Chris Buechler wrote: > On Sat, Jun 13, 2009 at 3:07 PM, JJB<[email protected]> wrote: > >> Hello, >> >> pfsense 1.22 >> >> we have a mail server: >> >> mail.domain.com >> >> We have two wan links >> >> WAN_ATT (T1) and WAN (covad DSL) >> >> reverse DNS is configured for the ATT link for mail.domain.com and for the >> covad link as mail01.domain.com >> >> is there some way to enable the mail server to open smtp connections over >> either link as mail.domain.com without failing reverse and or forward >> lookups? (some more strict email servers do both now). >> >> > > Reverse DNS can be the same on both. For forward lookups that's not > possible, and there isn't any way for your mail server to know which > pipe it's going out to be able to change its hostname. Very few > servers check that forward and reverse matches, most just check for > existence of PTR or that PTR matches EHLO. > > I'd keep it on one WAN, but have PTR on the second so you can fail > over. That'll suffice for nearly all mail servers. > > >> Also, is there a way to force the server to always use either the ATT or >> Covad link to send mail? >> >> > > Yes, setup your rules on the interface with the mail server accordingly. > > --------------------------------------------------------------------- > To unsubscribe, e-mail: [email protected] > For additional commands, e-mail: [email protected] > > Commercial support available - https://portal.pfsense.org > > > >
Can you provide a few more details - would this be outbound NAT rules or ? thanks, Joel --------------------------------------------------------------------- To unsubscribe, e-mail: [email protected] For additional commands, e-mail: [email protected] Commercial support available - https://portal.pfsense.org If you do not have loadbalancer then your e-mail server should always use one interface according to routing table. --------------------------------------------------------------------- To unsubscribe, e-mail: [email protected] For additional commands, e-mail: [email protected] Commercial support available - https://portal.pfsense.org
