Quote:
|
Originally Posted by scalper Not necessarily for NATd zimbra server, as my post here , my /etc/hosts file only have the private IP. Meanwhile, I did not touch any postfix configuration and postfix does not know my public IP. Haven't read the documentation though! I am a qmail user before  Do enlight me regarding that! |
From the Postfix documentation:
---------------------------------------------------------
proxy_interfaces (default: empty)
The network interface addresses that this mail system receives mail on by way of a proxy or network address translation unit.
This feature is available in Postfix 2.0 and later.
You must specify your "outside" proxy/NAT addresses when your system is a backup MX host for other domains, otherwise mail delivery loops will happen when the primary MX host is down.
Example:
proxy_interfaces = 1.2.3.4
------------------------------------------------------------------
So, technically you don't need to use this directive on a primary MX, but I seem to recall that if you have a NAT'd Postfix box without this directive, then bounce messages will show the private IP of the server: "This is the Postfix program at mymailserver.mydomain.com (192.168.168.168). I'm sorry I wasn't able to deliver..."
Quote:
|
Originally Posted by scalper The only problem is spam. I am tweaking here and there to combat the problem..  |
We run a SonicWall PRO 2040 in front of our mail servers. It does RBL checking, anti-virus, anti-spam, etc. and catches most of the garbage before it can hit our mail servers. Better than 90% of the email entering our mail servers is actually legitimate email! It costs about US$2,800, but pays for itself because you don't need to have as powerful mail servers as you would otherwise (and one should have a hardware firewall as well anyway...)