All,
I have found myself faced with the task of updating the configuration
of our infrastructure servers. Currently, my boss likes to mount
/var/mail from our primary mail server onto his workstation. I want to
avoid having NFS services run on our primary mail server, but don't want
to cause him pain. - Ultimately, I would like to convince him to use
IMAP, or IMAPS but he is pretty set in his ways.
Also, we have several services that need to be kept live on the net,
like DNS, Mail, Web, ftp (only as needed), and others that can be moved
off the these boxes, and placed behind a "semi - insecure zone" into
non-routeable space, like CIFS, NFS, Jumpstart, DHCP, etc. I have a good
idea what I want to separate, but I'm not sure of the best way, and
unsure how to solve the /var/mail issue.
One thought would be to have the primary mailserver in live space, and
just have it forward to a mailserver within our non-routeable space. -
This would necessitate having the primary be on two networks, but that's
better than having him use NFS off of a box live on the net.
I guess my general question is: What are some suggestions on setting up
a unix/linux infrastructure, providing ssh, web, dns, mail, and ftp
services to the Internet, and providing nfs, cifs, dhcp, bootp, rarpd,
and mail services for our internal office network in non-routeable ip
space. Oh, and this needs to be done while striking a good balance
between maintaining security, and useability.
Any thoughts or suggestions would be appreciated.
-RYAN
--
Ryan Hamilton Madison
Simonson Technology Services Inc.
1311 North McCarran Blvd, Suite 104
Sparks, NV 89431
e:[EMAIL PROTECTED]
p:775-359-7065
f:775-359-1237
_______________________________________________
RLUG mailing list
[EMAIL PROTECTED]
http://www.rlug.org/mailman/listinfo/rlug
