On Wed, Nov 26, 2008 at 03:11:04PM +0000, exim@??? wrote:
>
> I have multiple MTAs behind a firewall. I have EXIM 4.63 on a Debian
> Linux system in a DMZ in front of the firewall. The firewall has
> specific ports which are NAT'ed to internal MTAs for unique domains.
>
> So if the firewalls interface is: 10.0.0.1 it will NAT connections like
> so:
>
> Relayed Domains DMZ Interface Internal MTAs
> dom1.com 10.0.0.1:1025 => 11.0.0.1:25
> dom2.com 10.0.0.1:1026 => 12.0.0.1:25
>
> I'm using the manualroute router, called "smarthost", in conjunction
> with a DBM file to map the relayed domains to the firewall ports.
Won't it be easier to have the MTA in the DMZ relay all mail for the
relevant domains to the MTAs by their internal IP address than it is
to use different ports and IPs? Wouldn't it be easier to use a single
internal MTA for all the domains, using a virtual domain setup?
The message is probably considered as "completed" because it was
deferred when the connection was refused.
--
"Don't let them, daddy. Don't let the stars run down."
http://adin.dyndns.org/adin/TheLastQ.htm
