"Susan Short" <[EMAIL PROTECTED]> wrote:
>Our network design requires that I forward all the mail currently coming
>into my dmz back to our inside secure network to host email02 behind another
>pix. I have tried to set this up and am my mail appears to be going in a
>loop.
>
>My intention was for email01 in the dmz to receive all mail and send it back
>to email02 for storage. the MX record on the internet points to email01.
>There is no record on the internet for email02.
>
>I was trying to do this with smtproutes. So email01 has mydomain.com in its
>rcpthosts but nots its locals and an smtproute file with
>mydomain.com:[ip_of_email02]. Then email02 had just one line in its
>smtproute file of
>:[ip_of_email01].
OK, that sounds good so far. What was the problem?
>I will need to have email02 forward outbound mail because I don't have
>internet DNS resolution in my secure network.
No problem: smtproutes will do what you want.
To summarize, on email01 you want:
mydomain.com in rcpthosts, but not locals
mydomain.com:[ip_of_email02] in smtproutes
On email02 you want:
mydomain.com in rcpthosts and locals
:[ip_of_email01] in smtproutes
You'll also need to set up selective relaying on email01 so it'll
accept outgoing messages from email02.
-Dave
