Ryan,
Since you're org has gone to the expense of buying an AV scanner that seems
a little brain-damaged ( is an open relay, doh ), I suggest you go ahead
and NOT spend some more money and build yourself an IMGate machine to
front-end Internet for your IMail+AV box. The position of: "we pay to scan
for viruses but we accept all spam openly" is not very consistent.
For your immediate panic of being an open-relay, IMGate can refuse relaying
except for "trusted my_networks", just like Imail. IMGate would then relay
the mail for your domain (you tell it which domains to accept mail for and
where to forward it) to your Imail+AV box on port 25. At which point, you
can execute your plan as conceived.
I really think you should run AV scanner in separate, powerful box, esp if
you have a lot of big attachments in your in-bound traffic.
But IMGate also gives a bunch more protection than basic non-relaying: MAPS
lookups, DNS validations of SMTP clients, global header filtering with
Regular Expressions.
Plus IMGate gives the ability to take your IMail+AV box off-line to fart
around with (or when it hangs, invetibably, with all that mail+scanning
processing going on), while IMGate sits out there receiving Internet mail.
If you stay with Imail+AV in one box, then Imail could forward outgoing
mail to IMGate instantly, greatly freeing up Imail from delivering its own
mail to final destinations.
btw, did you ever get yoyonet to fix up their DNS so you had an A record??
Len
=================
>>I have got the following config.
>>
>>Imail 6.03
>>Nt User D/base - 25 users
>>One domain - Science-int.co.uk -(central.science-int.co.uk)
>>Under SMTP:
>>Access Control - 193.132.78.0
>> 255.255.255.0
Please visit http://www.ipswitch.com/support/mailing-lists.html
to be removed from this list.
