Am 30.11.2012 22:57, schrieb Stan Hoeppner: > Simply physically separate your inbound public SMTP traffic from your > user submission relay traffic. I.e. setup a separate dedicated box that > ONLY performs submission on TCP 587 with auth and outbound relay. I.e. > disable the smtpd server on TCP 25. And implement Postscreen on the > current public SMTP server. > > Separating these functions doesn't require a second physical server, but > it has a number of advantages for you and your users. First is that it > fixes the problem of high public SMTP traffic causing problems for > submissions. Second, if you have to take one server down for hardware > maintenance only one function goes down, not both.
in a perfect world in the real world submission is useless if IMAP is down because the client will fail to store in "sent messages" PHYSICAL boxes are not needed in 900 out of 1000 environments these days virtualization i sued which let you define maximum hardware ressources for each virtual machine and gives you easy to maintain high-ability opitions with a second host with virtualization and failover it makes sense to use different virtual servers but mostly not for real physical machines because if ONE goes down you have a problem which is not solved quickly and will in many cases affect other boxes and service quality at all with the watsd money for 5 small/mid boxes you get two real ones as virtualization host - on our new host with 96 GB of RAM we can easy define ressources at runtime, with physical ones they have too less ressources or wasted ones
signature.asc
Description: OpenPGP digital signature
