Koozali.org: home of the SME Server
Legacy Forums => General Discussion (Legacy) => Topic started by: pvogler on January 30, 2004, 06:27:10 PM
-
would like to run SME Server 5.x as a firewall appliance for a couple of clients. Both clients are running MS Exchange as there email server(yuk) and simply need a firewall in between Exchange and the outside world. I have tried using a standard(linksys/Belkin) firewall router and exchange is unable send mail when these are in place. I found that some hardware firewalls are not compatible with Exchange. Will SME work?
-
Not sure why your Belkin routers did not work, we have a number of SMC routers port forwarding port 25 to exchange servers.
I hope some of the more seasoned users of SME can help, but I thought there was a problem trying to forward 25 with SME as it has it's own mail server sitting on that?
I would suggest you do a search on the forums, as I am sure I read someone else wanted to do the same.
Paul.
-
We currently have an Exchange server running behind our e-Smith box. Were not doing a simple port forward though. We set up accounts for all the exchange users on the e-Smith and have each of those accounts forwarded to the exchange server. That allows us to use open source tools for virus and spam control and hopefully protect the Exchange server from any external security exploits that may pop up. This arangement has worked quite well for us so far.
-
the easiest way is simply to use the "delegate mail servers" in server-manager.
cheers
vj
-
Thats right... If you delegate an internal mail server in server manager, all mail will be processed by whatever spam and virus scanning you have on the gateway _only_ if you are using these tools globally. (not procmail).
There is 1 caviet...
Delegating a mail server will allow all mail through to your internal server "Exchange/Domino" which will result in bounces...
Small price to pay me thinks...
RayG's method is good for small amounts of users because it looks at the user database and rejects mail to unknown users.(I use to do it) but it added additional steps to adding new users..I know, I know, I'm lazy...
-
This sounds like a LOT of hard work to maintain an anti spam gateway - ESMITH ios an awesome product, but you are not using the right tool for the job here - IMO
Check out www.mailscanner.info - i also believe there is a contrib here for it - USE MAILLSCANNER nothing in the world protects your email environment like this thing...
Have a look on the who is using this page at the link i posted above...
-
would like to run SME Server 5.x as a firewall appliance for a couple of clients. Both clients are running MS Exchange as there email server(yuk) and simply need a firewall in between Exchange and the outside world. I have tried using a standard(linksys/Belkin) firewall router and exchange is unable send mail when these are in place. I found that some hardware firewalls are not compatible with Exchange. Will SME work?
The answer the question is YES, but!
But as an remark:
I have setup several exchange servers with just standard smtp port forwarding without problem.
So I can't understand why the Linksys/Belkin routers can't do the work because I have used an Linksys to do the work at one site I have configured.
So maybee you
-
I echo previous comments, linksys router should have been able to be 'opened' up to let exchange through - perhaps you have overlooked something?
I would still recommend running a firewall app - particularly since IPCOP http://www.ipcop.org is free and so good at it's job. Any old machine will do and the web-based admin is really easy to use.
Good luck
Gareth