Hello. I have a problem I am trying to find a good secure solution to. I am using a mail server on my local 192.168.4.x network as my main mail server. All pc's connect with a propriatary client to this server. All outbound mail is forwarded to a sendmail box in the DMZ and then from there relayed out to the internet. Incoming mail is sent to the sendmail box and from there relayed to the internal mail server. The firewall between the mail server and the sendmail box will only accept connections on port 25 from the sendmail box to the mail server and vice versa.
Now my problem is that my mail server has a built in web mail service. Currently I am using my firewall to translate all requests on port 80 to the firewall from the internet directly to the internal mail servers web service. I feel that this is not the best solution. I thought of doing a reverse proxy on the sendmail box and use the same type of rules that I did for port 25 for port 80. However I am not sure this is a good solution either. I didn't know if Apache has some kind of way of accomplishing this securly. All boxes run Red Hat Linux. Any help in getting secure browsing (not ssl browsing just a secure way of passing of packets) from the internet to the mail server would be greatly appreciated. Thanks in advance. - Nick Edens
