On 1/21/2015 9:22 AM, rogt3...@proinbox.com wrote: > I'd like to 1st get to a single instance of Postfix working like a gateway, > accepting and sending mail to & from all the current servers+domains. > > I'd like to get to > > 'net > <--> (Public Static IP #4) Postfix domain[1,2,3] (Postscreen + > some > (Public Static IP #5) Recipient & > Sender restrictions) > <- domain1 -> (Private Dynamic IP #1) Server1/domain1 > <- domain2 -> (Private Dynamic IP #2) Server2/domain2 > <- domain3 -> (Private Dynamic IP #3) Server3/domain3
general docs are here: http://www.postfix.org/STANDARD_CONFIGURATION_README.html#firewall The internal domains will be listed as relay_domains in postfix. Valid recipients should be in relay_recipient_maps. > > I'd like to do this with > > (1) minimal changes to the 3 current servers You'll need some way to export valid recipients to postfix If that's not possible, use recipient_address_verification http://www.postfix.org/ADDRESS_VERIFICATION_README.html#recipient Minimal changes to inside boxes will include, - don't accept mail from the internet (duh!) - trust the postfix IP to minimize bounces - set the postfix box as smarthost/relay/gateway or whatever they call it for outgoing mail. - I probably forgot something else... > (2) the Postfix system storing, then later forwarding, inbound mail if the > Postfix -> domainX connection is ever down > (3) the Postfix system storing, then later sending, outbound mail if the > Postfix -> 'net connection is ever down both these are default behavior. > > I hope that's clear enough. I can explain more or differently if you jave > any particular questions. > > I guess the right question for me here is -- can I do this? SHOULD I do it > this way? This is a good first step that should be relatively easy to implement. -- Noel Jones
