linux上面玩mail真是不简单，好容易看定postfix，配置也是非常纤细繁杂的工作，它的主配置文件main.cf，我试着把自己看明白的注释汉化批注了一遍，想传上来给大家共享，并且，main.cf中还有很多没有看懂的地方，我在里面都注上了，希望大家告诉我那些设置那些参数都是做什么用的，我的想法是把这个配置文件里面的注释部分都汉化了，同时给出最简单的配置方案


# Global Postfix configuration file. This file lists only a subset
# of all 100+ parameters. See the sample-xxx.cf files for a full list.
#
# postfix总配置文件。这里只列举设定了超过100多个参数中的一小部分，
# 完整的设定文档请看sample-xxx.cf文件。
# 注，这些sample-xxx.cf文件在我的系统中位于/usr/share/doc/postfix-1.1.11/samples
#
# The general format is lines with parameter = value pairs. Lines
# that begin with whitespace continue the previous line. A value can
# contain references to other $names or ${name}s.
# 参数设定格式是
# 参数名 = 数值
# 空白符开头的行是接续上一行。一个数值可以包含对其它变量的引用，比如 $变量名 或 ${变量名}
#
# NOTE - CHANGE NO MORE THAN 2-3 PARAMETERS AT A TIME, AND TEST IF
# POSTFIX STILL WORKS AFTER EVERY CHANGE.
# 注意：一次不要修改太多参数，每修改一项设置都要检查一下postfix是否有效
#

# SOFT BOUNCE
#
# The soft_bounce parameter provides a limited safety net for
# testing.  When soft_bounce is enabled, mail will remain queued that
# would otherwise bounce. This parameter disables locally-generated
# bounces, and prevents the SMTP server from rejecting mail permanently
# (by changing 5xx replies into 4xx replies). However, soft_bounce
# is no cure for address rewriting mistakes or mail routing mistakes.
#
#soft_bounce = no

# LOCAL PATHNAME INFORMATION
# 本机路径信息配置
#
# The queue_directory specifies the location of the Postfix queue.
# This is also the root directory of Postfix daemons that run chrooted.
# See the files in examples/chroot-setup for setting up Postfix chroot
# environments on different UNIX systems.
# 设定postfix的queue的路径(什么是postfixqueue？)
#
queue_directory = /var/spool/postfix

# The command_directory parameter specifies the location of all
# postXXX commands.  The default value is $program_directory.
# 设定postfix的所有postxxx命令的位置，默认被安装到系统的$program路径
#
command_directory = /usr/sbin

# The daemon_directory parameter specifies the location of all Postfix
# daemon programs (i.e. programs listed in the master.cf file). The
# default value is $program_directory. This directory must be owned
# by root.
# 设定postfix的daemon programs的路径(什么是daemon programs?)
# 也就是postfix的配置文件master.cf中所列的各个programs
#
daemon_directory = /usr/libexec/postfix

# QUEUE AND PROCESS OWNERSHIP
#
# The mail_owner parameter specifies the owner of the Postfix queue
# and of most Postfix daemon processes.  Specify the name of a user
# account THAT DOES NOT SHARE ITS USER OR GROUP ID WITH OTHER ACCOUNTS
# AND THAT OWNS NO OTHER FILES OR PROCESSES ON THE SYSTEM.  In
# particular, don't specify nobody or daemon. PLEASE USE A DEDICATED
# USER.
# 设定运行postfix的queue和daemon的进程的用户
# 不要与其它用户或用户组共享用户id或用户组id，不要在系统上拥有任何其它的文件或进程
# 不要指定nobody或daemon这样的用户，务必使用一个专有的用户
#
mail_owner = postfix

# The default_privs parameter specifies the default rights used by
# the local delivery agent for delivery to external file or command.
# These rights are used in the absence of a recipient user context.
# DO NOT SPECIFY A PRIVILEGED USER OR THE POSTFIX OWNER.
#
#default_privs = nobody

