Exchange with Linux Gateway

Posted on 2006-05-09
Last Modified: 2009-03-02

We currently have an Exchange 2003 server and a very crappy Windows Mail relay server. We want to setup a Linux server as a mail gateway to filter incoming mail for spam etc...Need some ideas on prefered linux OS and MTA.

Kind Regards

Question by:dcarrion
    LVL 19

    Expert Comment

    For Linux distribution: the one you already know better. all of the big names are good, with their positiva and negative sides, but for email almost all from RedHat, CentOS, Slackware (mypreferred), Debian, SuSE, Etc.

    for Email: Postfix is easy to setup and has all.
    I use QMail myself and it's the best I know with the only downside it's not as easy to setup as postfix.

    do not try sendmail if you did not know it from before.

    there are a lot of projects to filter virus/spam for both projects. I use qmail-scan for qmail, with f-prot AND clamav at the same time, and for spam, Spamassasin with rules-du-jour.

    but your mileage may vary. first choose from one of these MTAs (Mail Transfer Agent) and then set it up for email relaying, and finally add filtering capabilities.

    Author Comment

    Thank you!
    LVL 14

    Expert Comment

    When you have decided the MTA, the second decision what tool u need to interfacece the MTA with antispam and antivirus:
    most popular chioce are amavis or mimedefang, both support  many MTAs (postfix,dual-sendmail,Exim v4,sendmail/milter) or work with any MTA as a SMTP relay, and the integration with spamassassin and antivirus is easy.
    Usually I use debian+sendmail relay + milter +  amavis-new +spamassassin + ClamV + bitdefender


    Usefull information to start:


    LVL 25

    Expert Comment

    just to add to Redimido, for postfix you can use amavisd-new to tie in clamav and spamassassin.  this is my setup for my two mail servers at work and my personal one at home.  if you go to you can find a lot of howtos about getting it working.

    On another note, you should think about monitoring that gateway to.  I've found mailgraph and queuegraph to be good monitoring tools (albeit more for performance monitoring than proactive problem monitoring though)
    LVL 3

    Accepted Solution

    "MailScanner!" easy to install and pulls everything together. I was in your same position. The reason for the switch was mainly due to SPAM

    MailScanner - Here are there docs. (there are also many HOWTO's out there for many different setups)

    I used Postix as the MTA/relay, IMO this is the best option.
    CLAMAV for virus
    SpamAssassin for SPAM

    Install Postfix, get it relaying (you need to make about 2 chages)
    Install ClamAV-Spamassassin RPM or from source
    Install MailScanner (RPM or from source)

    Here is the DL page -- (this also has a Clam AV and Spamassasin "easy setup" RPM.)

    Good Luck, I had everything up and running, installled/configured in about 2 hours. Just agree on what your going to do and spend about 30 minutes reading up on it and you'll be good.

    LVL 2

    Expert Comment

    I just setup this using Ubuntu with the exim heavy package, clamav, and spamassasin.  I was able to do it all straight from packages.  I would go with Ubuntu dapper-drake, it will be supported long term, but it will still be changing quite a bit for a few more weeks.

    Exim is also very easy to setup for callouts, to verify that the users exists on the exchange server prior to accepting the mail.

    Featured Post

    How your wiki can always stay up-to-date

    Quip doubles as a “living” wiki and a project management tool that evolves with your organization. As you finish projects in Quip, the work remains, easily accessible to all team members, new and old.
    - Increase transparency
    - Onboard new hires faster
    - Access from mobile/offline

    Join & Write a Comment

    I have seen several blogs and forum entries elsewhere state that because NTFS volumes do not support linux ownership or permissions, they cannot be used for anonymous ftp upload through the vsftpd program.   IT can be done and here's how to get i…
    Note: for this to work properly you need to use a Cross-Over network cable. 1. Connect both servers S1 and S2 on the second network slots respectively. Note that you can use the 1st slots but usually these would be occupied by the Service Provide…
    how to add IIS SMTP to handle application/Scanner relays into office 365.
    Get a first impression of how PRTG looks and learn how it works.   This video is a short introduction to PRTG, as an initial overview or as a quick start for new PRTG users.

    729 members asked questions and received personalized solutions in the past 7 days.

    Join the community of 500,000 technology professionals and ask your questions.

    Join & Ask a Question

    Need Help in Real-Time?

    Connect with top rated Experts

    20 Experts available now in Live!

    Get 1:1 Help Now