Hi,
Using dovecot 1.1.2 on a dual-stack server, with the 'proxy_maybe' attribute to forward some clients to another server, it seems that only clients connecting with the same protocol version as the one used by address in the 'host' attribute in the password db are recognized as local.
If an IPv4 address is specified as 'host', a dovecot proxy is created for clients connecting using IPv6 to this server, and symmetrically if the proxy is specified as an IPv6 address, clients connecting through IPv4 will get forwarded to the v6 address.
Is there a way to avoid that?
Matthieu Herrb
On Aug 11, 2008, at 8:23 AM, Matthieu Herrb wrote:
If an IPv4 address is specified as 'host', a dovecot proxy is created for clients connecting using IPv6 to this server, and symmetrically
if the proxy is specified as an IPv6 address, clients connecting
through IPv4 will get forwarded to the v6 address.Is there a way to avoid that?
If you're using SQL passdb, you could probably return host as either
IPv4 or IPv6 depending on if %l or %r is an IPv4 or IPv6 address?
Other than that I don't really see an easy way to handle this, because
dovecot-auth has to be the one to decide if the proxying should be
done or not, and it doesn't know all the IP addresses the Dovecot
installation is listening on.
On Aug 11, 2008, at 10:53 PM, Timo Sirainen wrote:
On Aug 11, 2008, at 8:23 AM, Matthieu Herrb wrote:
If an IPv4 address is specified as 'host', a dovecot proxy is created for clients connecting using IPv6 to this server, and symmetrically
if the proxy is specified as an IPv6 address, clients connecting
through IPv4 will get forwarded to the v6 address.Is there a way to avoid that?
If you're using SQL passdb, you could probably return host as either
IPv4 or IPv6 depending on if %l or %r is an IPv4 or IPv6 address?
Other than that I don't really see an easy way to handle this,
because dovecot-auth has to be the one to decide if the proxying
should be done or not, and it doesn't know all the IP addresses the
Dovecot installation is listening on.
Or actually if Dovecot supported multiple proxy hosts it could contain
both the IPv4 and IPv6 address and then Dovecot could check to see if
any of them already matches. But this is pretty low on my TODO list..
Timo Sirainen wrote:
On Aug 11, 2008, at 10:53 PM, Timo Sirainen wrote:
On Aug 11, 2008, at 8:23 AM, Matthieu Herrb wrote:
If an IPv4 address is specified as 'host', a dovecot proxy is created for clients connecting using IPv6 to this server, and symmetrically if the proxy is specified as an IPv6 address, clients connecting through IPv4 will get forwarded to the v6 address.
Is there a way to avoid that?
If you're using SQL passdb, you could probably return host as either IPv4 or IPv6 depending on if %l or %r is an IPv4 or IPv6 address? Other than that I don't really see an easy way to handle this, because dovecot-auth has to be the one to decide if the proxying should be done or not, and it doesn't know all the IP addresses the Dovecot installation is listening on.
Or actually if Dovecot supported multiple proxy hosts it could contain both the IPv4 and IPv6 address and then Dovecot could check to see if any of them already matches. But this is pretty low on my TODO list..
Thanks for the answer.
We're using LDAP here for the passdb, so we'll have to live with that until multiple proxies are implemented.
Matthieu Herrb
participants (2)
-
Matthieu Herrb
-
Timo Sirainen