# INTERNET HOST AND DOMAIN NAMES
#
# The myhostname parameter specifies the internet hostname of this
# mail system. The default is to use the fully-qualified domain name
# from gethostname(). $myhostname is used as a default value for many
# other configuration parameters.
#
#myhostname = host.domain.tld
#myhostname = virtual.domain.tld
# 我要配置的主机的名字，比如mail.**什么的，也就是运行postfix的机器的名字
# 默认的不用修改，该变量取自gethostname()函数从本机hosts配置所得到的主机名，
# 比如默认的localhost.localdomain
# 该变量是构成下面很多其它配置参数的默认值或一部分

# The mydomain parameter specifies the local internet domain name.
# The default is to use $myhostname minus the first component.
# $mydomain is used as a default value for many other configuration
# parameters.
#
#mydomain = domain.tld
# 我的各个主机所在的同一个域的域名，也就是上面主机名去掉最左边的字符串
# 默认的该是localdomain

# SENDING MAIL
#
# The myorigin parameter specifies the domain that locally-posted
# mail appears to come from. The default is to append $myhostname,
# which is fine for small sites.  If you run a domain with multiple
# machines, you should (1) change this to $mydomain and (2) set up
# a domain-wide alias database that aliases each user to
# user@that.users.mailhost.
#
#myorigin = $myhostname
#myorigin = $mydomain
# 指定本地发送信件所显示的来源的域名。默认的$myhostname即上面的localhost.localdomain

# RECEIVING MAIL

# The inet_interfaces parameter specifies the network interface
# addresses that this mail system receives mail on.  By default,
# the software claims all active interfaces on the machine. The
# parameter also controls delivery of mail to user@[ip.address].
#
#inet_interfaces = localhost
inet_interfaces = all
#inet_interfaces = $myhostname
#inet_interfaces = $myhostname, localhost
# 默认设置是localhost，但如果做internet服务就要设置为all

# The mydestination parameter specifies the list of domains that this
# machine considers itself the final destination for. That includes
# Sendmail-style virtual domains hosted on this machine.
#
# Do not include Postfix-style virtual domains - those domains are
# specified elsewhere (see sample-virtual.cf, and sample-transport.cf).
#
# The default is $myhostname + localhost.$mydomain.  On a mail domain
# gateway, you should also include $mydomain. Do not specify the
# names of domains that this machine is backup MX host for. Specify
# those names via the relay_domains or permit_mx_backup settings for
# the SMTP server (see sample-smtpd.cf).
#
# The local machine is always the final destination for mail addressed
# to user@[the.net.work.address] of an interface that the mail system
# receives mail on (see the inet_interfaces parameter).
#
# Specify a list of host or domain names, /file/name or type:table
# patterns, separated by commas and/or whitespace. A /file/name
# pattern is replaced by its contents; a type:table is matched when
# a name matches a lookup key.  Continue long lines by starting the
# next line with whitespace.
#
mydestination = $myhostname, localhost.$mydomain
#mydestination = $myhostname, localhost.$mydomain $mydomain
#mydestination = $myhostname, localhost.$mydomain, $mydomain,
#        mail.$mydomain,  ftp.$mydomain
# (上面这么多文字说明没有看懂)
# 这里变量替代的结果是localhost.localdomain
# 注意，如果dns设置了ms的话，需要把x指向的主机名设置在mydestination里

# TRUST AND RELAY CONTROL
# 验证与转发配置

# The mynetworks parameter specifies the list of "trusted" SMTP
# clients that have more privileges than "strangers".
# 设定可信任的smtp客户端，它们比陌生人有高的权限
#
# In particular, "trusted" SMTP clients are allowed to relay mail
# through Postfix.  See the smtpd_recipient_restrictions parameter
# in file sample-smtpd.cf.
# 可信任的的smtp客户端允许通过该postfix转发邮件，请看文件sample-smtp.cf
# 中的smtpd_recipient_restrictions参数
#
# You can specify the list of "trusted" network addresses by hand
# or you can let Postfix do it for you (which is the default).
# 可以手动配置信任地址表，或这使用默认的postfix给提供的方案
#
# By default (mynetworks_style = subnet), Postfix "trusts" SMTP
# clients in the same IP subnetworks as the local machine.
# On Linux, this does works correctly only with interfaces specified
# with the "ifconfig" command.
# 默认mynetworks_style设置为子网，即，信任与本机同在一个ip子网的smtp客户端
# 必须要linux机器设置好本机的网络配置
#
# Specify "mynetworks_style = class" when Postfix should "trust" SMTP
# clients in the same IP class A/B/C networks as the local machine.
# Don't do this with a dialup site - it would cause Postfix to "trust"
# your entire provider's network.  Instead, specify an explicit
# mynetworks list by hand, as described below.
# 设置为class将信任同在的ABC网络，不推荐
#
# Specify "mynetworks_style = host" when Postfix should "trust"
# only the local machine.
# 设置为host将只信任本机
#
#mynetworks_style = class
#mynetworks_style = subnet
#mynetworks_style = host
# 采用postfix默认的设置，subnet

