Re: Advanced masquerading
Marek Szuba [EMAIL PROTECTED] wrote: The thing is: there is a host called stargate.net.local doing IP masquerading for a LAN, which is known to the outside world as zone13.outside.net. I'd like to set up qmail on this host in such a way that: - all the mail sent from stargate to any other machine on the LAN will have all the sender's data similar to: Joe Blow [EMAIL PROTECTED] - all the mail sent from stargate to the Internet will have all that data similar to: Joe Blow [EMAIL PROTECTED] - all the main sent from the LAN to the Internet (and relayed by stargate, of course) will have it like: Joe Blow [EMAIL PROTECTED], What about mail from within the LAN address to recipients both local and outside the LAN? E.g., From: Joe Blow [EMAIL PROTECTED] To: John Doe [EMAIL PROTECTED], Jane Roe [EMAIL PROTECTED] Would John receive a message from [EMAIL PROTECTED] while Jane receives one from [EMAIL PROTECTED]? Why not just masquerade everything with the external domain? Can anyone help me with that? I've been trying to solve that myself, and failed - qmail lacks good documentation I'm afraid. I disagree. I'm not just tooting my own horn (Life with qmail), but the man pages, FAQ's, www.qmail.org, and various user contributed docs are generally quite good. I've also asked in numerous places places and noone was able to help me. I've started wondering if qmail is capable of handling such complicated transpations at all, and whether I shouldn't restart using sendmail after all... I'd like to hear more about how sendmail handles such configurations. -Dave
Re: Advanced masquerading
Dave Sill [EMAIL PROTECTED] wrote: Marek Szuba [EMAIL PROTECTED] wrote: I've also asked in numerous places places and noone was able to help me. I've started wondering if qmail is capable of handling such complicated transpations at all, and whether I shouldn't restart using sendmail after all... I'd like to hear more about how sendmail handles such configurations. I'm not sure its relevant. The whole address-rewriting thing is a sendmail-ism that should just go away; it must have originated in an effort to compensate for other, unrelated sendmail design flaws. I'm not surprised that Marek is having such trouble trying to find people to help him make his qmail installation imitate broken sendmail behaviour. Charles -- --- Charles Cazabon[EMAIL PROTECTED] GPL'ed software available at: http://www.qcc.sk.ca/~charlesc/software/ Any opinions expressed are just that -- my opinions. ---
Re: Advanced masquerading
From: Charles Cazabon [EMAIL PROTECTED] Date: Tue, 29 May 2001 09:35:46 -0600 Dave Sill [EMAIL PROTECTED] wrote: Marek Szuba [EMAIL PROTECTED] wrote: I've also asked in numerous places places and noone was able to help me. I've started wondering if qmail is capable of handling such complicated transpations at all, and whether I shouldn't restart using sendmail after all... I'd like to hear more about how sendmail handles such configurations. I'm not sure its relevant. The whole address-rewriting thing is a sendmail-ism that should just go away; it must have originated in an effort to compensate for other, unrelated sendmail design flaws. It's all a historical thing. The problem that sendmail was designed to solve back in the uucp days is different from the problems that modern MTAs are designed to solve. The hardest part of uucp mail was the address rewriting, so sendmail went through amazing contortions in order to solve this problem. Internet mail doesn't need to do any rewriting at all, so the bulk of the code in sendmail is there to solve a problem most of us don't have. I was fortunate in never having actually been stuck on the end of a uucp link, but even in those days sendmail's rewriting rules often got in the way of just getting the mail there. The S in SMTP stands for Simple. Not having to rewrite addresses is one of the great simplifications. I'm not surprised that Marek is having such trouble trying to find people to help him make his qmail installation imitate broken sendmail behaviour. I'm also not surprised that he gets a lot of sarcastic or snide replies. I can't resist the temptation either. Chris -- Chris Garrigues http://www.DeepEddy.Com/~cwg/ virCIO http://www.virCIO.Com 4314 Avenue C Austin, TX 78751-3709 +1 512 374 0500 My email address is an experiment in SPAM elimination. For an explanation of what we're doing, see http://www.DeepEddy.Com/tms.html Nobody ever got fired for buying Microsoft, but they could get fired for relying on Microsoft. PGP signature
Re: Advanced masquerading
I'm not sure its relevant. The whole address-rewriting thing is a sendmail-ism that should just go away; it must have originated in an effort to compensate for other, unrelated sendmail design flaws. It's all a historical thing. The problem that sendmail was designed to solve back in the uucp days is different from the problems that modern MTAs are designed to solve. The hardest part of uucp mail was the address rewriting, so sendmail went through amazing contortions in order to solve this problem. Internet mail doesn't need to do any rewriting at all, so the bulk of the code in sendmail is there to solve a problem most of us don't have. I was fortunate in never having actually been stuck on the end of a uucp link, but even in those days sendmail's rewriting rules often got in the way of just getting the mail there. Absolutely. I used to do a lot of uucp with qmail and the best thing you can do is forget about rewriting and ! addresses. uucp does not insist on this, though it's as ingrained as many other myths surrounding mail (and dns). What uucp does do well is transfer a file and execute a command remotely - so conceptually one simple wants to transfer the email contents and run a command at the other end that injects it into qmail. The best thing to do is just use FQDN addresses and avoid all rewriting. There is some references to this on www.qmail.org and I'm sure much of this has been previously discussed and thus archived. Regards.
Advanced masquerading
Hello, The thing is: there is a host called stargate.net.local doing IP masquerading for a LAN, which is known to the outside world as zone13.outside.net. I'd like to set up qmail on this host in such a way that: - all the mail sent from stargate to any other machine on the LAN will have all the sender's data similar to: Joe Blow [EMAIL PROTECTED] - all the mail sent from stargate to the Internet will have all that data similar to: Joe Blow [EMAIL PROTECTED] - all the main sent from the LAN to the Internet (and relayed by stargate, of course) will have it like: Joe Blow [EMAIL PROTECTED], where Joe Blow and jblow should be replaced with the right name and login (they are the same for all LAN hosts, so no user masquerading is necessary). Furthermore there is no need for demasquerading - all the mail destined for stargate/zone11, no matter whether from the LAN or from the outside, should stay there. Can anyone help me with that? I've been trying to solve that myself, and failed - qmail lacks good documentation I'm afraid. I've also asked in numerous places places and noone was able to help me. I've started wondering if qmail is capable of handling such complicated transpations at all, and whether I shouldn't restart using sendmail after all... -- Marecki
