difficult problem with DNS and Mail

[Kevin Darcy]

This is really more of a mail server question than a DNS question. In DNS terms,
your mail (MX record) would be pointed to fubar. Then fubar would forward the
mail to tao through the firewall. If fubar is also being used for outbound mail,
then you'd probably want to go with a "mailhub" type of sendmail configuration,
i.e. where all "local" addresses are forwarded to some other box. I'm not really
up-to-date on how to do that, since we've had separate servers for inbound and
outbound mail for a number of years, and that's a somewhat different
configuration...


- Kevin

Gary Kline wrote:

>    When I went live on the net with my ISDL link, security was a
>    primary issue.  Previously, with my 24*7 PPP connection thru
>    work, I was behind their firewall.
>
>    It took me awhile to set up my DNS here, the `BIND AND DNS' book
>    was|is great, and I'm going to buy the new edition that covers
>    BIND9.  But that may not answer the question I have now.
>
>    I have set up a separate machine that will be my DNS and Mail
>    link.  My ISP alloted me 4 IP's, X.Y.Z.248-251.  The new machine
>    plugs into my router as fubar.thought.org, 216.39.168.249, and
>    reaches the net, no problem.  *This* box, tao.thought.org, (248)
>    is currently  serving everything.  DNS, Mail, and web.
>
>    I want to have FUBAR be my gateway and put TAO behind a firewall.
>    (I'll set securelevel=2 on fubar, so even if somebody cracks it,
>    he won't get far.)
>
>    Eventually, I'll go back  to my 10/100Mb hub and NIC's; but for now
>    my questions are:: how to set up fubar as a gateway; and how to
>    have fubar route everything, including mail, here.  (Sorry if sendmail
>    is OT.)