Solved

Domino smtp routing through non-domino server

Posted on 2004-04-15
6
2,468 Views
Last Modified: 2013-11-16
Our current configuration consists of 5 Domino servers, 3 Domino servers in a cluster, an incoming Domino server and an outgoing Domino server. The mail coming in first hits a Linux box running qmail and spamassassin and then the incoming Domino server via smtp. The incoming Domino server checks the recipient against the NAB and sends valid mail to the cluster via the Notes protocol.

Because of the vast amount of non-valid recipient addresses, we want to upgrade from 5.0.12 to 6.5.1 so that we can reject connections for non-valid recipients. To do this we need to have the incoming mail hit the incoming Domino server first, then send it to the Linux box via smtp, which would in turn send it to the Domino cluster.

The problem comes when the incoming Domino server receives an email with a valid address. When it looks at the NAB, it is going to want to send it to the Domino cluster instead of the Linux box.

How do I overide the routing to have the incoming Domino server route to the Linux box via smtp?
0
Comment
Question by:rdhowarth
6 Comments
 
LVL 46

Expert Comment

by:Sjef Bosman
ID: 10835873
Create separate Notes networks, see under Configuration/Messaging/Networks, and explicitly define a connection for an internal server to pass through the Linux box.
0
 
LVL 63

Expert Comment

by:Zvonko
ID: 10839615
This is not gona work.
You want the Domino to check recipient against directory, but not to accept the SMTP mail. You want it to forward to Linux qmail handler. Why?
0
 
LVL 15

Accepted Solution

by:
Bozzie4 earned 500 total points
ID: 10840667
Sure you can do it like sjef says.

But I think it will be easier to create a completely separate Notes domain to do this.  Add the directory you want to use, using directory assistance (over ldap, or remote notes rpc).  Do not create connection documents to directly link the 2 domains, instead force the mail trafic over smtp.

External -> Domino Domain 1 -> Linux Mail -> Domino Domain 2

Another option would be to let the Linux Mail program already check the mail addresses, I think this makes more sense.  I don't know anything about qmail, but afaik in Sendmail, it should be possible to use an LDAP directory to do the lookup, and to reject mail that's not in the LDAP directory (your Domino directory).  
In the past (before LDAP), I worked in a company where we would create the files with authorized email addresses for sendmail from our Domino Directory, using an agent, so that would be an option too (for qMail I guess something similar can be done.)  In each case, this would make your topology a lot simpeler, and easier to maintain (I hope)

External -> Linux Mail -> Internal Domino Domain
                       |
                      \/
              Domino LDAP
                     or
               Domino generated config files

cheers,

Tom

0
Find Ransomware Secrets With All-Source Analysis

Ransomware has become a major concern for organizations; its prevalence has grown due to past successes achieved by threat actors. While each ransomware variant is different, we’ve seen some common tactics and trends used among the authors of the malware.

 

Author Comment

by:rdhowarth
ID: 10849067
Actually I discounted using 2 Domino domains because of added administration. Our Domino configuration is already made more complex by puling info from Oracle HR.

I did find an add-in for qmail that will query LDAP. I need to test it with the Domino implementation, but since I will have source code, I think I can make it work. That way mail can keep using the same path, and I won't have 80000 emails to non-existant users every day plugging up my MTA. I do need the Linux server to check the valid email with spamassassin.

Thanks to Bozie4 for sugesting using LDAP from the Linix box.
0
 
LVL 13

Expert Comment

by:CRAK
ID: 10872167
A new TA has been added to EE: Lotus Domino Admin (http://www.experts-exchange.com/Web/Lotus_Domino_Admin/).

Since it's still rather empty we're looking for content for this TA. This should offer visitors a better chanche of finding answers to their questions.

This question, though not posted in a wrong TA, was a typical Lotus Domino Admin question. Therefore I'm moving it from Lotus Notes/Domino TA to Lotus Domino Admin TA.

CRAK
Page Editor
0
 
LVL 19

Expert Comment

by:RanjeetRain
ID: 10876169
Good work CRAK!
0

Featured Post

Find Ransomware Secrets With All-Source Analysis

Ransomware has become a major concern for organizations; its prevalence has grown due to past successes achieved by threat actors. While each ransomware variant is different, we’ve seen some common tactics and trends used among the authors of the malware.

Join & Write a Comment

You’ve got a lotus Domino web server, and you have been told that “leverage browser caching” is a must do. This means that we have to tell the browser everywhere in the web to use cache. In other words, we set (and send) an expiration date in the HT…
  In today’s Arena we can’t imagine our lives without Internet as we are highly used to of it. If we consider our life style just for only 2 min we found that face to face communication is swapped by e-communication.  Every Where from Works place to…
Illustrator's Shape Builder tool will let you combine shapes visually and interactively. This video shows the Mac version, but the tool works the same way in Windows. To follow along with this video, you can draw your own shapes or download the file…
This video explains how to create simple products associated to Magento configurable product and offers fast way of their generation with Store Manager for Magento tool.

707 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

12 Experts available now in Live!

Get 1:1 Help Now