From owner-freebsd-current Thu Aug 7 00:13:33 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id AAA24304 for current-outgoing; Thu, 7 Aug 1997 00:13:33 -0700 (PDT) Received: from dog.farm.org (gw-serial2.farm.org [207.111.140.45]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id AAA24119 for ; Thu, 7 Aug 1997 00:11:52 -0700 (PDT) Received: (from dk@localhost) by dog.farm.org (8.7.5/dk#3) id XAA16879; Wed, 6 Aug 1997 23:01:25 -0700 (PDT) Date: Wed, 6 Aug 1997 23:01:25 -0700 (PDT) From: Dmitry Kohmanyuk Message-Id: <199708070601.XAA16879@dog.farm.org> To: terry@lambert.org (Terry Lambert) Cc: freebsd-current@freebsd.org Subject: Re: Moving to a more current BIND Newsgroups: cs-monolit.gated.lists.freebsd.current Organization: FARM Computing Association Reply-To: dk+@ua.net X-Newsreader: TIN [version 1.2 PL2] Sender: owner-freebsd-current@freebsd.org X-Loop: FreeBSD.org Precedence: bulk (apologies for topic drift on this mailing list) In article <199708051639.JAA06341@phaeton.artisoft.com> you wrote: > > > I can live with my secondary MX queueing up mail. > > > > > > I can *not* live with my mail being refused for the lack of a > > > correctly named account at the primary MX's IP address. (re your multiple booting machine) Just don't use the development/experimental machine as your production mail system. Get a POP account if you don't have any other boxes ;-) > > You're already stuck with that due to caching behavior. > My primary MX is on the other side of a firewall. > Outside deliveries to my primary MX all fail. They are delivered > to a gateway machine -- my secondary MX. don't do that. Do not advertise an MX that nobody can use, thus creating delays for any mail reaching you. Instead, use a splitted DNS scheme (one name server for outside, on firewall machine, one inside; use inside name server in resolv.conf on firewall machine, so it would get correct internal MX records). In external DNS, have only 1 MX record (well, better more, but all reachable). In internal, have everything in external plus additional (`real') MXes. Alternatively, use one MX, single DNS and mailertable on your SMTP host. > The secondary MX contains the DNS records for the target of the > CNAME, and is the primary for the domain in which it is located. are you talking about MX pointing to CNAME or NS pointing to CNAME? > As far as DNS is concerned, a machine is available as a secondary, > and is looked up through the firewall machine, which knows the > target by multiple "alias" addresses.