On Tue, 18 Jul 2000, Sreenivas wrote:
> Hi,
> I have already posted this question once, sorry for posting this again. As i am strucked up at this piont in our network design it would be great if any body could give me quick suggestion.
>
> I have a requirement like i have to setup two mail servers, One of these two will be in public domain with public ip address which could collect mails from other domains. And the other mail server should serve for internal mails which will be in our private network.
> supposing mail server external is
> xxx.com with ipaddress 196.x.x.x
> internal mail-server is
> aaa.xxx.com with ipaddress 10.x.x.x
> if i say mail to x@aaa.xxx.com from pop client it will go to aaa.xxx.com and delivers it to x@aaa.xxx.com
> if i say mail to x@yahoo.com from pop cleint of aaa.xxx.com it should get delivered to x@yahoo.com
> x@yahoo.com will get mail saying that mail from y@aaa.xxx.com etc. when he says reply it doesnot go to y@aaa.xxx.com because aaa.xxx.com has non routable ip-address i.e 10.x.x.x.
> to overcome this i want to do like this.
> if it is internal mail like something@aaa.xxx.com it should go to mail server aaa.xxx.com and deliver the mail.
> and if it is external mail like something@yahoo.com it should go to our external mail server xxx.com and go out with the from address as y@xxx.com even if it is sent from y@aaa.xxx.com. the external mail server should take take care of stripping off aaa from y@aaa.xxx.com.
> What is the simple way bto achieve this. Please any on help me.
>
> This kind of setup is only to lessen the traffic due to local mails like from x@aaaa.xxx.com to y@aaa.xxx.com on the point to point link that we have in between our external and private network.
>
> I would like to have internal and external mail servers configured on RH Linux with Sendmail.
> As i have to submit report on this to my boss in couple of days, Please throw your suggestions imdtly.
>
> Thanks for any help in advance.
>
> Cheers
> Sreenivas M
>
I don't have time to go into a log of detail right now, but here is the
general setup I use. The mail server on the firewall is set up as a
secondary mail server for the domain address. It checks incomming mail
agenst SPAM rules, and forwards the stuff that passes to the mail server
inside the firewall. All the machines inside the firewall are set to
pass mail to the inside mail server. This mail server takes care of
local delivery, and sends mail out through the firewall for outside
delivery. For your setup, have is use the mail server on the firewall
as a smart relay so all of your outside mail is comming from the
firewall. Set up the firewall mail server so it will only relay from
the inside mail server, and nowhere else. The inside mail server should
not relay that comes from the firewall - only accept mail for local
delivery from it. It will have to be set up to relay mail from local
machines out the the internet. (But you can limit this to specific
machines if you don't want everyone to have internet mail.)
Mikkel
--
Do not meddle in the affairs of dragons,
for you are crunchy and taste good with ketchup.
-
: send the line "unsubscribe linux-net" in
the body of a message to majordomo@vger.rutgers.edu
