 |
| Prev-20 | Home | Next-20 |
| Prev-20 | Home | Next-20 |
| Prev-Msg | Prev-Thread | Postfix-users | Mar-2008 | Next-Thread | Next-Msg |
| Subject: | RE: failover |
| Group: | Postfix-users |
| From: | Gary V |
| Date: | 30 Mar 2008 |
>> Bernhard D Rohrer:
>>> mydomain IN MX 30 mymta
>>> mydomain IN MX 40 mailfilter
> Since I believe he desires to use host "mailfilter" to filter all mail,
> then relay all mail to host "mymta", it would be the other way around.
> mailfilter would have an MX record and mymta would (should) not.
> Gary V
I should note however that if indeed you plan on removing an MX,
you have to be careful how you do it or you _will_ loose mail. Both MXes
must exist for a long enough time (maybe a week) for DNS servers to
see them both. I would also suggest first setting the mailfilter to a lower
numbered priority (making it the primary MX):
mydomain IN MX 20 mailfilter
mydomain IN MX 30 mymta
Then, after about a week, the mymta MX record could be removed. In
your case, because of what you are trying to accomplish, I would set
mailfilter to a lower numbered priority at any rate. Then, if you don't
want Internet traffic to mymta, you could leave the MX record, and
block port 25 inbound to mymta at the router or firewall. If you
don't want Internet connections to mymta, consider blocking port 25
whether you keep the MX record or not because even without an MX
record, spammers will connect to mymta via the A record.
Gary V
_________________________________________________________________
Watch “Cause Effect,” a show about real people making a real difference. Learn more.
http://im.live.com/Messenger/IM/MTV/?source=text_watchcause
| Prev-Msg | Prev-Thread | Postfix-users | Mar-2008 | Next-Thread | Next-Msg |