Proxy Setting in Main.cf + Another question (with log snippit)

Wed, 31 Mar 2010 13:25:11 -0700

My mailserver is behing a firewall that also does nat tranlastion. So the inside has a dmz zone. When you hit from the oustide you hit the outside / public ip numbers. You are hitting the firewall box. Then going in to the dmz zone. The firewall is setup to route the proper ports back and forth to the inside. Port 25/110 has two sets of rules. One incomming and one outgoing. 
69.69.25.125 port 25 = 172.16.0.10 port 25.  (both ways)
172.16.0.10 port 25 = 69.69.25.125 port 25.  (both ways)
(I don't do firewalls so my answer is limited.)


example:
(this is just a example with example numbers)

fw:  (69.69.24.123)
ext pub ip for mailserver: (69.69.25.125)
dmz: (172.16.0.1)
mailserver on inside in dmz zone: (172.16.0.10)

So for the setting via proxy / inet.

Inet = localhost, 172.16.0.10

(WHAT DO I SET THIS PROXY TOO?)

Proxy = 172.16.0.10  ???

Next question. (I can post more of the log if needed)
This looks like a open relay. THis is the beginning of spam hitting my server then it will get routed out to other mailservers. I changed a few things to protect myself in the log file. But any ideas how to stop this? I did post my configuration file a while back and check most everything everybody was kind to sugguest. Including this proxy setting I'm asking about. Notice the strange long id in front of the www.myserver.net If it is a normal e-mail like twink...@myserver.net it gets bounced.
Mar 23 20:46:44 primary postfix/smtpd[27713]: connect from mailserver.myserver.net[xxx.xx.x.xxx] Mar 23 20:46:44 primary postfix/smtpd[27713]: 6A3EE10D815B: client=mailserver.myserver.net[xxx.xx.x.xxx] Mar 23 20:46:44 primary postfix/cleanup[28671]: 6A3EE10D815B: hold: header Received: from localhost (mailserver.myserver.net [17$ Mar 23 20:46:44 primary postfix/cleanup[28671]: 6A3EE10D815B: message-id=<20100323204644.gu8pcnqs2s8wk...@www.myserver.net> Mar 23 20:46:44 primary postfix/smtpd[27713]: disconnect from mailserver.myserver.net[xxx.xx.x.xxx] 


Thanks for all the help,

Josh



--
This message has been scanned for viruses and
dangerous content by Mychoice, and is
believed to be clean.

Reply via email to