Date: Wed, 30 Apr 1997 08:27:13 -0700 (PDT) From: michael@blueneptune.com To: freebsd-isp@freebsd.org Subject: Re: MX records Message-ID: <199704301527.IAA14997@rainey.blueneptune.com> In-Reply-To: <3.0.32.19970430014623.00b4e3a0@mixcom.com> from "Jeffrey J. Mountin" at Apr 30, 97 01:46:24 am
next in thread | previous in thread | raw e-mail | index | archive | help
> >domain.com. IN A your.ip.address.for.the.website > > IN MX 10 the.fqdn.they.gave.you. > > IN MX 20 the.other.fqdn.they.gave.you. > > > >repeat for www.domain.com > > This is one you may wish to think about, as a lot of junk mail is sent to > www.<potential.victum> and is another reason why I block port 25 to all web > servers. Granted that junk mail is sent to www.whatever.domain, but it is also an address where a lot of people expect to be able to send mail regarding the web site, and some domain holders want this. Definitely a decision that should be left to the customer. Blocking port 25 for the web server address is a good idea just in general, especially if you're running virtual domains. If you have MX records for the domain, no properly behaving mailer should be contacting port 25 at the address anyway, but it is prudent to have the firewall block it, in case somebody is ignoring MX records, or to block any intentional abuse. > >Also, take Josef's advice and get DNS and BIND. If you are > >taking over DNS you'll need it, very well written (like all > >ORA books). > > I'll 3rd the first and 2nd the second. 8-) What he said. :-) The O'Reilly section of my bookshelf is getting rather large these days... and it's probably the shelf I visit the most! -- Michael Bryan michael@blueneptune.com
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?199704301527.IAA14997>