I'm not sure if this has been discussed before, because searching for things like "server" is not exactly a narrow search.
Anyhow, I have two systems on which I run PolicyD. On the first, it was a simple setup: Postfix Policyd MySql --- all on one box (along with MailScanner too but that's not relevant) Adding the second box, I read that I should simply change the policyd instance on the first box to bind on an IP other than loopback, and adjust the firewall accordingly. So far so good. On the second server, postfix's main.cf, instead of 127.0.0.1:10031, I pointed it to 192.168.34.5:10031 (the first server's 'private' back-connect). Still, so far so good. Second server is properlly using the policyd instance on the first server. Then the first server took an outage. Normally, having a second box that can accept messages is a good thing except if the policy server can't be reached. What ended up happening is the second box, unable to reach the policyd server, just stopped accepting mail. The errors were 4xx and should have been retryable but most did in fact hard bounce. The "fail-safe" mode of Policyd never came into play because Postfix couldn't reach it at all. What I did to fix this was a rather simple config change and I noe believe this to be 100% better than the original setup. I turned on policyd on the second server but pointed its database connection to the MySQL on the first server. Repointed postfix/main.cf back to 127.0.0.1:10031. Added the appropriate mysql security to allow a remote user to log in to the policyd database on the primary server. Now, if #1 goes down, #2 can still send mail (the fail-safe mode). If #2 goes down, #1 doesn't care since he already has everything he needs to be able to send mail. Has anyone else used such a configuration? Is there an even better configuration than what I'm doing? Angelo ------------------------------------------------------------------------- Take Surveys. Earn Cash. Influence the Future of IT Join SourceForge.net's Techsay panel and you'll get the chance to share your opinions on IT & business topics through brief surveys-and earn cash http://www.techsay.com/default.php?page=join.php&p=sourceforge&CID=DEVDEV _______________________________________________ policyd-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/policyd-users
