Re: send mail from the domain directly to the local server without going out to the Internet

I'd say "especially for connections crossing not-secured network". mails within LAN/DMZ should be safe unencrypted, unless you have reason not to trust the network or someone on it. that's one choice. some prefer to consider a Zero Trust policy e.g., see https://en.wikipedia.org/wiki/Zero_

Re: send mail from the domain directly to the local server without going out to the Internet

On 8/19/22 13:48, Matus UHLAR - fantomas wrote: >>> On 19.08.22 10:47, Sam R wrote: So I am a little divided, On the one hand I think that port 25 is enough to transmit mails locally, >>> >>> I guess by "locally" you mean "on the local network". >>> >>> port 25 is standard for server-serv

Re: send mail from the domain directly to the local server without going out to the Internet

On 19.08.22 10:47, Sam R wrote: So I am a little divided, On the one hand I think that port 25 is enough to transmit mails locally, I guess by "locally" you mean "on the local network". port 25 is standard for server-server communication, 465/587 are standard for client-server communication wh

Re: send mail from the domain directly to the local server without going out to the Internet

On 8/19/22 07:08, Matus UHLAR - fantomas wrote: > On 19.08.22 10:47, Sam R wrote: >> So I am a little divided, >> On the one hand I think that port 25 is enough to transmit mails locally, > > I guess by "locally" you mean "on the local network". > > port 25 is standard for server-server communica

Re: send mail from the domain directly to the local server without going out to the Internet

Understood, I adopt the communication in starttls port 25 between my servers. Thanks again to all. Samuel Le ven. 19 août 2022 à 13:09, Matus UHLAR - fantomas a écrit : > On 19.08.22 10:47, Sam R wrote: > > So I am a little divided, > >On the one hand I think that port 25 is enough to transmit m

Re: send mail from the domain directly to the local server without going out to the Internet

On 19.08.22 10:47, Sam R wrote: So I am a little divided, On the one hand I think that port 25 is enough to transmit mails locally, I guess by "locally" you mean "on the local network". port 25 is standard for server-server communication, 465/587 are standard for client-server communication w

Re: send mail from the domain directly to the local server without going out to the Internet

Dnia 19.08.2022 o godz. 10:47:25 Sam R pisze: > So I am a little divided, > On the one hand I think that port 25 is enough to transmit mails locally, > on the other hand I think that an encryption would be better, especially on > the dmz. Mail transmission on port 25 usually uses encryption (via

Re: send mail from the domain directly to the local server without going out to the Internet

So I am a little divided, On the one hand I think that port 25 is enough to transmit mails locally, on the other hand I think that an encryption would be better, especially on the dmz. Also, I have 20 servers that send logwatch locally and I don't see myself creating a tunnel for each of them. Sam

Re: send mail from the domain directly to the local server without going out to the Internet

Dnia 18.08.2022 o godz. 10:34:18 Demi Marie Obenour pisze: > > I recommend using client certificate authentication on port 465 instead. > IP addresses are not a strong form of authentication unless one is using > a secure VPN such as WireGuard. On an internal network, between one's own servers?

Re: send mail from the domain directly to the local server without going out to the Internet

On 8/18/22 06:14, Jaroslaw Rafa wrote: > Dnia 18.08.2022 o godz. 09:17:39 Sam R pisze: >> As you suggest, I enabled TLS wrappermode on both senders servers and the >> internal server, set "smtp_tls_security_level = encrypt " to senders >> servers and it seems perfect now. >> Thanks a lot Noel and

Re: send mail from the domain directly to the local server without going out to the Internet

Dnia 18.08.2022 o godz. 09:17:39 Sam R pisze: > As you suggest, I enabled TLS wrappermode on both senders servers and the > internal server, set "smtp_tls_security_level = encrypt " to senders > servers and it seems perfect now. > Thanks a lot Noel and Thank you all too! I doubt if you should us

Re: send mail from the domain directly to the local server without going out to the Internet

Hello Noel, As you suggest, I enabled TLS wrappermode on both senders servers and the internal server, set "smtp_tls_security_level = encrypt " to senders servers and it seems perfect now. Thanks a lot Noel and Thank you all too! Samuel Le mer. 17 août 2022 à 17:42, Noel Jones a écrit : > On 8

Re: send mail from the domain directly to the local server without going out to the Internet

On 8/17/2022 10:04 AM, Sam R wrote: Currently I use the following settings: transport_maps = hash:/etc/postfix/transport domain.fr smtp:[192.168.X.X]:465 This works but I get the following Postfix message: SMTPS wrappermode (TCP port 465) requires setting "smtp_tls_wrappermod

Re: send mail from the domain directly to the local server without going out to the Internet

Sam R: > Hello to all, > > I have several Postfix servers named MX, SMTP and MAIL on my dmz: > MX is used to receive mails to our "@domain.fr" from Internet > SMTP is used to send mails from "@domain.fr > MAIL is used as a storage server for "@domain.fr" mails > > However, I would like to be able

Re: send mail from the domain directly to the local server without going out to the Internet

On 17.08.22 17:04, Sam R wrote: I have several Postfix servers named MX, SMTP and MAIL on my dmz: MX is used to receive mails to our "@domain.fr" from Internet SMTP is used to send mails from "@domain.fr MAIL is used as a storage server for "@domain.fr" mails However, I would like to be able to

send mail from the domain directly to the local server without going out to the Internet

Hello to all, I have several Postfix servers named MX, SMTP and MAIL on my dmz: MX is used to receive mails to our "@domain.fr" from Internet SMTP is used to send mails from "@domain.fr MAIL is used as a storage server for "@domain.fr" mails However, I would like to be able to for example directl