Hi
I cannot utilize the trusted_networks settings because I cannot trust
the mail that my backup MX sends to me.
The backup MX does NO filtering at all, it just accepts ALL mail that
has a certain destination domain and then forwards it to the Primary
MX where SA is running, SA is doing all the filtering and
white/black/grey-listing.
When SA is down (the Pri MX), it will just hold it until it gets back
up. So basically all mail that comes from my second MX should be
checked for spam and virus, it has not capabilities of it's own. It's
working like a charm were it not for my black/white/grey-lists and the
RBL's now all do lookups on the last known IP which is my secondary MX.
I don't think I am the first to utilize this method of redundancy so I
figured there must be a way, I just dont know how :)
So please advice further, your (and everyones) help is greatly
appreciated.
SA checks all 'Received' headers against RBLs.
If you add secondary MX to trusted_networks, SA will just skip the
header from your exim and continue with the rest.
But there is another problem with such config:
1. see the numbers here http://nolisting.org/
2. does your dumb exim (secondary mx) check if the recipent address exists?
If not you will end up sending tons of bounce messages to innocent
people from your secondary MX. Even if it does, your primary MX can
refuse a spammy message and then you will be generating even more bounce
messages. This is not acceptable and you will end up in some RBLs yourself.
--
p.
WIRTUALNA POLSKA SA, ul. Traugutta 115c, 80-226 Gdansk; NIP: 957-07-51-216;
Sad Rejonowy Gdansk-Polnoc KRS 0000068548, kapital zakladowy 62.880.024 zlotych (w calosci wplacony)
