<html xmlns:v="urn:schemas-microsoft-com:vml" xmlns:o="urn:schemas-microsoft-com:office:office" xmlns:w="urn:schemas-microsoft-com:office:word" xmlns:m="http://schemas.microsoft.com/office/2004/12/omml" xmlns="http://www.w3.org/TR/REC-html40">
<head>
<META HTTP-EQUIV="Content-Type" CONTENT="text/html; charset=us-ascii">
<meta name=Generator content="Microsoft Word 12 (filtered medium)">
<!--[if !mso]>
<style>
v\:* {behavior:url(#default#VML);}
o\:* {behavior:url(#default#VML);}
w\:* {behavior:url(#default#VML);}
.shape {behavior:url(#default#VML);}
</style>
<![endif]-->
<style>
<!--
/* Font Definitions */
@font-face
{font-family:Calibri;
panose-1:2 15 5 2 2 2 4 3 2 4;}
@font-face
{font-family:Tahoma;
panose-1:2 11 6 4 3 5 4 4 2 4;}
/* Style Definitions */
p.MsoNormal, li.MsoNormal, div.MsoNormal
{margin:0in;
margin-bottom:.0001pt;
font-size:12.0pt;
font-family:"Times New Roman","serif";}
a:link, span.MsoHyperlink
{mso-style-priority:99;
color:blue;
text-decoration:underline;}
a:visited, span.MsoHyperlinkFollowed
{mso-style-priority:99;
color:purple;
text-decoration:underline;}
span.EmailStyle17
{mso-style-type:personal-reply;
font-family:"Calibri","sans-serif";
color:#1F497D;}
.MsoChpDefault
{mso-style-type:export-only;
font-size:10.0pt;}
@page Section1
{size:8.5in 11.0in;
margin:1.0in 1.0in 1.0in 1.0in;}
div.Section1
{page:Section1;}
-->
</style>
<!--[if gte mso 9]><xml>
<o:shapedefaults v:ext="edit" spidmax="1026" />
</xml><![endif]--><!--[if gte mso 9]><xml>
<o:shapelayout v:ext="edit">
<o:idmap v:ext="edit" data="1" />
</o:shapelayout></xml><![endif]-->
</head>
<body lang=EN-US link=blue vlink=purple>
<div class=Section1>
<p class=MsoNormal><span style='font-size:11.0pt;font-family:"Calibri","sans-serif";
color:#1F497D'>Instead of virtualization, you should be able to run X copies of
your MTA, each simply binding to a different IP address…<o:p></o:p></span></p>
<p class=MsoNormal><span style='font-size:11.0pt;font-family:"Calibri","sans-serif";
color:#1F497D'>Pretty much same result as virtualization without the overhead (I
only briefly thought of this, so my idea could definitely be off a bit..)<o:p></o:p></span></p>
<p class=MsoNormal><span style='font-size:11.0pt;font-family:"Calibri","sans-serif";
color:#1F497D'><o:p> </o:p></span></p>
<p class=MsoNormal><span style='font-size:11.0pt;font-family:"Calibri","sans-serif";
color:#1F497D'>Mark<o:p></o:p></span></p>
<p class=MsoNormal><span style='font-size:11.0pt;font-family:"Calibri","sans-serif";
color:#1F497D'><o:p> </o:p></span></p>
<p class=MsoNormal><span style='font-size:11.0pt;font-family:"Calibri","sans-serif";
color:#1F497D'><o:p> </o:p></span></p>
<div>
<div style='border:none;border-top:solid #B5C4DF 1.0pt;padding:3.0pt 0in 0in 0in'>
<p class=MsoNormal><b><span style='font-size:10.0pt;font-family:"Tahoma","sans-serif"'>From:</span></b><span
style='font-size:10.0pt;font-family:"Tahoma","sans-serif"'> nflug-bounces@nflug.org
[mailto:nflug-bounces@nflug.org] <b>On Behalf Of </b>Robert Meyer<br>
<b>Sent:</b> Friday, August 17, 2007 9:40 AM<br>
<b>To:</b> nflug@nflug.org<br>
<b>Subject:</b> Re: [nflug] Email<o:p></o:p></span></p>
</div>
</div>
<p class=MsoNormal><o:p> </o:p></p>
<div>
<div>
<p class=MsoNormal style='margin-bottom:12.0pt'>OK, guys... I cannot redesign
the environment. I am required to follow the design. We're
replacing an Imail server that holds accounts and provides relay
functions. The Imail server will be moved to another site and we need to
reconstruct the relay function. All incoming mail for our clients hits
the relay box and is routed to the appropriate backend server. This gives
us a troubleshooting point and allows us to potentially do single point spam
and virus detection. All mail coming from the backend servers hits the
relay before going out. Again, as a troubleshooting point and for the
potential for spam and virus filtering. I cannot change the overall
design. I have been requested to find a way to make outgoing mail from
different clients originate from different IP addresses so that if one of the
clients gets put on a spam list, it doesn't hurt all of our clients...
