linux is certainly no worse than figuring out ISA2004 policy rules :) Our Red Hat 9 + Postfix Mail relay was running on a 500mhz P-III with a 10GB IDE HD. It ran for almost 2 years non-stop. I recently upgraded to a decomissioned Dell server. Dual 667 and SCSI. Our mail volume has increased and I wanted the SCSI performance. But it wasn't a mandatory upgrade. We have the added benefit of using SpamAssassin and other neat tools to scrub some of the trash out of the mail stream before it ever touches our Exchange environment. Once it is up and running, you rarely touch it. Learning something besides MS is a good thing. Since when is anything in our network environment not a hack? ________________________________ From: Bryan D. Andrews [mailto:bandrews@xxxxxxxxxxxxx] Sent: Wednesday, June 01, 2005 10:16 AM To: [ISAserver.org Discussion List] Subject: [isalist] RE: SPF problem: was RE: Publishing an Exchange Server and email still going out through the default IP http://www.ISAserver.org That assumes the following: * That there is someone who knows linux * That there is an extra workstation * That they want another point of failure for email * That they want to spend the time configuring this I just feel like this is a hack and it should not be this way. Might be out of luck huh....? -----Original Message----- From: Steve Moffat [mailto:steve@xxxxxxxxxx] Sent: Wednesday, June 01, 2005 9:50 AM To: [ISAserver.org Discussion List] Subject: [isalist] RE: SPF problem: was RE: Publishing an Exchange Server and email still going out through the default IP http://www.ISAserver.org Can't they afford an old workstation, with freebie Linux, and one of the many flavours of mailserver available??? S -----Original Message----- From: Bryan D. Andrews [mailto:bandrews@xxxxxxxxxxxxx] Sent: Wednesday, June 01, 2005 10:33 AM To: ISA Mailing List Subject: [isalist] RE: SPF problem: was RE: Publishing an Exchange Server and email still going out through the default IP http://www.ISAserver.org Hehe - that is what I am saying... a relay server is not an option at this point. I guess I am really trying to find out if there is any movement on this issue at MS? Or will there be? I know this group would know if there was... :) Does checkpoint or other popular firewalls have this issue? I would think the answer is no. This should be taken seriously considering the SenderID. Not every company can afford to create relay servers in a dmz. Thanks Tom for the reply.