On Tue, 2003-07-29 at 02:40, Gregg wrote: > I'm not certain if- > I want to assign that IP to the OpenBSD firewall,
Yup > and use NAT and/or RDR > to pass on SMTP traffic on port 25 to the email server. Yup And put the email server on one of the private nets; set up the OpenBSD box with no servers or users; make it a router between your public MX IP and the private net; turn on OpenBSD's packet filter/firewall allowing only TCP from >1023 to 25; ... > Am I a shame on my species? ... and replace the W2K software with Postfix on *nix :-) Religious issues aside, the script kiddies are much more familiar with W2K than with OpenBSD et al. And for an extra ounce of prevention, set up a firewall on the email server. -- Glenn English [EMAIL PROTECTED] --------------------------------------------------------------------------- ----------------------------------------------------------------------------
