Re: [leaf-user] QMail email gateway
I would like to use the qmail.lrp package for Bering in a firewall/gateway capacity only to shuffle mail from my internal mail server out and deliver external mail to the mail server. I was wondering if the current package as-is is sufficient and what configuration changes might be needed? Any help or point in the right direction would be appreciated. Or you could just wait a bit until Lince is released. We have found a great alternative for smtp without needing hard disk, if you have a real smtp inside (your own) and outside (your isp). smtp without disk? hum ... what if your LEAF dies when the queue is not empty?? you end up loosing mail! I believe there are 2 answers to the problem: without disk: * you should be able to add a DNAT line in Shorewall to forward all traffic from the Internet to the FW:25 to your Mail server:25 inside the firewall ... and configure NATing to allow your Mailserver to send mail out ( or to your ISP mail relay) with disk: * you can mount /dev/hdaX /var/qmail/queue in /etc/init.d/qmail start ( and umount it in stop ) to keep your queue on disk. The trick is to modify the /var/lib/lrp/qmail.list and qmail.exclude.list in qmail.list replace var/qmail/queue/lock by var/qmail/queue (you need to create the mount point ) and add var/qmail/queue/* in exclude.list when performing the installation the first time, you'll have to get all the files [ the one created dynamically and the lock directory ] from /var/qmail/queue to the Hard Disk of course you'll need a fs driver ( ext2/ext3?). voila... I think I didn't miss anything ? --- This sf.net email is sponsored by: To learn the basics of securing your web site with SSL, click here to get a FREE TRIAL of a Thawte Server Certificate: http://www.gothawte.com/rd524.html leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
Re: [leaf-user] QMail email gateway
Hi there: smtp without disk? Yep hum ... what if your LEAF dies when the queue is not empty?? you end up loosing mail! Not really. OK, I will try to explain myself. Im not talking about a real smtp server but a SMTP proxy. The proxy listens on port 25 for a connection and passes it toan internal real SMTP server WITHOUT ackoledging the origin server. When the inside server receives the email, and says everything is OK, the proxy tells the origin server that it was OK. So if during the process the power goes down, as you have not acknowledge the message yet, the origin server as not deleted it from its HD and will try again. We have tested it and promise it works wonders. Actually it was quite hard to find the solution as only 1 piece of software really acted as a proxy. The beauty is, you can process the email in the proxy and scan it for viruses or antirelay or in the future antispam. Please, just be calm, we are in the middle of a big project for our company and we havent found time to upload the iso now that we have our CVS ready (that was just a few days ago). Also we are considering releasing just with stable 1.0 instead of 1.0rc3 with some bugfixes that we are using). Its just we are very high on the todo list. I believe there are 2 answers to the problem: without disk: * you should be able to add a DNAT line in Shorewall to forward all traffic from the Internet to the FW:25 to your Mail server:25 inside the firewall ... and configure NATing to allow your Mailserver to send mail out ( or to your ISP mail relay) Of course this solution is viable, but doesnt allow for processing in the firewall. Lets say you have an inside E2000 server (ugghhh) and want to protect it from relaying email or viruses, now you have this choice. with disk: * you can mount /dev/hdaX /var/qmail/queue in /etc/init.d/qmail start ( and umount it in stop ) to keep your queue on disk. The trick is to modify the /var/lib/lrp/qmail.list and qmail.exclude.list in qmail.list replace var/qmail/queue/lock by var/qmail/queue (you need to create the mount point ) and add var/qmail/queue/* in exclude.list when performing the installation the first time, you'll have to get all the files [ the one created dynamically and the lock directory ] from /var/qmail/queue to the Hard Disk Surelly this is another option, but most of the times if the traffic ismoderate you will be able to get by with our solution without moving parts :) Regards. -- Jaime Nebrera Herrera [EMAIL PROTECTED] --- This sf.net email is sponsored by: To learn the basics of securing your web site with SSL, click here to get a FREE TRIAL of a Thawte Server Certificate: http://www.gothawte.com/rd524.html leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
Re: [leaf-user] QMail email gateway
Shon, On Wed, 20 Nov 2002 14:00:21 EST Shon wrote: I was hoping to configure the already existing qmail.lrp package to work as an email gateway (in conjunction with the existing firewall) for their internal mail servers. I have seen instructions for using qmail with Bering (thanks very much for the assist Jacques), but it required recompiling the package, which is unfortunately not a possibility at this time. Are you referring to the instructions at: http://leaf.sourceforge.net/devel/jnilo/qmail.html ? If so, can you explain why a recompile is necessary? Someone here might be able to suggest a workaround. --Brad --- This sf.net email is sponsored by: Battle your brains against the best in the Thawte Crypto Challenge. Be the first to crack the code - register now: http://www.gothawte.com/rd521.html leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
RE: [leaf-user] QMail email gateway
