On Jun 22, 2008, at 4:09 PM, Jonas Eckerman wrote:
If you do get a connection attempt from a non routable address on
your SMTP servers external interface, you should have no way to
acknowladge the connection if your own border router is configured
correctly.
You are assuming that there is enough infrastructure to provide a
border router. In this case I would buy a border router and connect
a single host to the inside port and the outside port to my uplink.
It's a waste of hardware, and provides no value in the
configuration. Because again, why should the host trust an IP
address which should never reach it?
--
Jo Rhett
Net Consonance : consonant endings by net philanthropy, open source
and other randomness