>We are presently looking to change our mail server software and iMail seems >to have a lot of features. However, I am a bit surprised that iMail does >not seem to be able to Authenticate against an NT database other than the >local machine. > >Has anyone found a way to Authenticate iMail in a DMZ to an Internal Win2K >domain controller or Radius server?
If you're getting into building a DMZ, it's not the best solution to expose your mailbox server in the DMZ and as MX host. Put an SMTP + DNS proxy/bastion host (IMgate) in your DMZ, and Imail behind the inner firewall, which only trusts SMTP traffic to/from imail from the ip of the DMZ proxy. This is an "smtp/dns forwarding architecture", buzz, buzz. If you need SMTP relaying for roamers (outside your outer firewall), then you do pop-before-smtp on the bastion server, keeping all the relay traffic out of your internal firewall. Also, for your roamers coming from other access providers, IMGate can run an extra SMTPD service on, eg, port 1025, so your roamers are unaffected by blocking of port 25 by the access providers. Len www.menandmice.com/DNS-training : DNS Training BIND8NT.MEIway.com : ISC BIND for NT4 & W2K IMGate.MEIway.com : Build free, hi-perf, anti-abuse mail gateways Please visit http://www.ipswitch.com/support/mailing-lists.html to be removed from this list. An Archive of this list is available at: http://www.mail-archive.com/imail_forum%40list.ipswitch.com/ Please visit the Knowledge Base for answers to frequently asked questions: http://www.ipswitch.com/support/IMail/
