> I''d like to be able to email all the root mail to a central mail
server
> within the LOC portion of my network. The reason is I''m lazy, and
would
> like to collect all my system status emails from all the local *nix boxes
> into one email box rather than monitor different login accounts on 7-10
> separate machines.
Well, I thing, that''s not unusual. There are people who even collect
*all*
logfiles on one server ;)
> In going over the /etc/params file, there isn''t a
"DMZ_LOC_TCP=" line, or a
> "DMZ_LOC_PORTS1=".
>
> So, since the easy and obvious way doesn''t seem to be there, what
are some
> of the more esoteric methods to open up a small hole between my DMZ and my
> LOC segments?
If your "collecting-*nix-box" is also a world accessable mail server,
then
why not opening it for the box in the DMZ via the rules file. In fact, our
webserver is only allowed to initiate one connection to the outside world,
and that''s smtp, and this only to our world accessable mail server.
> Gar
Alex.
--
* Alexander Müller *
department of ferrous metallurgy
Aachen university of technology
mailto:alex_m@iehk.rwth-aachen.de