You might decommission an mta in the ip range and swap it with the loadbalancer
All the ip's behind the firewall can have private ip addresses Just a thought James M Doherty President Revive Consulting LLC. 512-650-2997 ( O ) 512-217-6302 ( C ) > On Jun 8, 2015, at 17:00, Ernie Dunbar <maill...@lightspeed.ca> wrote: > > Hi everyone. > > We've long been a good outgoing mail provider, and all of our mail > servers have restricted outgoing mail to two different methods: > > 1. Our client has an IP address that belongs to a certain set of IP > ranges. > OR > 2. Our client logs in with authenticated SMTP. > > However, I just noticed that over the weekend our new Zen loadbalancer > has turned our carefully laid plans on their ear, since its IP address > belongs to rule number 1 there. As far as our mail server is concerned, > any connections made through the loadbalancer are allowed to send e-mail > far and wide. > > Well, now that I've shut *that* down (thankfully, the system isn't live > quite yet), we now have to figure out a plan for letting our thousands > of customers send e-mail through a highly available mail server, but > without having to change them all to authenticated SMTP, because that's > a tech support nightmare. > > Any ideas? > > ------------------------------------------------------------------------------ > _______________________________________________ > Zenloadbalancer-support mailing list > Zenloadbalancer-support@lists.sourceforge.net > https://lists.sourceforge.net/lists/listinfo/zenloadbalancer-support ------------------------------------------------------------------------------ _______________________________________________ Zenloadbalancer-support mailing list Zenloadbalancer-support@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/zenloadbalancer-support