# Alternatively, you can specify the mynetworks list by hand, in
# which case Postfix ignores the mynetworks_style setting.
# 手动配置将覆盖忽略mynetworks_style的设置
#
# Specify an explicit list of network/netmask patterns, where the
# mask specifies the number of bits in the network part of a host
# address.
#
# You can also specify the absolute pathname of a pattern file instead
# of listing the patterns here. Specify type:table for table-based lookups
# (the value on the table right-hand side is not used).
#
#mynetworks = 168.100.189.0/28, 127.0.0.0/8
# 通过ip/掩码来设置
#mynetworks = $config_directory/mynetworks
# 也可以通过指定配置文件来设置
#mynetworks = hash:/etc/postfix/network_table
# 配置文件的格式

# The relay_domains parameter restricts what clients this mail system
# will relay mail from, or what destinations this system will relay
# mail to.  See the smtpd_recipient_restrictions restriction in the
# file sample-smtpd.cf for detailed information.
# 这里设置允许接收转发邮件的客户端和转发到的客户端
# 请看sample-smtpd.cf得到更详细的smtpd_recipient_restrictions信息
#
# By default, Postfix relays mail
# - from "trusted" clients whose IP address matches $mynetworks,
# - from "trusted" clients matching $relay_domains or subdomains thereof,
# - from untrusted clients to destinations that match $relay_domains
#   or subdomains thereof, except addresses with sender-specified routing.
# The default relay_domains value is $mydestination.
# 默认设置是：
# - 允许转发从信任的客户端和通过$mynetworks设置的客户端收到的邮件
# - 允许转发从$relay_domains设置的客户端收到的邮件，(和它的子网？)
# - 从不信任的客户端收到的目标地址是$relay_domains的邮件被允许转发
#   (或者她们的子网？这里是什么意思？)，通过sender-specified routing设置的除外
# postfix默认的relay_domains是变量$mydestination指定的范围
#
# In addition to the above, the Postfix SMTP server by default accepts mail
# that Postfix is final destination for:
# - destinations that match $inet_interfaces,
# - destinations that match $mydestination
# - destinations that match $virtual_maps.
# These destinations do not need to be listed in $relay_domains.
# (这一段没有看明白)
#
# Specify a list of hosts or domains, /file/name patterns or type:name
# lookup tables, separated by commas and/or whitespace.  Continue
# long lines by starting the next line with whitespace. A file name
# is replaced by its contents; a type:name table is matched when a
# (parent) domain appears as lookup key.
#
#
# NOTE: Postfix will not automatically forward mail for domains that
# list this system as their primary or backup MX host. See the
# permit_mx_backup restriction in the file sample-smtpd.cf.
# (这一段什么意思？)
#
#relay_domains = $mydestination

