From owner-freebsd-questions Mon Sep 9 13: 8:54 2002 Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.FreeBSD.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id D1A1F37B401 for ; Mon, 9 Sep 2002 13:08:45 -0700 (PDT) Received: from shockwave.systems.pipex.net (shockwave.systems.pipex.net [62.241.160.9]) by mx1.FreeBSD.org (Postfix) with ESMTP id AF49543E42 for ; Mon, 9 Sep 2002 13:08:44 -0700 (PDT) (envelope-from stacey@Demon.vickiandstacey.com) Received: from Demon (81-86-129-77.dsl.pipex.com [81.86.129.77]) by shockwave.systems.pipex.net (Postfix) with ESMTP id 93F4716000F86; Mon, 9 Sep 2002 21:07:04 +0100 (BST) Subject: Re: Request for proof of sendmail config procedure From: Stacey Roberts Reply-To: sroberts@dsl.pipex.com To: dan@slightlystrange.org Cc: FreeBSD Questions In-Reply-To: <20020909184157.GA5228@catflap.home.slightlystrange.org> References: <1031506596.16286.89.camel@Demon.vickiandstacey.com> <20020909102727.GA3392@catflap.home.slightlystrange.org> <1031595414.345.14.camel@Demon.vickiandstacey.com> <20020909184157.GA5228@catflap.home.slightlystrange.org> Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="=-2VZ63jmX1KH3Zho5WXk4" X-Mailer: Ximian Evolution 1.0.8 Date: 09 Sep 2002 21:07:04 +0100 Message-Id: <1031602026.345.19.camel@Demon.vickiandstacey.com> Mime-Version: 1.0 Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG --=-2VZ63jmX1KH3Zho5WXk4 Content-Type: text/plain Content-Transfer-Encoding: quoted-printable Hi Dan, Thanks for the reply. Yes, I believe that your advice sounds pretty logical for my situation here.=20 I could indeed run a caching nameserver on my local net, and configure sendmail afterwards. One further question though, would it be possible / prudent to run bind for this purpose chrooted? I browsing the handbook, its pretty obvious that some measure of securing bind might well be warranted. Thanks again for your time. Stacey On Mon, 2002-09-09 at 19:41, Daniel Bye wrote: > On Mon, Sep 09, 2002 at 07:16:53PM +0100, Stacey Roberts wrote: > > Sorry my reply is this late. >=20 > No problem - I have a day job that gets in the way of reading the lists, > too! ;-) >=20 > > I actually *do* have an account with ZoneEdit.com, and I use ddclient t= o > > check and update my external IP address. >=20 > Yep, sounds right. >=20 > > Currently, ZoneEdit provide the two nameservers with which I registered > > my domain name, and as such provide primary DNS for my domain (as > > against my ISP's nameservers which are used on my FBSD g'way in > > /etc/resolv.conf) > >=20 > > Like I said, I've not done *anything* to sendmail as yet, but would lik= e > > to run a mail server that processes mail for my domain. Here's what I > > know what is expected: > >=20 > > Run "make" in /etc/mail > > Create local-hostname file in /etc/mail and populate with the domains > > sendmail is to act for > > Backup sendmail.cf & hostname.mc (or freebsd.mc in my case) > > Edit .mc file in /etc/mail > > Use m4 compiler to generate hostname.cf > > Copy hostname.cf to sendmail.cf > > Restart sendmail >=20 > As I mentioned earlier, I can't help with this - exim is (IMHO) far easie= r > to manage than sendmail - the sendmail config file makes me feel slightly > queasy... I know you can make it masquerade though, but I'll not try > to explain how - I'll leave it to someone who knows. >=20 > > Now from what I know of sendmail, attempting to run a fully configured > > (with FQDN; mailer rules & masquerading) sendmail with a badly / non / > > incorrectly configured DNS is just asking for trouble - hence my post. = I > > am sorry if my initial post was less than clear on the info I require. > >=20 > > In essence then:- > > Do I / Can I run my own nameserver on my local network? > > Do I create slave or master zone entries? >=20 > You can certainly run a caching nameserver - this is actually quite a > polite thing to do - the more you cache, the less you send out to the > 'Net. I use BIND for this, and the config is pretty straight forward. > Others use djbdns, but I never got on with it. See which you prefer. >=20 > Following on from that, no, you won't run any primary or slave zones. > ZoneEdit's servers will answer requests for your mail server's address > when another mail server has something to deliver. My ZoneEdit account > specifies that mail for my domain is directed to my host - there is no > need to specify more then this to handle incoming mail. >=20 > For outgoing mail, you can either use your ISP's resolvers, or, if you > set up a caching name server, set your primary resolver to 127.0.0.1. > The config for your resolver will then have settings for upstream resolve= rs > to query - usually your ISP's, again. Sendmail (and any other app that > needs name resolution services) will then use the right resolvers, based > on what they find in /etc/resolv.conf >=20 > I hope I am closer to the mark this time! ;-) >=20 > Dan >=20 > > Like I mentioned earlier, I would understand if this is asking too much > > in one post, but I'd appreciate someone who might have been in the same > > situation to give me some pointers / guidance on this one. > >=20 > > Thanks for taking the time to respond, Dan. > >=20 > > Stacey > > >=20 >=20 > --=20 > Daniel Bye >=20 > PGP Key: ftp://ftp.slightlystrange.org/pgpkey/dan.asc > PGP Key fingerprint: 3D73 AF47 D448 C5CA 88B4 0DCF 849C 1C33 3C48 2CDC > _ > ASCII ribbon campaign ( ) > - against HTML, vCards and X > - proprietary attachments in e-mail / \ >=20 > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-questions" in the body of the message --=20 Stacey Roberts B.Sc (HONS) Computer Science Web: www.vickiandstacey.com --=-2VZ63jmX1KH3Zho5WXk4 Content-Type: application/pgp-signature; name=signature.asc Content-Description: This is a digitally signed message part -----BEGIN PGP SIGNATURE----- Version: PGP 6.5.8 iQEVAwUAPXz/ZJvQeubckvvXAQHQVgf/doVleHMzyz4XjTrEDxfBsvIcBmhGW0wy l8afhL2knlC3Wen4tvhlhfi+tPbHQbbMLapN/QmUzIPpYTk4ATUInFj6vLx9x1Ak oCuaDIzEoVMuknRkLe2O1LjRYgxRK6kt+df4fH3yJWP/GD4pFBgVRnSYCCPhj7hH hky68BK3+kpiiqmWbpDU/XgzZQUE9Gf3As6JGwa2JgW/hc+0VBWKhbzSVulqisoP LNQAbOkuOP4cl0giEkOE5/ix9Q6EdKtklvAzE22sgJLUGuI3Y2SNb4PgOX/CPwUs 6usW/gRC3iqB50XUkrZMpESWWibFIlzg008b9oeG6Z+3/CibMtVapg== =AfkU -----END PGP SIGNATURE----- --=-2VZ63jmX1KH3Zho5WXk4-- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message