On 7/23/2016 1:08 PM, Vasileios Vlachos wrote: > Hello Noel, > >> While you can use an IP in mynetworks, it is only resolved on >> startup, ... > > I am using an IP at the moment; did you mean I can use an A record > as well (since you talk about resolution next)?
Misspoke... I meant a hostname. Funny how you can think one thing and type something totally opposite. > > I didn't know about $max_use and $max_idle. I also didn't know that > a possible A record will only be resolved on startup. A > configuration that would serve as a workaround due to this behaviour > makes me think it might not be worth it. For a low-volume low-effort application, using a hostname that "usually" works might be adequate. Using a one-line delivery filter makes it reliable -- meaning no lost mail -- but with delivery delays when the IP changes. > > I will have a go on the TLS solution you suggested though. Yes, using TLS certs is a proper and robust solution. The other possible solution is a vpn back to the main server. A vpn is a good solution if you control the boxes on both ends and want to share services in addition to email. There's lots of VPNs to choose from; I like OpenVPN since it's secure, reliable, and pretty easy to set up. -- Noel Jones