[color=DarkRed] # INTERNET OR INTRANET # 外网和内网 # The relayhost parameter specifies the default host to send mail to # when no entry is matched in the optional transport(5) table. When # no relayhost is given, mail is routed directly to the destination. # 不明 # # On an intranet, specify the organizational domain name. If your # internal DNS uses no MX records, specify the name of the intranet # gateway host instead. # 为内网设置需要内网已经设置好域名，如果内网dns没使用MS记录 # 要设置内网网关gateway的主机 # (什么是MX？) # # In the case of SMTP, specify a domain, host, host:port, [host]:port, # [address] or [address]:port; the form [host] turns off MX lookups. # 不明 # If you're connected via UUCP, see also the default_transport parameter. # #relayhost = $mydomain #relayhost = gateway.my.domain #relayhost = uucphost #relayhost = [an.ip.add.ress] # REJECTING UNKNOWN LOCAL USERS # 拒绝本地未知用户 # # The local_recipient_maps parameter specifies optional lookup tables # with all names (not addresses) of users that are local with respect # to $mydestination and $inet_interfaces.  If this parameter is # defined, then the SMTP server will reject mail for unknown local # users. # # If you use the default Postfix local delivery agent for local # delivery, uncomment the definition below. # 如果使用postfix默认的本地传输代理，注释掉该定义，不需要设置 # # Beware: if the Postfix SMTP server runs chrooted, you may have to # copy the passwd (not shadow) database into the jail. This is # system dependent. # #local_recipient_maps = $alias_maps unix:passwd.byname # INPUT RATE CONTROL # 接收速度限制 # # The in_flow_delay configuration parameter implements mail input # flow control. This feature is turned on by default, although it # still needs further development (it's disabled on SCO UNIX due # to an SCO bug). # 限制了输入信件的速度，默认为开启的状态 # # A Postfix process will pause for $in_flow_delay seconds before # accepting a new message, when the message arrival rate exceeds the # message delivery rate. With the default 50 SMTP server process # limit, this limits the mail inflow to 50 messages a second more # than the number of messages delivered per second. # 一个postfix进程每收到消息都要等待$in_flow_delay个秒的时间才开放接收下一条消息 # 默认的50个smtp服务进程也就是限制接收速度在50条每秒的速度 # # Specify 0 to disable the feature. Valid delays are 0..10. # 设置0来禁用该功能 # #in_flow_delay = 1s # ADDRESS REWRITING # 地址重写(不懂) # # Insert text from sample-rewrite.cf if you need to do address # masquerading. # # Insert text from sample-canonical.cf if you need to do address # rewriting, or if you need username->Firstname.Lastname mapping. # ADDRESS REDIRECTION (VIRTUAL DOMAIN) # 地址重定向，虚拟域 # # Insert text from sample-virtual.cf if you need virtual domain support. # 要设置虚拟域请从sample-virtual.cf拷贝相应的配置插入这里 # (设置虚拟用户是在这里配置么？) # # "USER HAS MOVED" BOUNCE MESSAGES # 略 # Insert text from sample-relocated.cf if you need "user has moved" # style bounce messages. Alternatively, you can bounce recipients # with an SMTP server access table. See sample-smtpd.cf. # TRANSPORT MAP # 略 # Insert text from sample-transport.cf if you need explicit routing. # ALIAS DATABASE # 略，不懂 # The alias_maps parameter specifies the list of alias databases used # by the local delivery agent. The default list is system dependent. # On systems with NIS, the default is to search the local alias # database, then the NIS alias database. See aliases(5) for syntax # details. # # If you change the alias database, run "postalias /etc/aliases" (or # wherever your system stores the mail alias file), or simply run # "newaliases" to build the necessary DBM or DB file. # # It will take a minute or so before changes become visible.  Use # "postfix reload" to eliminate the delay. # #alias_maps = dbm:/etc/aliases alias_maps = hash:/etc/postfix/aliases #alias_maps = hash:/etc/aliases, nis:mail.aliases #alias_maps = netinfo:/aliases # The alias_database parameter specifies the alias database(s) that # are built with "newaliases" or "sendmail -bi".  This is a separate # configuration parameter, because alias_maps (see above) may specify # tables that are not necessarily all under control by Postfix. # #alias_database = dbm:/etc/aliases #alias_database = dbm:/etc/mail/aliases #alias_database = hash:/etc/aliases #alias_database = hash:/etc/aliases, hash:/opt/majordomo/aliases # ADDRESS EXTENSIONS (e.g., user+foo) # 地址扩展，不懂，暂时不需要，不看，略 # # The recipient_delimiter parameter specifies the separator between # user names and address extensions (user+foo). See canonical(5), # local(8), relocated(5) and virtual(5) for the effects this has on # aliases, canonical, virtual, relocated and .forward file lookups. # Basically, the software tries user+foo and .forward+foo before # trying user and .forward. # #recipient_delimiter = + # DELIVERY TO MAILBOX # 发送到邮箱 # 不懂，暂时我不需要设置它，不看，略，日后待补充 # # The home_mailbox parameter specifies the optional pathname of a # mailbox file relative to a user's home directory. The default # mailbox file is /var/spool/mail/user or /var/mail/user.  