On Fri, May 27, 2022 at 12:19:22PM -0700, Alex Johnson wrote:
> Thank you for your insight. I believe you are exactly correct. I have
> previously run OpenBSD as my router and spamd in the classic setup, so
> that is my past experience base. I was hoping to use it in this situation
> as just a proxy in front of the mail server, but that seems to be getting
> outside of the typical use case, so I'll look at other
> options/configuration.
I have had situations where for whatever reason it was not practical to run
with an OpenBSD gateway for the network where the mail server lives.
My solution was this: Set up and OpenBSD box doing spamd plus any content filtering
during receipt to a world-facing SMTP server on the same box. Make that box the
publicly visible MX for the relevant domains, but set up the smtpd, postfix or exim
(whatever you fancy) configuration to forward to the mail server the domain's users
will be using.
I vaguely rememeber possibly writing about the setup in some detail in a blog
post, but I forget which one. If I haven't, it's possible I should write that up.
- Peter
--
Peter N. M. Hansteen, member of the first RFC 1149 implementation team
http://bsdly.blogspot.com/ http://www.bsdly.net/ http://www.nuug.no/
"Remember to set the evil bit on all malicious network traffic"
delilah spamd[29949]: 85.152.224.147: disconnected after 42673 seconds.
No comments:
Post a Comment