This documentation is for Dovecot v2.x, see wiki1 for v1.x documentation.
Differences between revisions 7 and 8
Revision 7 as of 2017-01-23 18:08:20
Size: 1135
Editor: ool-4355ac52
Comment:
Revision 8 as of 2022-02-04 22:51:57
Size: 82
Editor: TimoSirainen
Comment:
Deletions are marked like this. Additions are marked like this.
Line 1: Line 1:
== Allow_nets extra field ==

The allow_nets field is a comma separated list of IP addresses and/or networks where the user is allowed to log in from. If the user tries to log in from elsewhere, the authentication will fail the same way as if a wrong password was given.

Example: `allow_nets=127.0.0.0/8,192.168.0.0/16,1.2.3.4,4.5.6.7`.

IPv6 addresses are also allowed. IPv6 mapped IPv4 addresses (eg. `::ffff:1.2.3.4`) are converted to standard IPv4 addresses before matching. Example: `allow_nets=::1,2001:abcd:abcd::0:0/80,1.2.3.4`

== passwd-file example ==
{{{
user:{plain}password::::::allow_nets=192.168.0.0/24
}}}

== Keyword 'local' ==
The keyword 'local' is accepted for Non-IP connections like Unix socket. For example, with a Postfix/LMTP delivery setup, you must include 'local' for Postfix to verify the email account:
{{{
passdb {
  driver = static
  args = password=test allow_nets=local,127.0.0.1/32
}
}}}
Otherwise, you will see this error in the log:
{{{
[/var/run/dovecot/lmtp] said: 550 5.1.1 <test2@example.com> User doesn't exist: test2@example.com (in reply to RCPT TO command))
}}}
Moved to https://doc.dovecot.org/configuration_manual/authentication/allow_nets/

None: PasswordDatabase/ExtraFields/AllowNets (last edited 2022-02-04 22:51:57 by TimoSirainen)