On Fri, 13 Oct 2000, Dan Horth wrote:
> Mikkel - could you give us some pointers as to how you've set up the
> SPAM filtering and forwarding to the "real" sendmail server within
> your network? I'd be very interested in setting up a similar system
> here...:)
>
> TIA - dan.
>
For the SPAM filtering, I used the information on mail-abuse.org. The
have discriptiuons of the different lists, and how to configure sendmail
to use them. I also have a couple more entries in /etc/mail/access to
cover a couple special cases:
#
# YesMail filters.
#
63.88.133 550 YesMail Forbidden Manually.
63.89.82 550 YesMail Forbidden Manually.
63.238.242 550 YesMail Forbidden Manually.
63.238.243 550 YesMail Forbidden Manually.
63.79.151 550 YesMail Forbidden Manually.
207.154.137 550 YesMail Forbidden Manually.
207.154.208 550 YesMail Forbidden Manually.
208.44.19 550 YesMail Forbidden Manually.
You will also want to list your domain name in /etc/sendmail.cw, unless
your firewall and your domain have the same name. (My domain is
infinity-ltd.com, but my firewall is firewall.infinity-ltd.com.)
You can also have this in /etc/sendmail.conf as a Cw entry.
Now, to get sendmail to forward mail to your real mail server, I use this:
# who gets all local email traffic ($R has precedence for unqualified names)
DH[192.168.9.1]
I changed how I did this after I already had my config file, so I changed
it in the file, rather then in the .m4 file. This is because I changed
how I was doing the name server - firewall uses my ISP's name server now,
so I have to give it the IP that I want local mail to go to. When you use
an IP address, instead of the host name, you have to enclise it in
[]s. The downside of this is that you are limited to one mail server, and
you run into problems if you change its IP address. But for a home
network, or a small office network, chances are you are only going to have
one mail server. Also, if the mail server is down, the mail will be
queued on the firewall, so if you get a lot of e-mail, you will want to
make sure you have enough disk space to queue it if your mail server goes
down, or set the minimum free space so sendmail stops accepting mail
before you run out of room for your logs!
One other thing to be aware of with this setup - sendmail on your firewall
will accept any e-mail address for your domain, as long as if passes the
SPAM filter. Your "real" mail server has to handle any invalid local
addresses. This is because the copy running on the firewall is basicly
acting as a secondary mail server, and has no way to know if the user name
is a valid local use.
I hope this helps. Most of the process is well documented - the only
unusual part is using an IP address instead of a system name for your
"real" mail server.
Mikkel
--
Do not meddle in the affairs of dragons,
for you are crunchy and taste good with ketchup.
_______________________________________________
Redhat-list mailing list
[EMAIL PROTECTED]
https://listman.redhat.com/mailman/listinfo/redhat-list
