Marc Perkel wrote:
qqqq wrote:
| Just to clarify here.... You are talking about doing something like:
|
| domain.com 1200 IN MX 10 smtp-1.domain.com
| domain.com 1200 IN MX 50 smtp-2.domain.com
|
| You all are saying that most of the spam should be coming in MX 50
right?
|
| I have to admit I've tried this, but it seems like mail continues to
| come into the MX 50 even when the primary servers are available. Is
| it not correct that the 50 should NOT be tried until the 10 is
| unavailable? Or do I have that backwards?
You have it right. Unfortunately, mail still hits the lowest priority
server based on my experience even when the Primary is up and running.
QQQQ
Some spammers target the highest MX record because the backup servers
usually have less spam filtering than the regular server. What I do is
point my highest MX to an IP that returns a 4xx error on everything and
I get rid of hundreds of thousands of spams a day without hardly any
system load.
We tried that and had problems with some clients (the business client
not the mail client). Seems a lot of Exchange servers will try the
lowest priority MX for some reason, and then never try the highest, just
fail.
With the current setup a valid message will eventually get through.
DAve
--
Three years now I've asked Google why they don't have a
logo change for Memorial Day. Why do they choose to do logos
for other non-international holidays, but nothing for
Veterans?
Maybe they forgot who made that choice possible.
