I have 2 servers. Server A is on the internet. Server B is behind a local firewall.
Server B can communicate with Server A (it replicates and routes mail correctly to Server A).
Server A cannot reach Server B because of the firewall (this is how it needs to remain). VPN is not an option.
I want Server A to store all mail for Server B in the mail.box. Then, when Server B does normal replication with Server A, I want it to grab it’s mail.
Can anyone point me to a technote/documentation that could help me do this?
Subject: Can I Have 1 server do all mail routing? (Pull - Push)
I haven’t tried this, but on the connection doc on server B, Replication/Routing tab, Routing section, set Router type to Pull Only. Fill in the rest of the fields as seems logical. It should work.
Subject: RE: Can I Have 1 server do all mail routing? (Pull - Push)
I think that you sould only have 1 connection document where Server B is the Source server and Server A is the Destination Server.
Then on the Replication/Routing tab set Router type to Push Pull.
This will mean that Server A will never try to contact Server B but when Server B contacts Server A it will send mail to Server A and also retrieve mail from Server A
Subject: Can I Have 1 server do all mail routing? (Pull - Push)
Ok, I did a lot of post-skimming yesterday, or, eaerly this morning, that is, and am editing those posts today.
You write “Server A cannot reach Server B because of the firewall (this is how it needs to remain)…I want Server A to store all mail for Server B in the mail.box. Then, when Server B does normal replication with Server A, I want it to grab it’s mail.”
I’m pretty sure that this can’t be done. You could try creating mail.box as a replica and changing the ACL, but you’d still ahve to allow port 1352 through the firewall, so I don’t see what you’d be gaining even if it did work.
A pull-push connection from B to A and a push wait from A to B is how this would be done using mail routing instead of replication, but you’d still have to allow either ports 1352 or 25 through.
Subject: Can I Have 1 server do all mail routing? (Pull - Push)
You will need to allow the server A to connect to Server B. Mail routing is always a process started from the server where the mail resides. That server places the mail in the mail.box on the destination server. There is no way that a server is allowed to grab mail from a mail.box on another server. That would look as if every body would be allowed to go into the postoffice and grab messages from the pile available there.
The Pull connection option is only a way of telling the other server that it is now a good moment to deliver mail to the server that does the pull. It is handy on non-permanent connections but it is still the “pulled” server that builds up the connection to deliver the mail.
So a connection needs to be allowed in the firewall. The only way around it would be to have the Server A deliver the mail that has to go in, into a seperate mailbox (Create a foreign domain) that is read (or replicated to) by server B and then processed by an agent to be further routed to the recipients.
Could be done, but the small opening up of the firewall to allow the connection is hardly a security risk that would need this kind of work around.