Exim IP based authentication (DirectAdmin)

  1. Log in to Spam Experts, ensure the IP address is added as an authenticating method by following the Add an Outgoing User > Authenticating IP or Range instructions
    1. When adding the Authenticating IP, ensure the correct limits are set matching your traffic volumes
  2. Open the /etc/exim.conf file
  3. Add the following in the Routers section (after the begin routers line):
    spamexperts_smarthost_router:
    driver = manualroute
    domains = ! +local_domains
    ignore_target_hosts = 127.0.0.0/8
    condition = "${perl{check_limits}}"
    # Exclude null sender messages from relaying via the smarthost
    condition = ${if or {{!eq{$sender_address}{}} {!eq{$sender_host_address}{}}}}
    headers_add = ${if !eq{$original_domain}{$domain}{X-Forwarded-For: $original_local_part@$original_domain}}
    headers_add = X-AuthUser: $authenticated_id
    transport = spamexperts_smarthost_transport
    route_list = $domain SMARTHOST::587
    no_more
  4. You MAY have to comment "lookuphost:" router depending on your configuration
  5. Add the following in the transports section (after begin transports):
    spamexperts_smarthost_transport:
    driver = smtp
    # In-case your server continues to send outgoing over port 25 please add the below line
    port = 587
    hosts_require_tls = SMARTHOST
  6. Finally restart Exim
  7. If you are signing with DKIM on your Direct Admin server you may need to add the following line under hosts_require_tls
    .include_if_exists /etc/exim.dkim.conf