From owner-freebsd-isp  Tue Oct  6 05:58:09 1998
Return-Path: <owner-freebsd-isp@FreeBSD.ORG>
Received: (from majordom@localhost)
          by hub.freebsd.org (8.8.8/8.8.8) id FAA11677
          for freebsd-isp-outgoing; Tue, 6 Oct 1998 05:58:09 -0700 (PDT)
          (envelope-from owner-freebsd-isp@FreeBSD.ORG)
Received: from loviatar.webcom.com (loviatar.webcom.com [209.1.28.41])
          by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id FAA11657
          for <freebsd-isp@freebsd.org>; Tue, 6 Oct 1998 05:58:05 -0700 (PDT)
          (envelope-from u@webcom.com)
Received: from kigal.webcom.com (kigal.webcom.com [209.1.28.57])
	by loviatar.webcom.com (8.9.1/8.9.1) with SMTP id EAA09342;
	Tue, 6 Oct 1998 04:57:58 -0700
Received: from [199.183.207.57] by inanna.webcom.com (WebCom SMTP 1.2.1)
	with SMTP id 9383452; Tue Oct 06 05:56 PDT 1998
Message-Id: <361A3D16.14B5@webcom.com>
Date: Tue, 06 Oct 1998 08:53:58 -0700
From: Graeme Tait <U@webcom.com>
Organization: Echidna
X-Mailer: Mozilla 2.02 (Win16; I)
Mime-Version: 1.0
To: Chris Shenton <chris@shenton.org>
Cc: freebsd-isp@FreeBSD.ORG
Subject: Re: How to share accounts between mail/pop and web servers?
References: <87hfxiv0r9.fsf@absinthe.shenton.org>
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
Sender: owner-freebsd-isp@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.org

Chris Shenton wrote:
> 
> I'm supporting an ISP who's outgrown the single box we have running
> WWW, FTP, SMTP, POP, and IMAP.  It also does RADIUS authentication for
> the dialup server. Accounts are created on this single box so the user
> gets RADIUS authenticated against /etc/passwd, just as the FTP, POP,
> IMAP stuff does. The normal "adduser" script is run to create
> accounts.
> 
> I plan to split into two boxes: one for WWW and FTP, the other for
> SMTP, POP, and IMAP.  Not sure where I'm gonna run RADIUS yet, maybe
> on both for redundancy.


May I ask maybe a dumb question, as I am involved as a newbie in setting 
up our own server much like the above (except for dialup), and hope some 
day to have this problem  ;-)

Why not duplicate the box and split the users across boxes? That way if 
one box goes down, only half your users suffer. It's scalable, as for 
yet more users you just add another box, and you can load-balance the 
boxes easily for good utilization by allocating users appropriately. 
Configuration is the same from box to box, and having hardware spares is 
easy. The only thing that might connect the boxes is having them do 
secondary DNS for each other.


-- 
Graeme Tait - Echidna


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-isp" in the body of the message