Those are my constraints. If I were to be designing this, those of you
that know me, know that I would not have designed it this way.<br>
<br>
So far, the only method that I know of to accomplish this is with
virtualization. I'm looking for ideas.<br>
<br>
Cheers!<br>
<br>
Bob<o:p></o:p></p>
<div>
<p class=MsoNormal style='margin-bottom:12.0pt'>----- Original Message ----<br>
From: Darin Perusich <Darin.Perusich@cognigencorp.com><br>
To: nflug@nflug.org<br>
Sent: Friday, August 17, 2007 9:18:09 AM<br>
Subject: Re: [nflug] Email<o:p></o:p></p>
<div>
<p class=MsoNormal>Your "extra elbow grease to set up and get familiar
with" comment sounds <br>
like a good reason to me to use another MTA ;-). Why not use Exim, <br>
Qmail, or Exchange for that matter? Then again everyone has their own <br>
preference and in the end the same problem needs to be resolved.<br>
<br>
Pete Cummings wrote:<br>
> Why not put sendmail in front of the whole mess ? I know it takes some <br>
> extra elbow grease to set up and get familiar with it, but I've never <br>
> been at a loss for features.<br>
> Pete<br>
> <br>
> eric wrote:<br>
>> Starting new sub-thread..<br>
>> Darin, can I ask, what are all the mail packages you use postfix,
etc..<br>
>><br>
>> I'd love an outline or rough draft?<br>
>><br>
>><br>
>><br>
>> Darin Perusich wrote:<br>
>>> Will this machine be an MX server or will it be behind your MX and
<br>
>>> relaying from there? I'm also not understanding your SPAM tagging <br>
>>> point. Are you concerned about your relay marking mail from the <br>
>>> domains it's relaying for marking them as SPAM? This is easily <br>
>>> remedied by setting the following spamassassin rule and included
ALL <br>
>>> of the relaying domains:<br>
>>><br>
>>> header LOCAL_RCVD Received =~
/.*\(\S+\.cognigencorp\.com\s+\[.*\]\)/<br>
>>> describe LOCAL_RCVD Received from local machine<br>
>>> score LOCAL_RCVD -50<br>
>>><br>
>>> The only way outgoing mail will be sent from a different IP is
using <br>
>>> some type of virtualization, and why doesn't this even matter? It <br>
>>> sounds like over complicating the setup.<br>
>>><br>
>>> You mentioned using Postfix for the MTA, a wise move IMHO ;-). Are
<br>
>>> you planning on using amavisd-new to filter, tag spam, and virus <br>
>>> check? This is a very typical and efficient setup for relaying for
<br>
>>> multiple domains not to mention straightforward. Your setup is a <br>
>>> little more complication then what I have setup here but it's
pretty <br>
>>> much the same. If you want more details let me know.<br>
>>><br>
>>> Robert Meyer wrote:<br>
>>>> OK, before we get into this, remember that this is NOT my
design. <br>
>>>> I'm trying to make the best of what I have
here... Having said that...<br>
>>>><br>
>>>> We currently have several clients, all using an Imail server <br>
>>>> (remember, not my design) to handle Email. We are
also routing a <br>
>>>> few Exchange servers through it. In essence, all
mail coming in for <br>
>>>> these clients hits a single server that separates the domain
names <br>
>>>> and routes the mail to the backend servers. We also
have some <br>
>>>> clients that are actually storing their mail on the Imail
server. <br>
>>>> These two functions are going to be separated so that the
relay <br>
>>>> server and the POP/IMAP functions are on different
