Viktor Dukhovni:
> On Mon, Jan 26, 2015 at 09:35:11PM +0000, srach wrote:
>
> > In from Internet
> > |
> > IP=1.2.3.4
> > Postscreen
> > |
> > IP=loopback-only
> > Postscreen Internal SMTP server
> > [X] |
> > -- 'in' IP=127.0.0.1:8001, out' IP=1.2.3.4
> > Relay SMTP server to some different clients
> >
> > What is the good setting for controling the cipher for the step I mark with
> > [X] there?? Now it is 127.0.0.1 but I may move or change it later.
> >
> > Is it confusing me some because of the configuration for the Postscreen
> >
> > When the Postscreen daemon talks to the internal SMTP server what service
> > is
> > it using?
>
> The postscreen(8) service does not use TCP to pass traffic.
> Connections from whitelisted clients are passed via local IPC to
> to the "smtpd/pass" service.
Indeed. As documented, postscreen(8) is not a proxy. It hands off
the connection and stays out of the way.
Wietse
