|
|
|
|
|
|
|
|
|
|
Intelligent front-end hosts for SMTP (continued)
From the Internet point of view multiple Internet domains mean multiple MX (mail exchanger) records in the company's DNS database. In most implementations of bind, the DNS daemon, the "database" is a set of related structured text files containing IP address and host name information so that machines can find each other by name based on which Internet domain they are in (or find names by looking up addresses). In the database, various record types are defined for machine addresses, mail exchangers, and other things. The MX records are in the domain database file typically named after the Internet domain name (e.g., GSSNET.DOM). In the file are records in the following format:
@ IN MX 10 mail1.gssnet.com
@ IN MX 20 mail2.gssnet.com
|
Handling email for multiple DNS domains usually means pointing MX records for more than one domain name to a single host. This host must be able to forward or deliver mail to users whose SMTP addresses contain the various domains handled by the company's mail hosts. One way to see what mail exchangers are configured in a DNS is to use the nslookup program, a command line utility available on most UNIX systems:
nslookup -type=MX gssnet.com
|
The output should look something like this:
gssnet.com preference = 10, mail exchanger = mail1.gssnet.com
gssnet.com preference = 20, mail exchanger = mail2.gssnet.com
gssnet.com nameserver = ns1.gssnet.com
gssnet.com nameserver = ns2.gssnet.com
mail1.gssnet.com internet address = 206.184.139.12
mail2.gssnet.com internet address = 206.184.139.13
ns1.gssnet.com internet address = 209.24.149.41
ns2.gssnet.com internet address = 209.157.102.11
nslookup -type=MX gssnet.com
messagingcentral.com preference = 10, mail exchanger = mail1.gssnet.com
messagingcentral.com preference = 20, mail exchanger = mail2.gssnet.com
messagingcentral.com nameserver = ns1.gssnet.com
messagingcentral.com nameserver = ns2.gssnet.com
mail1.gssnet.com internet address = 206.184.139.12
mail2.gssnet.com internet address = 206.184.139.13
ns1.gssnet.com internet address = 209.24.149.41
ns2.gssnet.com internet address = 209.157.102.11
|
In this example Internet mail for both the gssnet.com and messagingcentral.com domains is sent to mail1.gssnet.com. Causing mail for multiple domains to be routed to a particular host is a straightforward matter. It's only a question of editing the right text files and adding or modifying the right MX record entries.
Firewalls
Of course there are other considerations, for example sending mail through a firewall. Typically, the front-end host will be placed on a DMZ connected to a firewall but not on the outside of the firewall, as shown in Figure A.
FIGURE A
Here's a diagram of a simplified DMZ Configuration for SMTP Relay Host. Click picture for a larger image.
Of course, the diagram in Figure A is simplified, but it gets at the main issue which is securing internal SMTP services to make them inaccessible to any host other than the SMTP relay or front-end host.
[ Prev | Next ]
|
|
|
|
|
|
-- Advertisement --
AUTOMATE LOTUS NOTES USER ID MANAGEMENT
ID Manager 4.5 from HELP Software provides a new level of automaton for managing Lotus Notes IDs. ID Manager lets Lotus Notes administrators get out of the business of creating and managing user IDs. Use our ROI calculator to see how quickly ID Manager will pay for itself.
Learn more about HELP Software products |
-- Advertisement --
The Ultimate Notes Domino Training Experience - Amsterdam, 11-13 November
Get in-depth technical training that you can put to use on the job right away at THE VIEW's Admin2008 and Lotus Developer2008 Europe! One registration gets you into your choice of over 70 new and updated expert know-how sessions, one-on-one consultations, hands-on labs, and more.
See complete agendas and register by 10 October to save 495 euros! |
|
|
|
|
|
|
|
|
