I would like to point out that keeping firewall-1 out of smtp routing
will avoid lot of trouble and performance issues...Ramki
Reinhard Stich wrote:
hi,
if you have private IPs in your DMZ-network you can change the NAT for
the IP of MX.yourdomain.com to the mail-router (and back if your
anti-spam gw is up again).
cheers
reinhard
At 14:03 08.01.2006, you wrote:
My current setup for email is a Lotus Domino server sitting on the DMZ
and
a Lotus Domino server on the network. The server in the DMZ is setup
with
a static NAT with a public IP address and the MX record points to it
and it
routes mail into the network. I'm adding a spam firewall to the mix
so I'm
trying to determine the best route to take to add this with redundancy in
mind..
One way is to setup the spam firewall in the DMZ the same as the email
server and change the MX record to point to it and have it route to the
email server. The problem here is if the spam firewall go's down I can't
reroute the SMTP traffic to the email server to bypass the spam firewall
until it is back online unless I change the MX record.
I'm no expert with Firewall-1 but I'm thinking I should point the MX
record
to the firewall external interface and have it forward SMTP traffic to
the
spam firewall and then have it route to the email server. If the spam
firewall go's down I can change the forwarding to the email server
instead
of the spam firewall until it is back online. The little research I have
done so far looks like I would just setup a SMTP resource to do what I
would like to do and let the firewall do the routing.
John
=================================================
To set vacation, Out-Of-Office, or away messages,
send an email to [EMAIL PROTECTED]
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
[EMAIL PROTECTED]
=================================================
=================================================
To set vacation, Out-Of-Office, or away messages,
send an email to [EMAIL PROTECTED]
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
[EMAIL PROTECTED]
=================================================
