[Maia-users] two forward host .

David Morton mortonda at dgrmm.net
Sat Apr 7 06:50:02 PDT 2007 

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1


On Apr 7, 2007, at 2:25 AM, davide bozzelli wrote:

> Ryan Delany write:
>> Mail routing shouldn't be the responsibility of the virus scanning
>> component, it should be a function of your MTA.  If you are using  
>> postfix,
>> this can be easily accomplished with a transport table.  Go to
>> http://www.postfix.org and search for Transport.
>>
>> What you want to end up with is a transport file that looks  
>> something like
>> this:
>>
>> domain1.com    smtp[x.x.x.x]:25
>> domain2.com    smtp[x.x.x.x]:25
>> *              smtp[y.y.y.y]:25
>>
>> Ryan
>>
>>
>>
> Your solution is postfix-dependent .
>
> I'm looking for  a solution that could fit with every mta , and can be
> done only at amavisd-level .
>


The problem is, Maia does not assume responsibility for the email,  
but passes it on to the downstream server.  Thus, it holds the  
upstream connection open until it has scanned and delivered it  
downstream.  If the downstream fails, it passes the error code back  
to the upstream where it is requeued.

If we do it like this, then if a downstream is unreachable, it gets  
requeued upstream and gets scanned again every time it goes through  
Maia, until the downstream comes back online.  Judging from the mailq  
command on numerous sites I consult on, this situation occurs  
frequently.

In addition, delivery to a multitude of remote transports via Maia  
would introduce a considerable delay to the filtering process, and  
could cause backlogs in the scanning process.

This is why it's recommended to pass the mail back to a local server  
and let it handle the transport maps.   Maia is *not* an MTA, and  
should not assume the responsibilities of an MTA.

I'll support the basic idea of #392 to help a local postfix handle  
transport, but I have some serious doubts about the safety of  
delivering to a bunch of different MTA's from Maia.  If you don't  
have postfix,  install a separate linux box and set postfix up to be  
the downstream transport.


David Morton
Maia Mailguard http://www.maiamailguard.com
mortonda at dgrmm.net



-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.5 (Darwin)

iD8DBQFGF6GNUy30ODPkzl0RAisdAKCQjEKTrIPI6eNOzZjyI7ezyn2iZACgqUGi
G7KdeeckmsgJM2r2EWaxqIA=
=Ixvq
-----END PGP SIGNATURE-----

More information about the Maia-users mailing list