Dear all,
Having just recently installed CP FW-1 v4.0 SP5 (on unix) I've noticed a
large build up of unsent emails in the spool directory (over a 100 messages
in just four days). I realise that sometimes email can't be delivered
straight away, for whatever reason, but I'm sure that there shouldn't be so
many (other emails are going out without a problem).
On examining the files in the spool directory, I noticed that a destination
IP address is specified in the header info (at the top of the file before
the actual email header itself). Does this then imply that upon trying to
resend the message, the FW-1 daemon will only try this address and will not
attempt to contact any other server listed in additional MX records for the
destination domain? If this is so, then it might explain why the queue is so
large...
How then can I get the FW-1 SMTP security server to re-try using different
MX records, as any normal sendmail process would, or should I define a
'default_server' which is external to the firewall, which can then do this
process instead?
I've also noticed that the mdq process on the firewall is getting bigger and
bigger (using over 70MB of memory the last time I looked). What does this
process do, as I can find no mention of it in the manuals (though I assume
it is in someway related to emails)?
And finally, should I configure the firewall machine to use DNS as part of
its own name resolution process, because at present it is not? Would this
also affect the smtp security server operation (though at present things
seem to be otherwise alright)?
Any suggestions, thoughts, comments, will most gratefully be received.
Kind Regards,
Paul.
================================================================================
To unsubscribe from this mailing list, please see the instructions at
http://www.checkpoint.com/services/mailing.html
================================================================================
