Using a DMZ for email?

David Mandala plug-discuss@lists.plug.phoenix.az.us
31 Aug 2002 18:30:40 -0700


The DMZ mail machine should simply store and forward the mail to the
internal machine, not receive it for the domain(s)

On Sat, 2002-08-31 at 17:58, Anthony Hologounis wrote:
> Hello
> 
> 
> I set up a DMZ to run http, smtp and ftp services external to my private 
> network. Http and ftp seem to be pretty simple. I have some questions 
> about SMTP.
> 
> I have postfix running on the DMZ machine and it gets all of the mail 
> external to me. My private/protected network has a mail server that I 
> use to send mail. The INTERNAL network can pop/imap the mail from the 
> DMZ machine but in order for me to do this the DMZ machine has to have 
> the user name and password. This seems to be a security risk not to 
> mention extra administration. I have to create users twice to make this 
> work.
> 
> Is there a better way to do this?
> 
> -- 
> Anthony Hologounis
> 
> 
> 
> 
> -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-
> PLUG-discuss mailing list - PLUG-discuss@lists.plug.phoenix.az.us
> To subscribe, unsubscribe, or to change  you mail settings:
> http://lists.PLUG.phoenix.az.us/mailman/listinfo/plug-discuss
-- 
David IS Mandala
gpg fingerprint 8932 E7EF CCF5 1B8C 1B5C  A92E C678 795E 45B2 D952
Phoenix, AZ (480) 460-7546 HP, (602) 321-8277 CP
http://www.them.com/~davidm/