Mikkel L. Ellertson wrote:
And no, relaying for computers on the local network by default is not
acceptable, since Red Hat and Fedora cannot tell that a particular
computer should relay for other computers on the local network, or that
other computers on the local network are even part of the same
organisation. (Think hosting companies -- a lot of them offer Red Hat
and/or Fedora).
Add to that the fact that with a firewall/router doing NAT, an
outside connection that is forwarded to the mail server looks like
it came from the gateway address on the local network, so it isn't
hard to end up with an open relay by allowing the local network to
relay mail.
It is not common for firewalls to NAT source addresses on the public
side.
--
Les Mikesell
lesmikesell@xxxxxxxxx