Die Konfig war mehr als nur wüst, aber das ist einem Älteren Admin Panel geschuldet das noch, genauso wir der Mailserver, auf einem Debian 7.7 Server läuft.
Hab die Konfigurations Datei ein wenig aufgeräumt und zusammen gefasst, was zusammen gehört.
"# See /usr/share/postfix/main.cf.dist for a commented, more complete version
# Debian specific: Specifying a file name will cause the first
# line of that file to be used as the name. The Debian default
# is /etc/mailname.
#myorigin = /etc/mailname
smtpd_banner = $myhostname ESMTP $mail_name (Debian/GNU)
biff = no
#Hosts
myhostname = xxxxxx.xxxxxxxx.xxx
myorigin = xxxxxx.xxxxxxxx.xxx
mydestination = $myhostname, localhost, localhost.localdomain, localhost.$myhostname xxxxxx.xxxxxxxx.xxx
relayhost =
mynetworks_style = host
#Domains
mydomain = xxxxxxxx.xxx
#Netzwerk
mynetworks = 127.0.0.0/8 [::1]/128
inet_interfaces = all
inet_protocols = all
# appending .domain is the MUA's job.
append_dot_mydomain = no
# Uncomment the next line to generate "delayed mail" warnings
# delay_warning_time = 4h
readme_directory = no
#Alias
alias_maps = hash:/etc/postfix/aliases
alias_database = hash:/etc/postfix/aliases
virtual_alias_domains =
#SSL
#SMTP HELO Command
smtpd_helo_required = yes
smtpd_helo_restrictions = permit_mynetworks, permit_sasl_authenticated, reject_non_fqdn_helo_hostname, reject_invalid_helo_hostname, check_helo_access pcre:/etc/postfix/helo_access.pcre
#TLS
smtpd_tls_cert_file = /etc/ssl/xxxxxxxx/certificate.pm
smtpd_tls_key_file = /etc/ssl/xxxxxxxx/new.xxxxxxxx.xxx.key
smtpd_use_tls=yes
smtpd_tls_session_cache_database = btree:${data_directory}/smtpd_scache
smtp_tls_session_cache_database = btree:${data_directory}/smtp_scache
smtp_tls_security_level = may
smtp_tls_CAfile = $smtpd_tls_CAfile
smtp_tls_loglevel = 0
smtp_tls_note_starttls_offer = yes
smtpd_tls_auth_only = yes
smtpd_tls_security_level = may
smtpd_tls_loglevel = 0
smtpd_tls_CAfile = /etc/ssl/xxxxxxxx/certificate.pm
tls_random_source = dev:/dev/urandom
#Restrictions
smtpd_recipient_restrictions = reject_unknown_sender_domain, reject_unknown_recipient_domain, reject_non_fqdn_sender, reject_non_fqdn_recipient, reject_unlisted_recipient, check_policy_service inet:127.0.0.1:7777, check_policy_service inet:127.0.0.1:10031, permit_mynetworks, permit_sasl_authenticated, reject_unauth_destination
smtpd_end_of_data_restrictions = check_policy_service inet:127.0.0.1:10031
content_filter = smtp-amavis:[127.0.0.1]:10024
smtpd_sender_restrictions = permit_mynetworks, reject_sender_login_mismatch, permit_sasl_authenticated
smtpd_data_restrictions = reject_unauth_pipelining
smtpd_reject_unlisted_recipient = yes
smtpd_reject_unlisted_sender = yes
#SASL Auth
smtpd_sasl_auth_enable = yes
smtpd_sasl_local_domain =
smtpd_sasl_authenticated_header = yes
broken_sasl_auth_clients = yes
smtpd_sasl_security_options = noanonymous
smtpd_sasl_type = dovecot
smtpd_sasl_path = private/dovecot-auth
#Transport and Maps
transport_maps = proxy:ldap:/home/postfix/ldap/transport_maps_user.cf, proxy:ldap:/home/postfix/ldap/transport_maps_domain.cf
virtual_transport =
virtual_alias_maps = proxy:ldap:/home/postfix/ldap/virtual_alias_maps.cf, proxy:ldap:/home/postfix/ldap/virtual_group_maps.cf, proxy:ldap:/home/postfix/ldap/virtual_group_members_maps.cf, proxy:ldap:/home/postfix/ldap/catchall_maps.cf
virtual_mailbox_domains = proxy:ldap:/home/postfix/ldap/virtual_mailbox_domains.cf
virtual_mailbox_maps = proxy:ldap:/home/postfix/ldap/virtual_mailbox_maps.cf
sender_bcc_maps = proxy:ldap:/home/postfix/ldap/sender_bcc_maps_user.cf, proxy:ldap:/home/postfix/ldap/sender_bcc_maps_domain.cf
recipient_bcc_maps = proxy:ldap:/home/postfix/ldap/recipient_bcc_maps_user.cf, proxy:ldap:/home/postfix/ldap/recipient_bcc_maps_domain.cf
relay_domains = $mydestination, proxy:ldap:/home/postfix/ldap/relay_domains.cf
smtpd_sender_login_maps = proxy:ldap:/home/postfix/ldap/sender_login_maps.cf
proxy_read_maps = $canonical_maps $lmtp_generic_maps $local_recipient_maps $mydestination $mynetworks $recipient_bcc_maps $recipient_canonical_maps $relay_domains $relay_recipient_maps $relocated_maps $sender_bcc_maps $sender_canonical_maps $smtp_generic_maps $smtpd_sender_login_maps $transport_maps $virtual_alias_domains $virtual_alias_maps $virtual_mailbox_domains $virtual_mailbox_maps $smtpd_sender_restrictions
#Settings
mailbox_size_limit = 0
recipient_delimiter = +
html_directory = /usr/share/doc/postfix/html
allow_percent_hack = no
swap_bangpath = no
smtp-amavis_destination_recipient_limit = 1
smtpd_client_message_rate_limit = 100
dovecot_destination_recipient_limit = 1
queue_run_delay = 300s
minimal_backoff_time = 300s
maximal_backoff_time = 4000s
enable_original_recipient = no
disable_vrfy_command = yes
home_mailbox = Maildir/
allow_min_user = no
message_size_limit = 15728640
virtual_minimum_uid = 5000
virtual_uid_maps = static:5000
virtual_gid_maps = static:5000
virtual_mailbox_base = /home/mail
smtp_data_init_timeout = 240s
smtp_data_xfer_timeout = 600s
delay_warning_time = 0h
maximal_queue_lifetime = 4h
bounce_queue_lifetime = 4h
#Disabled
#mailbox_command = /usr/lib/dovecot/deliver"
#maildrop_destination_concurrency_limit = 1
#maildrop_destination_recipient_limit = 1
Die Dateien hab ich verschoben, weil ich in den Logs gesehen hab, das postfix keine Zugriffsrechte darauf hat.
Und es stimmt auch. Die Dateien werden zum Ausführungszeitpunkt über einen proxy call ldap:... gerufen.
Seit ich sie in das Homeverzeichnis verschoben hab, laufen sie auch. Ich hab auch abfragen gegen die Datei ausgeführt und hab valide ergebnisse bekommen.