We filter mail for several sub-organizations across the state and currently the only mail ingress point is our current ASSP server. Any other server I'd set up for this project I would have total control over. I'm curious why I've gotten two responses that a backup MTA was a bad idea. Maybe I am missing something, but I'd like our inbound mail to go somewhere in the event of an outage of that existing server. I'm trying to figure out the best scenario to build in some fault tolerance into the system. Either by running a second ASSP, and syncing the message files across (which seems to be a complicated way to go) or by having a second MTA (hMailServer) accept mail at an offsite server, then forward that mail to the existing ASSP server. The idea is that ASSP would then filter that mail, but not penalize the MTA (specifically the MTA's IP address). I can see where this is built into ASSP via the ISP/Secondary MX (ispip) setting. It states;
"Enter any addresses that are your ISP or backup MX servers, separated by pipes (|). These addresses will (necessarily) bypass Griplist, IP Limiting, Delaying, PenaltyBox, SPF, DNSBL and SRS checks unless the IP can be determined by ispHostnames (ISP Connecting IP). For example: 145.145.145.145|145.145.145.146." >From what I can see here, this will bypass the IP based checks which should avoid penalizing the secondary MTA, however, I would like to perform DNSBL checks on the messages. By filling this and the ispHostnames field would this accomplish what I am looking for? Should I be looking at other settings too or something completely different? The wording here seems a bit strange unless I am just overthinking it (very likely) -----Original Message----- From: Daniel L. Miller [mailto:[email protected]] Sent: Thursday, June 10, 2010 6:33 PM To: For Users of ASSP Subject: Re: [Assp-user] ASSP and Backup MTA Short answer: Don't. Slightly longer answer: It has the potential for a major headache. Don't. Ok - at least some explanation: If you cannot GUARANTEE that each mail server has IDENTICAL configuration, with IDENTICAL FILTERS and PROCESSING - you are going out of your way to cause migraines. If you do have 100% control over multiple mailservers, then it's possible - the question is whether or not it's a good idea. If you're a regional mail service provider - then you may need to. But if you're trying to provide reliable filtered mail for your own organization - I can't see many reasons for off-site servers. -- Daniel ------------------------------------------------------------------------------ ThinkGeek and WIRED's GeekDad team up for the Ultimate GeekDad Father's Day Giveaway. ONE MASSIVE PRIZE to the lucky parental unit. See the prize list and enter to win: http://p.sf.net/sfu/thinkgeek-promo _______________________________________________ Assp-user mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/assp-user
