[Search for users] [Overall Top Noters] [List of all Conferences] [Download this site]

Conference noted::seal

Title:SEAL
Moderator:GALVIA::SMITH
Created:Mon Mar 21 1994
Last Modified:Fri Jun 06 1997
Last Successful Update:Fri Jun 06 1997
Number of topics:1989
Total number of notes:8209

1807.0. "Is there a POP3 relay for DFWS202 ?" by NETRIX::"[email protected]" (Arthur Lin) Thu Feb 20 1997 04:18

I just installed a DFWS system for one of my customers.
Because, in the customer's internal network, there are many users
have their e-mail accounts on external ISPs, the customer has
the need to let their internal users be able to get their ISP mails.
Thus, I think I need a POP3 relay to be installed on the gatekeeper to
reach the customer's need. Does anybody know the ftp site for such 
POP3 relay?  Besides, I installed nntpxd, which is a 1-to-1 news relay,
for the customer. But the customer require a many-to-1 or many-to-many
news relay. Where is such news relay located ?

-Arthur-

[Posted by WWW Notes gateway]
T.RTitleUserPersonal
Name		DateLines
1807.1use gxd for POP3, see app notes for many-to-oneNETRIX::"[email protected]"Sebastian L�lsdorfThu Feb 20 1997 06:5411
Arthur,

you may configure gxd on port 110 (or maybe 109) for POP3. Mind that 
the POP3 client must specify the firewall as his POP3 server then,
so gxd will connect him to the real POP3 server.

There is an application note explaning how to configure many-to-one
relays. I think AFWU V3.0 will allow this via the GUI.

Sebastian
[Posted by WWW Notes gateway]
1807.2QUICHE::PITTAlph a ha is better than no VAX!Thu Feb 20 1997 12:198
There can never be a (one or many)-to-many setup of the generic relay in its
current form, because by definition, if it's generic there is no information as
to where you want to go.

You will have to hold your breathe for Engineering to produce a transparent
generic relay and then it'll be no problem ...

T
1807.3BIGUN::nessus.cao.dec.com::MayneChurchill's black dogThu Feb 20 1997 17:169
To clarify...

Use a different generic proxy for each required POP server. Each one of these 
proxies will be a many (internal) to one (external) proxy.

On-line application note 6 tells you how to configure the NNTP proxy for many to 
one. Use this information to configure your POP proxies as well.

PJDM
1807.4It's a joke son...NCMAIL::SMITHBThu Feb 20 1997 20:175
Since the generic relay runs off of inetd, you can only have one instance of a 
connection on port 110.  You can only have a many to "one pop server"
connection, not very useful.  I think the better solution is to use MS
Exchange.  That way everyone can feel our pain!
1807.5several commentsNETRIX::"[email protected]"Sebastian L�lsdorfFri Feb 21 1997 03:0218
Hi,

re .4
  I don't see the problem. On a normal UNIX system telnetd is also started
  from inetd and there may be many telnet connections to port 23 at a time.

re .3
  Sarah Keating recently told me AFWU V3.0 will allow many-TO-MANY gxds.
  I couldn't believe it, asked again, and she confirmed. We will see...

re .0
  Sorry Arthur I missed your question was for DFWS202; my answer in .1
  was for AFWU. I'm not sure how to solve it with DFWS.

Sebastian


[Posted by WWW Notes gateway]
1807.6QUICHE::PITTAlph a ha is better than no VAX!Fri Feb 21 1997 07:5135
�re .4
�  I don't see the problem. On a normal UNIX system telnetd is also started
�  from inetd and there may be many telnet connections to port 23 at a time.

Not relevant.  Telnetd is concerned with many clients to one server - the one
that the daemon runs on.  The problem with the gxd as it stands today is that
there is one definition as to which server to connect to if a connection to port
110 from the blue side is received.  While the gxd remains generic and
non-transparent, this will be the end of it, but see below ...

�re .3
�  Sarah Keating recently told me AFWU V3.0 will allow many-TO-MANY gxds.
�  I couldn't believe it, asked again, and she confirmed. We will see...
�
Why didn't you believe it?  What's happening is that the gxd is being enhanced
to be able to work in transparent mode.  That way, the client can say where the
real server on the other side of the firewall is - the gxd receives that
information from the destination address in the IP packet that initiated the
connection.

If you think about generic UDP relay, then this is probably (almost) useless
without transparent mode operation, I think.  It's my guess that doing UDP relay
(did I say that was in AFWU V3.0?) meant that making the TCP generic relay
transparent as well was fairly easy ...

�re .0
�  Sorry Arthur I missed your question was for DFWS202; my answer in .1
�  was for AFWU. I'm not sure how to solve it with DFWS.

It would be possible, but hard work at the code level, to make the nntpxd relay
(which is the generic TCP relay, in effect) in DFWS202 work in many-to-one mode.
 Much easier would be to upgrade the firewall to AFWU ... but there've been many
arguments about that on this notesfile, and we don't need another one ...

T
1807.7BIGUN::nessus.cao.dec.com::MayneChurchill's black dogMon Feb 24 1997 17:143
And what's wrong with running different POP3 proxies on different ports?

PJDM
1807.8QUICHE::PITTAlph a ha is better than no VAX!Wed Feb 26 1997 06:214
The problem is that my mail client (at least!) has no control on which port
number it connects to ...  You can only specify the server ...

T