----- Original Message ----- From: "David" <[EMAIL PROTECTED]> To: <[email protected]> Sent: Thursday, December 23, 2004 10:05 Subject: Re: [IMail Forum] Separate SMTP Server - Slightly OT?
> On 12/19 A. Clausen wrote -> > > Have you looked at your activity logs? What is generating all this > traffic. > > Unless you are running a very high volume site, 50 or 55 simultaneous > > connections for legitimate traffic really isn't that bad. Do you still > have > > an MX record for your IMail box. We put up a Postfix box with Len > Conrad's > > IMGate configs earlier this year, and then removed the IMail server's MX > > record entirely. As far as the rest of the planet is concerned, only the > > Postfix box is a mail server. Otherwise, it's quite possible that worms > and > > such are still bogging down your machine even if you some sort of > anti-spam > > server sitting there. > > Thanks for the suggestions. I have to admit that I haven't looked at the > iMail logs regarding this specific issue; I have never been able to find > anything there that indicated how many connections were being used. But > NetStat shows hundreds of connections, and telnet indicates 40 to 50 > connections being processed at times. And connections appear to get slow > when this number gets over 20-25, though I don't have any empirical data. > We do have a Barracuda in front of the iMail server which performs > essentially the same functions at an IMGate box would AFAIK. But we do have > some client MX Records that point directly to the iMail server. To this > point at least we have not forced all clients to use the Barracuda > filtering. What ever solution you ultimately use, the key here is that I don't think you are going to be able to leave your IMail box exposed. Our box still is on public IPs, and we get the odd connection, but for the most part (thus far) the worms and spammers seem to attack the hosts with MX records. If they start dumping directly on the IMail box, then we'll have to go to the next step and hide port 25 and force all traffic through port 587 via port mapping. -- A. Clausen To Unsubscribe: http://www.ipswitch.com/support/mailing-lists.html List Archive: http://www.mail-archive.com/imail_forum%40list.ipswitch.com/ Knowledge Base/FAQ: http://www.ipswitch.com/support/IMail/
