Quote:
|
Originally Posted by LMStone So, technically you don't need to use this directive on a primary MX, but I seem to recall that if you have a NAT'd Postfix box without this directive, then bounce messages will show the private IP of the server: "This is the Postfix program at mymailserver.mydomain.com (192.168.168.168). I'm sorry I wasn't able to deliver..." |
I see. Thanks.
Quote:
|
Originally Posted by LMStone We run a SonicWall PRO 2040 in front of our mail servers. It does RBL checking, anti-virus, anti-spam, etc. and catches most of the garbage before it can hit our mail servers. Better than 90% of the email entering our mail servers is actually legitimate email! It costs about US$2,800, but pays for itself because you don't need to have as powerful mail servers as you would otherwise (and one should have a hardware firewall as well anyway...) |
Unfortunately, I am only blessed with dual-cpu 4 gigs RAM server and cisco ASA firewall app. Currently I am relying on external RBLs and ruleset from
S.A.R.E . Practically it works..
Anyhow.. do update us (forumers) on your implementation.. Good luck!