1 |
-----BEGIN PGP SIGNED MESSAGE----- |
2 |
Hash: SHA1 |
3 |
|
4 |
On Friday 15 October 2004 18:06, Kurt Lieber wrote: |
5 |
> On Fri, Oct 15, 2004 at 05:51:15PM +0200 or thereabouts, Christian Parpart |
6 |
wrote: |
7 |
> > I want to backup mx a server that is *not* accessible via default |
8 |
> > port 25. |
9 |
> > Is there a way to configure the backup mx in that way it sends data to |
10 |
> > the master server port != 25? |
11 |
> |
12 |
> It's not entirely clear what exactly you want to do, but you can make mail |
13 |
> respond on any port you want. The problem is going to be that other mail |
14 |
> servers expect to contact you on TCP port 25 and, if you want to receive |
15 |
> mail, you'll need to answer on that port. |
16 |
> |
17 |
> In other words, you can configure a backup mail server to respond on 25, |
18 |
> but you can't get other mail servers (outside of your control) to send mail |
19 |
> to that non-standard port. |
20 |
|
21 |
host mainMX port 1234 (port 25 blocked from outside world) |
22 |
host backupMX port 25 (yet another host in different subnet) |
23 |
|
24 |
important DNS records for domain.tld: |
25 |
IN MX 10 mainMX.domain.tld. |
26 |
IN MX 20 backupMX.domain.tld. |
27 |
|
28 |
all mail going to domain.tld will first go to mainMX.domain.tld, but |
29 |
since its port 25 is blocked for outside world, the source smtp |
30 |
gateway will try the backupMX.domain.tld to deliver post; here we |
31 |
have port 25 listening, so it delivers, now backupMX needs to send |
32 |
this to mainMX (as it's just a backup mx for mainMX) but it's port is |
33 |
(as defined) blocked, even for backupMX. that's why I want backupMX |
34 |
to connect to mainMX to that very known special port 1234. |
35 |
|
36 |
I could maybe achieve this using iptables on backupMX that |
37 |
detects tcp:backupMX:25 to connect to tcp:mainMX:25 and redirects this traffic |
38 |
to tcp:mainMX:1234. |
39 |
|
40 |
Regards, |
41 |
Christian Parpart |
42 |
|
43 |
- -- |
44 |
01:56:54 up 52 days, 13:36, 1 user, load average: 0.15, 0.20, 0.21 |
45 |
-----BEGIN PGP SIGNATURE----- |
46 |
Version: GnuPG v1.2.5 (GNU/Linux) |
47 |
|
48 |
iD8DBQFBcGY6Ppa2GmDVhK0RAv32AJ9WR27G/ZtZTcoVR4iemxtafoF3JACeK4ae |
49 |
/fbbvbHhFIIqZbYZCHPVAJ0= |
50 |
=RBRy |
51 |
-----END PGP SIGNATURE----- |