On Wed, Nov 26, 2008 at 03:11:04PM +0000, [EMAIL PROTECTED] wrote: > > I have multiple MTAs behind a firewall. I have EXIM 4.63 on a Debian > Linux system in a DMZ in front of the firewall. The firewall has > specific ports which are NAT'ed to internal MTAs for unique domains. > > So if the firewalls interface is: 10.0.0.1 it will NAT connections like > so: > > Relayed Domains DMZ Interface Internal MTAs > dom1.com 10.0.0.1:1025 => 11.0.0.1:25 > dom2.com 10.0.0.1:1026 => 12.0.0.1:25 > > I'm using the manualroute router, called "smarthost", in conjunction > with a DBM file to map the relayed domains to the firewall ports.
Won't it be easier to have the MTA in the DMZ relay all mail for the relevant domains to the MTAs by their internal IP address than it is to use different ports and IPs? Wouldn't it be easier to use a single internal MTA for all the domains, using a virtual domain setup? The message is probably considered as "completed" because it was deferred when the connection was refused. -- "Don't let them, daddy. Don't let the stars run down." http://adin.dyndns.org/adin/TheLastQ.htm -- ## List details at http://lists.exim.org/mailman/listinfo/exim-users ## Exim details at http://www.exim.org/ ## Please use the Wiki with this list - http://wiki.exim.org/