boxes. The mail <br>
>>>> servers that I relay for also relay back through the Imail
server. <br>
>>>> The problem is that if one client gets infected with a spam
virus or <br>
>>>> otherwise gets the server tagged as a spam host, it breaks all
of <br>
>>>> the clients that route through that server. We
(actually, they) <br>
>>>> want to keep the single relay host, because it's good for <br>
>>>> troubleshooting. (remember, not my design)<br>
>>>><br>
>>>> What I need to know is: Is there any way that I can
set up a system <br>
>>>> that will relay mail from internal mail servers but have the
IP <br>
>>>> address leaving the server be different for each
domain. <br>
>>>> Essentially, I want it to look like each domain is coming from
a <br>
>>>> different server. We are switching the relay server
to CentOS (RHEL <br>
>>>> clone) and are going to use Postfix for the relay functions.<br>
>>>><br>
>>>> The only idea that comes to mind is to create multiple virtual
<br>
>>>> servers with VMWare and route each client through a different <br>
>>>> virtual machine. I know I can create multiple IP
aliases on the <br>
>>>> machine. Can I leverage that somehow to get
different source <br>
>>>> addresses for different domains?<br>
>>>><br>
>>>> Thanks...<br>
>>>><br>
>>>> Cheers!<br>
>>>><br>
>>>> Bob<br>
>>>><br>
>>>>
------------------------------------------------------------------------ <br>
>>>><br>
>>>> Moody friends. Drama queens. Your life? Nope! - their life,
your story.<br>
>>>> Play Sims Stories at Yahoo! Games. <br>
>>>> <<a
href="http://us.rd.yahoo.com/evt=48224/*http:/sims.yahoo.com/" target="_blank">http://us.rd.yahoo.com/evt=48224/*http://sims.yahoo.com/</a>><br>
>>>><br>
>>>><br>
>>>>
------------------------------------------------------------------------ <br>
>>>><br>
>>>><br>
>>>> _______________________________________________<br>
>>>> nflug mailing list<br>
>>>> nflug@nflug.org<br>
>>>> <a href="http://www.nflug.org/mailman/listinfo/nflug"
target="_blank">http://www.nflug.org/mailman/listinfo/nflug</a><br>
>>><br>
>><br>
>> _______________________________________________<br>
>> nflug mailing list<br>
>> nflug@nflug.org<br>
>> <a href="http://www.nflug.org/mailman/listinfo/nflug" target="_blank">http://www.nflug.org/mailman/listinfo/nflug</a><br>
>><br>
> <br>
> _______________________________________________<br>
> nflug mailing list<br>
> nflug@nflug.org<br>
> <a href="http://www.nflug.org/mailman/listinfo/nflug" target="_blank">http://www.nflug.org/mailman/listinfo/nflug</a><br>
<br>
-- <br>
Darin Perusich<br>
Unix Systems Administrator<br>
Cognigen Corporation<br>
395 Youngs Rd.<br>
Williamsville, NY 14221<br>
Phone: 716-633-3463<br>
Email: darinper@cognigencorp.com<br>
_______________________________________________<br>
nflug mailing list<br>
nflug@nflug.org<br>
<a href="http://www.nflug.org/mailman/listinfo/nflug" target="_blank">http://www.nflug.org/mailman/listinfo/nflug</a><o:p></o:p></p>
</div>
</div>
<p class=MsoNormal><o:p> </o:p></p>
</div>
</div>
<p class=MsoNormal><o:p> </o:p></p>
<div class=MsoNormal align=center style='text-align:center'>
<hr size=1 width="100%" align=center>
</div>
<p class=MsoNormal>Ready for the edge of your seat? <a
href="http://us.rd.yahoo.com/evt=48220/*http:/tv.yahoo.com/">Check out
tonight's top picks</a> on Yahoo! TV. <o:p></o:p></p>
</div>
</body>
</html>