Quote:
|
Originally Posted by scalper <snip>
By having the internal dns, somehow our local mail traffic is well diverted locally without going to the outside and back to the inside. |
From the logs we see that the
internal lmtp transport of mail takes place over the
public IP of the server. We didn't want just anyone to be able to inject email into Cyrus, so we needed to configure firewall rules to allow lmtp only from the Zimbra server to the Zimbra server. We also didn't find any way to change this, other than manually editing the Zimbra config files, which we don't want to do!
Having an internal DNS server with the
private, rather than
public IP of the Zimbra host is possibly how you are keeping internal transports internal.
Would you mind confirming that your internal DNS server uses private IPs for the Zimbra MTA (Postfix) and mail store (Cyrus) servers?
Thanks,
Mark