Le 31/05/2011 11:57, an...@melted-ice.co.uk a écrit :
> What a fool, !
> Appologies for the incorrect previous explanation and many thanks for the
> reply pointing out my mistake :)
>
> point 4 previous should have referenced Postfix1
>
> My goal is if possible I'd like to have an independant server (the gateway)
> wash all mail whether internal or external before any final delivery takes
> place.
>
> The mail flow should read as follows:
> - external mail recieved into MX @ VSgate1
> - hits VSgate1, and is washed for spam and virus
> - washed mail is sent to Postfix1 for delivery processing
>
This part is "common".
- vsgate1 is the public" MX so external hosts send mail to it
- your domains are declared in relay_domains on vsgate1
- the valid addresses are declared in relay_recipient_maps. don't skip
this part. otherwise, you will become a backscatter source. see the
http://www.postfix.org/BACKSCATTER_README.html
- use transport_maps to redirect such mail to postfix1
> - Internal senders
> any mail sent by an internal user should first be sent to host VSgate1 to
> be washed and then returned via VSgate1 to Postfix1 for delivery.
>
there are many ways:
- one way is to tell users to use vsgate1 as their "outgoing mail server".
- if that's not possible/desirable, then you can configure postfix1 to
use vsgate1 as a content_filter. but here, you need to avoid a loop. so
you only want to pass "outgoing" mail to the content filter. again,
there are many ways. here is one:
*) when you configure your transport_maps on vsgate1 to pass mail to
postfix1, use a specific port, say 10025. on postfix1, create an smtpd
listener for this port and disable the content_filter for this listener.
see
http://www.postfix.org/FILTER_README.html#advanced_filter
for more things to configure.
PS. Please do not top post. put your replies after the text you reply to.
> Therefore internal and external mail is hopefully washed by the gateway
> server before any internal or external delivery.
>
> Thanks for any advice you can give - Andy
>