Hello Brad. Thanks for the reply. I was actually speaking of a solution that Jacques had presented me available at this link: If you only want the smtp facilities check the mini Qmail how-to from H.D. Lee http://sourceforge.net/tracker/index.php?func=detailaid=586953group_id=137 51atid=313751 -Original Message- From: Brad Fritz [mailto:[EMAIL PROTECTED]] Sent: Wednesday, November 20, 2002 3:36 PM To: Nixon, Anthony S. Cc: [EMAIL PROTECTED] Subject: Re: [leaf-user] QMail email gateway Shon, On Wed, 20 Nov 2002 14:00:21 EST Shon wrote: I was hoping to configure the already existing qmail.lrp package to work as an email gateway (in conjunction with the existing firewall) for their internal mail servers. I have seen instructions for using qmail with Bering (thanks very much for the assist Jacques), but it required recompiling the package, which is unfortunately not a possibility at this time. Are you referring to the instructions at: http://leaf.sourceforge.net/devel/jnilo/qmail.html ? If so, can you explain why a recompile is necessary? Someone here might be able to suggest a workaround. --Brad This message, including any attachments, is intended only for the use of the addressee and contains information that is PRIVILEGED and CONFIDENTIAL. It may be used only by the addressee and may not be divulged without the express consent of the sender. If you have received this communication in error, please erase all copies of the message and its attachments and notify us immediately. Thank you. --- This sf.net email is sponsored by: Battle your brains against the best in the Thawte Crypto Challenge. Be the first to crack the code - register now: http://www.gothawte.com/rd521.html leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
Re: [leaf-user] QMail email gateway
Jamie, On Wed, 20 Nov 2002 16:31:48 +0100 Jaime wrote: hum ... what if your LEAF dies when the queue is not empty?? you end up loosing mail! Not really. OK, I will try to explain myself. Im not talking about a real smtp server but a SMTP proxy. The proxy listens on port 25 for a connection and passes it toan internal real SMTP server WITHOUT ackoledging the origin server. When the inside server receives the email, and says everything is OK, the proxy tells the origin server that it was OK. Can you tell us what SMTP proxy you used? A URL would be excellent. Thank you. --Brad --- This sf.net email is sponsored by: Battle your brains against the best in the Thawte Crypto Challenge. Be the first to crack the code - register now: http://www.gothawte.com/rd521.html leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
Re: [leaf-user] QMail email gateway
On Wed, 20 Nov 2002 16:16:16 EST Anthony S. Nixon wrote: Hello Brad. Thanks for the reply. I was actually speaking of a solution that Jacques had presented me available at this link: If you only want the smtp facilities check the mini Qmail how-to from H.D. Lee http://sourceforge.net/tracker/index.php?func=detailaid=586953group_id=137 51atid=313751 I see. After a brief review, it doesn't look like HDL does anything fancy before or during the compile. If Jacques' 184k qmail.lrp package[1] is too big, you should be able to apply the trimming and configuration suggested in HDL's instructions[2] to the binaries in Jacques' qmail.lrp and avoid compiling qmail yourself. I realize you were probably looking for something more specific or polished, but the good news is that what you want to do should be possible and Jacques' qmail package HowTo[3] would probably help get you started. --Brad [1] http://leaf.sf.net/devel/jnilo/packages/qmail.lrp [2] http://sf.net/tracker/download.php?group_id=13751atid=313751file_id=27796aid=586953 [3] http://leaf.sf.net/devel/jnilo/qmail.html -Original Message- From: Brad Fritz [mailto:[EMAIL PROTECTED]] Sent: Wednesday, November 20, 2002 3:36 PM To: Nixon, Anthony S. Cc: [EMAIL PROTECTED] Subject: Re: [leaf-user] QMail email gateway Shon, On Wed, 20 Nov 2002 14:00:21 EST Shon wrote: I was hoping to configure the already existing qmail.lrp package to work as an email gateway (in conjunction with the existing firewall) for their internal mail servers. I have seen instructions for using qmail with Bering (thanks very much for the assist Jacques), but it required recompiling the package, which is unfortunately not a possibility at this time. Are you referring to the instructions at: http://leaf.sourceforge.net/devel/jnilo/qmail.html ? If so, can you explain why a recompile is necessary? Someone here might be able to suggest a workaround. --Brad --- This sf.net email is sponsored by: Battle your brains against the best in the Thawte Crypto Challenge. Be the first to crack the code - register now: http://www.gothawte.com/rd521.html leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
Re: [leaf-user] QMail email gateway
Hi Brad, Jamie, Well, if I recall right, Jamie was a girl's name and Jaime is a guys name :) Dont worry, I spent a whole year in California trying to explain the difference :P Can you tell us what SMTP proxy you used? A URL would be excellent. Thank you. OK, I will exploit the surprise, its emailrelay (http://emailrelay.sourceforge.net) but PLEASE dont jump into it and try to implement it by yourselves as we have already done so, just give us some days to prepare the iso and upload it. Regards -- Jaime Nebrera Herrera [EMAIL PROTECTED] --- This sf.net email is sponsored by: Battle your brains against the best in the Thawte Crypto Challenge. Be the first to crack the code - register now: http://www.gothawte.com/rd521.html leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
Re: [leaf-user] QMail email gateway
Hi, I would like to use the qmail.lrp package for Bering in a firewall/gateway capacity only to shuffle mail from my internal mail server out and deliver external mail to the mail server. I was wondering if the current package as-is is sufficient and what configuration changes might be needed? Any help or point in the right direction would be appreciated. Or you could just wait a bit until Lince is released. We have found a great alternative for smtp without needing hard disk, if you have a real smtp inside (your own) and outside (your isp). Mike has just created or cvs area so we will upload the iso in just a few days as soon as we get ourselves used to sourceforge way of doing things. Regards. -- Jaime Nebrera Herrera [EMAIL PROTECTED] --- This sf.net email is sponsored by: To learn the basics of securing your web site with SSL, click here to get a FREE TRIAL of a Thawte Server Certificate: http://www.gothawte.com/rd524.html leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html