On Thu, Mar 18, 2010 at 11:00:14AM -0300, Reinaldo de Carvalho wrote:
> On Thu, Mar 18, 2010 at 10:53 AM, Jonathan Tripathy <jon...@abpni.co.uk>
> wrote:
> >
> > BTW, the machines in the CDE will all have anti-virus and automatic updates
> > enabled.
> >
> > So, back to postfix, can it do such a thing? Act as a "proxy" and not a
> > "store and forward relay"
> >
> >
> >
>
> In theory you can to use 'smtpd_proxy_filter'.
>
> http://www.postfix.org/postconf.5.html#smtpd_proxy_filter
It works in practice. A few Postfix TLS proxies have been terminating TLS
connections, making access control decisions and forwarding unencrypted
SMTP to a non-Postfix server for many years now.
These systems only run "smtpd" as a proxy, and use various internal
services, but otherwise there is no message processing. There is
no logging from cleanup(8), qmgr(8), smtp(8), ... connectins come
in and then they go out. Mail is never queued on the TLS proxy.
--
Viktor.
P.S. Morgan Stanley is looking for a New York City based, Senior Unix
system/email administrator to architect and sustain our perimeter email
environment. If you are interested, please drop me a note.