Specify # "Maildir/" for qmail-style delivery (the / is required). # #home_mailbox = Mailbox #home_mailbox = Maildir/ # The mail_spool_directory parameter specifies the directory where # UNIX-style mailboxes are kept. The default setting depends on the # system type. # #mail_spool_directory = /var/mail #mail_spool_directory = /var/spool/mail # The mailbox_command parameter specifies the optional external # command to use instead of mailbox delivery. The command is run as # the recipient with proper HOME, SHELL and LOGNAME environment settings. # Exception:  delivery for root is done as $default_user. # # Other environment variables of interest: USER (recipient username), # EXTENSION (address extension), DOMAIN (domain part of address), # and LOCAL (the address localpart). # # Unlike other Postfix configuration parameters, the mailbox_command # parameter is not subjected to $parameter substitutions. This is to # make it easier to specify shell syntax (see example below). # # Avoid shell meta characters because they will force Postfix to run # an expensive shell process. Procmail alone is expensive enough. # # IF YOU USE THIS TO DELIVER MAIL SYSTEM-WIDE, YOU MUST SET UP AN # ALIAS THAT FORWARDS MAIL FOR ROOT TO A REAL USER. # #mailbox_command = /some/where/procmail #mailbox_command = /some/where/procmail -a "$EXTENSION" # The mailbox_transport specifies the optional transport in master.cf # to use after processing aliases and .forward files. This parameter # has precedence over the mailbox_command, fallback_transport and # luser_relay parameters. # # Specify a string of the form transport:nexthop, where transport is # the name of a mail delivery transport defined in master.cf.  The # :nexthop part is optional. For more details see the sample transport # configuration file. # #mailbox_transport = lmtp:unix:/file/name #mailbox_transport = cyrus # The fallback_transport specifies the optional transport in master.cf # to use for recipients that are not found in the UNIX passwd database. # This parameter has precedence over the luser_relay parameter. # # Specify a string of the form transport:nexthop, where transport is # the name of a mail delivery transport defined in master.cf.  The # :nexthop part is optional. For more details see the sample transport # configuration file. # #fallback_transport = lmtp:unix:/file/name #fallback_transport = cyrus #fallback_transport = # The luser_relay parameter specifies an optional destination address # for unknown recipients.  By default, mail for unknown local recipients # is bounced. # # The following expansions are done on luser_relay: $user (recipient # username), $shell (recipient shell), $home (recipient home directory), # $recipient (full recipient address), $extension (recipient address # extension), $domain (recipient domain), $local (entire recipient # localpart), $recipient_delimiter. Specify ${name?value} or # ${name:value} to expand value only when $name does (does not) exist. # # luser_relay works only for the default Postfix local delivery agent. # #luser_relay = $user@other.host #luser_relay = $local@other.host #luser_relay = admin+$local # JUNK MAIL CONTROLS # 反垃圾邮件Anti-UCE # 略 # # The controls listed here are only a very small subset. See the file # sample-smtpd.cf for an elaborate list of anti-UCE controls. # The header_checks parameter specifies an optional table with patterns # that each logical message header is matched against, including # headers that span multiple physical lines.  Patterns are matched # in the specified order, and the search stops upon the first match. # When a pattern matches, what happens next depends on the associated # action that is specified in the right-hand side of the table: # # REJECT the entire message is rejected. # REJECT text.... The text is sent to the originator. # IGNORE the header line is silently discarded. # WARN   the header is logged (not rejected) with a warning message. # WARN text... as above, and the text is logged, too. # # These patterns do not apply to MIME headers in the message body. # # See also the body_checks example in the sample-filter.cf file. # #header_checks = regexp:/etc/postfix/header_checks # FAST