932
edits
Changes
m
<!-- # Optional: Implement dynamic firewall rules to block black-listed IP addresses of email spammer. (Bonus item +10%) -->
→Supporting Services
=Specification=
== Basic Services ==
Setup an Internet email system for your assigned DNS Domain using the Virtual Machines in your Virtual Network. Your Internet email system must provide the following functions at the minimum:
* A SMTP email server (running postfix) that is capable of receiving and sending emails for users in your domain.
** Users in your domain must be able to send emails to users in the same domain and users in other students' domains in the class.
** Users in your domain must be able to receive emails from other email users (both in your domain or and from other domains).
* An IMAP Access Agent (running dovecot) allowing users in your domain to remotely access their mail.
** Users in your domain must be able to access/manage their mail box using IMAP(s) clients or a web browser.* You email server must be configured to check the SPF (sender policy framework) of other domains for incoming email and reject email emails that are violating the sender policy.
* Configure your DNS server to implement and provide the SPF protection for your domain.
* Configure your DNS server to implement and provide the DNSSEC records for your domain.
== Supporting Services ==
You need the following services and network infrastructure to support your Internet Email System (some of which should have been configured in assignment 1):
* A Pri-dns must be the primary DNS name server for your domain with the proper MX record(s), SPF record(s), A record(s), and PTR record(s). It must be queriable by any machine.
**Provide the administrator of the .ops domain (your professor) with glue records for your domain.
* Co-nfs must be a caching DNS server, accessible to machines in your networks, that will forward traffic to the server for the ops domain (172.16.19.1), then to your rns-ldap.
* Rns-ldap must be a forwarding server only.
**It must only be queriable by your co-nfs.
**It must have a copy of the root-hints zone.
* Proper static network routes to and from other Email servers in the Lab.
<!--
== BONUS ==
# Optional: Use LDAP authentication to secure your web mail server or Access Agent. (Bonus item +10%)
= Evaluation =
