OSEC

Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com
 
Subject: Postfix not identifying itself enough in responses?
From: Brad Knowles (blkskynet.be)
Date: Fri Aug 25 2000 - 05:41:07 CDT

Folks,

        Well, we've started using an L4 load-balancing switch that sits
in front of our outbound mail relays.

        For the moment, we're using local triangulation (where the switch
has a virtual IP address to which all connections are directed, it
then farms them out to an appropriate back-end server that has the
same IP address configured as an IP alias on its loopback interface).

        Unfortunately, this destroys our ability to determine just
exactly which machine a particular mail message passed through -- all
we see in our logs is the name of the switched IP address.

        I'm planning on adding some code in certain strategic places to
put the hostname in the text of the response codes that are issued,
so that we can at least track messages as they pass through various
parts of our mail system. However, I wanted to warn people that this
might be an issue for them, if you try to use an L4 load-balancing
switch. 

--
   These are my opinions -- not to be taken as official Skynet policy
======================================================================
Brad Knowles, <blkskynet.be>                || Belgacom Skynet SA/NV
Systems Architect, Mail/News/FTP/Proxy Admin || Rue Colonel Bourg, 124
Phone/Fax: +32-2-706.13.11/12.49             || B-1140 Brussels
http://www.skynet.be                         || Belgium

"They that can give up essential liberty to obtain a little temporary
safety deserve neither liberty nor safety."
     -Benjamin Franklin, Historical Review of Pennsylvania.