) I have an ansible for installing and configuring some 3rd party stuff on my pfsense.

              And I don't think USAF will have any interest to my router.
              [Tactical Air Command (USAF)]

              Question to netgate: why are you so interested to prevent me to use smtp relay on pfSense box? You have no obligation, I'm using the "community edition". Everything on my responsibility. Why are you so much stirred up against my solution?

              R jimpJ 2 Replies Last reply Reply Quote 0
              • R
                rcoleman-netgate Netgate @apetrenko
                last edited by

                @apetrenko said in SMTP server on pfSense.:

                Question to netgate: why are you so interested to prevent me to use smtp relay on pfSense box? You have no obligation, I'm using the "community edition". Everything on my responsibility. Why are you so much stirred up against my solution?

                Any add-on to your system comes with its own unknowns and potential security holes that could be exploited.

                If you want to keep a fully secure system the best route is to not add outside (untested) binaries and leave yourself secure by putting the job of a mail server onto a ... mail... server... and not a firewall.

                Ryan
                Repeat, after me: MESH IS THE DEVIL! MESH IS THE DEVIL!
                Requesting firmware for your Netgate device? https://go.netgate.com
                Switching: Mikrotik, Netgear, Extreme
                Wireless: Aruba, Ubiquiti

                1 Reply Last reply Reply Quote 0
                • jimpJ
                  jimp Rebel Alliance Developer Netgate @apetrenko
                  last edited by

                  @apetrenko said in SMTP server on pfSense.:

                  Question to netgate: why are you so interested to prevent me to use smtp relay on pfSense box? You have no obligation, I'm using the "community edition". Everything on my responsibility. Why are you so much stirred up against my solution?

                  Because this is a security product and e-mail services have a long history of being a gigantic attack surface full of holes and bringing more risk than anyone sane would want to take on. Most other add-on services are either only still around because they're entrenched (and hard to get people to stop using) or because the risk is relatively low by comparison.

                  If you want to do it, you're on your own. That kind of service does not belong on a firewall.

                  EOT. Locking.

                  Remember: Upvote with the šŸ‘ button for any user/post you find to be helpful, informative, or deserving of recognition!

                  Need help fast? Netgate Global Support!

                  Do not Chat/PM for help!

                  1 Reply Last reply Reply Quote 1
                  • jimpJ jimp locked this topic on
                  • First post
                    Last post
                  Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.