ETRN SERVICE # 快速发送服务 # 不懂，暂时不需，不看，略，日后研究 # # Postfix maintains per-destination logfiles with information about # deferred mail, so that mail can be flushed quickly with the SMTP # "ETRN domain.tld" command, or by executing "sendmail -qRdomain.tld". # # By default, Postfix maintains deferred mail logfile information # only for destinations that Postfix is willing to relay to (as # specified in the relay_domains parameter). For other destinations, # Postfix attempts to deliver ALL queued mail after receiving the # SMTP "ETRN domain.tld" command, or after execution of "sendmail # -qRdomain.tld". This can be slow when a lot of mail is queued. # # The fast_flush_domains parameter controls what destinations are # eligible for this "fast ETRN/sendmail -qR" service. # #fast_flush_domains = $relay_domains #fast_flush_domains = # SHOW SOFTWARE VERSION OR NOT # 显示版本 # 不重要，不看 # # The smtpd_banner parameter specifies the text that follows the 220 # code in the SMTP server's greeting banner. Some people like to see # the mail version advertised. By default, Postfix shows no version. # # You MUST specify $myhostname at the start of the text. That is an # RFC requirement. Postfix itself does not care. # #smtpd_banner = $myhostname ESMTP $mail_name #smtpd_banner = $myhostname ESMTP $mail_name ($mail_version) # PARALLEL DELIVERY TO THE SAME DESTINATION # 并行发送 # 不懂，不关键，略 # # How many parallel deliveries to the same user or domain? With local # delivery, it does not make sense to do massively parallel delivery # to the same user, because mailbox updates must happen sequentially, # and expensive pipelines in .forward files can cause disasters when # too many are run at the same time. With SMTP deliveries, 10 # simultaneous connections to the same domain could be sufficient to # raise eyebrows. # # Each message delivery transport has its XXX_destination_concurrency_limit # parameter.  The default is $default_destination_concurrency_limit for # most delivery transports. For the local delivery agent the default is 2. #local_destination_concurrency_limit = 2 #default_destination_concurrency_limit = 10 # DEBUGGING CONTROL # debug控制 # 不需要，不看 # # The debug_peer_level parameter specifies the increment in verbose # logging level when an SMTP client or server host name or address # matches a pattern in the debug_peer_list parameter. # debug_peer_level = 2 # The debug_peer_list parameter specifies an optional list of domain # or network patterns, /file/name patterns or type:name tables. When # an SMTP client or server host name or address matches a pattern, # increase the verbose logging level by the amount specified in the # debug_peer_level parameter. # #debug_peer_list = 127.0.0.1 #debug_peer_list = some.domain # The debugger_command specifies the external command that is executed # when a Postfix daemon program is run with the -D option. # # Use "command .. & sleep 5" so that the debugger can attach before # the process marches on. If you use an X-based debugger, be sure to # set up your XAUTHORITY environment variable before starting Postfix. # debugger_command =          PATH=/usr/bin:/usr/X11R6/bin          xxgdb $daemon_directory/$process_name $process_id & sleep 5 # INSTALL-TIME CONFIGURATION INFORMATION # 安装升级配置信息设置 # # The following parameters are used when installing a new Postfix version. # 下面的各参数在将来安装高版本postfix时被使用 # 暂时没有升级计划，略去 # # sendmail_path: The full pathname of the Postfix sendmail command. # This is the Sendmail-compatible mail posting interface. # sendmail_path = /usr/sbin/sendmail.postfix # newaliases_path: The full pathname of the Postfix newaliases command. # This is the Sendmail-compatible command to build alias databases. # newaliases_path = /usr/bin/newaliases.postfix # mailq_path: The full pathname of the Postfix mailq command.  This # is the Sendmail-compatible mail queue listing command. # mailq_path = /usr/bin/mailq.postfix # setgid_group: The group for mail submission and queue management # commands.  This must be a group name with a numerical group ID that # is not shared with other accounts, not even with the Postfix account. # setgid_group = postdrop # manpage_directory: The location of the Postfix on-line manual pages. # manpage_directory = /usr/share/man # sample_directory: The location of the Postfix sample configuration files. # sample_directory = /usr/share/doc/postfix-1.1.11/samples # readme_directory: The location of the Postfix README files. # readme_directory = /usr/share/doc/postfix-1.1.11/README_FILES alias_database = hash:/etc/postfix/aliases [/color]