Transparent SMTP proxies?
Bill McGonigle
bill at bfccomputing.com
Tue Jan 22 20:53:06 EST 2008
On Jan 22, 2008, at 16:19, Ben Scott wrote:
> Idea for an alternative strategy: Use IPtables to intercept all
> TCP/25 traffic and redirect it to your existing SMTP relay server.
I think this will hose up anybody configured to do SMTP AUTH if it
runs through a 'regular' SMTP relay. My assumption is that the
transparent proxies do AUTH-by-proxy for them (if you don't want me
potentially logging your password, please stop sending it in cleartext).
The port re-direct is going to be essential, as I don't want to put
another SPOF in the way (nor burn significantly more electrons).
> Most bitty boxes (like WAPs) don't have many computrons to spare, so
> that might be a good idea anyway.
True - I figured I'd alias up an eth0:x interface on my 'network'
server and run the proxy there. So far, it works in theory. :)
-Bill
-----
Bill McGonigle, Owner Work: 603.448.4440
BFC Computing, LLC Home: 603.448.1668
bill at bfccomputing.com Cell: 603.252.2606
http://www.bfccomputing.com/ Page: 603.442.1833
Blog: http://blog.bfccomputing.com/
VCard: http://bfccomputing.com/vcard/bill.vcf
More information about the gnhlug-discuss
mailing list