Hi Scott,
On Tue, Nov 25, 2003 at 03:06:49PM +1100, [EMAIL PROTECTED] wrote:
> What I would like to do is this kind of network setup:
>
> internet
> |
> Gateway
> / \
> MX/HTTP LAN
>
> Now From the firewall, I would not allow the MX/HTTP server access the LAN
> at all, via iptables, and they will be on different subnets.
>
> So what I want to do is setup the MX (Currently going to be exim, but open
> to suggestions) to accept incoming mail for our domains, then have
> fetchmail on the LAN pickup the mail from MX every few minutes, after its
> been scanned for viruses/spam etc.
The problem with using fetchmail to pull mail onto the LAN is that you're
introducing support for another protocol (POP, ETRN, ODMR or something) onto
your MX/HTTP box - it's probably just simpler to use SMTP and open up just
the SMTP port inward from MX -> Domino. I guess that's somethign more like:
internet
|
proxy (MX/HTTP)
|
LAN
> How would I accomplish this?
> What would be the best tools in debian woody?
> Are there better/easier ways to do this?
I personally would never use sendmail in this kind of situation because of
the recurring security SNAFUs with it - any of the other standard MTAs
around would probably be better. I'm currently using qmail + qpsmtpd
(http://develooper.com/code/qpsmtpd/) for this at the moment - qpsmtpd
is a very nice pluggable smtp daemon written in perl that lets you do
very sexy things on the spam/virus/validation fronts.
Cheers,
Gavin
--
Open Fusion P/L - Open Source Business Solutions [ Linux - Perl - Apache ]
ph: 02 9875 5032 fax: 02 9875 4317
web: http://www.openfusion.com.au mob: 0403 171712
- Fashion is a variable, but style is a constant - Programming Perl
--
SLUG - Sydney Linux User's Group - http://slug.org.au/
More Info: http://lists.slug.org.au/listinfo/slug
