RE: [Exim] Exim as front door to Exchange

Christopher Baker wrote:
>> 3) Not sure how to answer that one. For mail coming into the Exim
>> box from the Internet, destined for your Exchange server, you need
>> to configure a manualroute router (before the primary SMTP router).
>
> I'm not sure how to do this. I didn't see much on Manual Route in the
> book. If that's easier than LDAP queries, I will do that. I already
> have the how-to from the web site.

If you only have one Exchange server, you really don't need LDAP to run
deliveries. LDAP lookups are useful for multiple Exchange servers, but for
a single-server Exchange installation, you can safely route all mail for
your domain to that server, since all your recipients are on that one
server. A manualroute router that lives before any dnslookup routers should
do the trick. I have this in my config...

manualroute_relay_to_domains:
driver = manualroute
domains = ! +local_domains : +relay_to_domains
transport = remote_smtp
same_domain_copy_routing = yes
route_list = * INTERNAL_MAIL_HOST
no_more

Where keyschool.org is NOT in local_domains, but IS in relay_to_domains, and
where INTERNAL_MAIL_HOST is defined as the IP of my Exchange server.

You'll probably want to do recipient verification on the Exim server itself,
so your Exchange box isn't generating NDRs after the message has already
been accepted. If you have Exchange 2003, you need to enable recipient
filtering and setup your recipient verification ACL to do callouts. If you
have Exchange 2000, you can do LDAP lookups against your AD domain in the
manualroute router itself. Since the router is called to verify the
recipient, if the router fails the LDAP test, the ACL will fail.

HTH,
Steven
---
Steven Dickenson <sdickenson@???>
Network Administrator
The Key School, Annapolis Maryland