On Fri, Feb 25, 2005 at 03:30:22PM +0000 or so it is rumoured hereabouts,
Michael Thompson thought:
> On Fri, 25 Feb 2005 14:48:01 +0000, conor.daly at cod.utvinternet.com> <conor.daly at cod.utvinternet.com> wrote:
> > So, this looks like the option to use via dyndns. I've set up an exim
> > server in my DMZ. It has no inbound access to my LAN. Inside the LAN is
> > a postfix server listening to localhost:25 and nothing else. It uses my
>> Why are you setting up two mail servers, can you not just run imap on
> the machine in the DMZ?
I don't want to run anything unnecessary in the DMZ. It'll have a
webserver serving a mirror of the one inside the LAN. Users (like the
kids) will update the internal website and rsync will update the public
one. It'll also have a mailserver whose only function is to receive and
filter incoming email. Since it'll be exposed to the net, I don't want to
leave anything of value on there. The internal server serves IMAP for
users so it holds the email. It runs all sorts of other services too,
none of which need to be exposed to the net. The internal mailserver has
been running for years already being fed by fetchmail/pop so it's no extra
work to keep twin servers.
Once I have the DMZ machine fully configured, I'll probably store its
config on the LAN and push it regularly out to the DMZ as another security
This is all overkill for a home environment but it's fun and a useful way
of keeping up to speed...
Conor Daly <conor.daly at oceanfree.net>
Domestic Sysadmin :-)
16:13:59 up 18 days, 3:34, 1 user, load average: 0.04, 0.02, 0.00
Maintained by the ILUG website team. The aim of Linux.ie is to
support and help commercial and private users of Linux in Ireland. You can
display ILUG news in your own webpages, read backend
information to find out how. Networking services kindly provided by HEAnet, server kindly donated by
Dell. Linux is a trademark of Linus Torvalds,
used with permission. No penguins were harmed in the production or maintenance
of this highly praised website. Looking for the
Indian Linux Users' Group? Try here. If you've read all this and aren't a lawyer: you should be!