Tom - You're reading it exactly as I intended it be read, I just wasn't sure if I was able to make sense or not. I think the only thing I can do is to just port forward all 25 and 110 traffic (or do I even need to forward the 110 stuff?) to the server in question, as you suggested. All other ports/services are blocked in the firewall, so I don't imagine I'd have too many problems. Thanks for the sanity check!
- John On Mon, 2003-02-10 at 16:56, Tom Collins wrote: > On Monday, February 10, 2003, at 11:21 AM, John Shireley wrote: > > That's really not an option for me, not being an db admin, +and+ I have > > to continue using /etc/passwd users for various reasons. I think my > > question can pretty much be boiled down to this: is SMTP-auth not able > > to function since the server has its mail proxied to it by a firewall > > running qmail with an smtproutes entry? > > If I'm reading your request correctly, I think that the answer is no. > > You want the users to connect to the firewall's SMTP port and > authenticate so it will accept mail (either for relay to other domains, > or for local users). > > The user database with passwords is located on another machine though. > This means that the firewall machine would need to contact the true > mail server in order to authenticate users. > > Instead of proxying the mail with an smtproute entry on the firewall, > you could forward all SMTP (port 25) traffic directly to the mail > server. You should be able to do SMTP AUTH at that point, but you'll > want to make sure the server has whatever protections you had in place > on the firewall machine (previously providing SMTP forwarding). > > -- > Tom Collins > [EMAIL PROTECTED] > > -- John Shireley Cook, Inc. jshireley @ cook-inc.com
