Virtualmin Secondary Mail Server

No, you can force mail to be sent through the secondary. If you have a development server just create a local copy of your DNS zone but change the MX priority to put the secondary first (or just remove the primary). Make sure resolv.conf points to the local DNS server (and nothing else), and send a test mail. You should see the mail bounce through the secondary and immediately forward to the primary.

There are other ways to do it, as well. A hosts file entry pointing the primary name to the secondary address should also work.

Edit: Oh, you could also block the test server in the primary server’s firewall. That’d be a “real” test, as it’d require the sending server to figure out what to do, and it’d insure your MX record for the secondary is right. This case could take a few minutes to deliver.

No. IP access control is IP access control. The API uses the same port and authentication as a browser would, and it’d be a security concern if API requests bypassed IP access control.

There is also cert-based authentication, though I don’t know if Webmin API connections can use it (probably should, if not, so I’ll check in with Jamie). But, those connections are still subject to IP access control. IP access control does what is says on the tin, regardless of how the client is connecting and whether the client is a human or another computer. You just need to make sure that any computers that need to login to Webmin have been granted access.

This topic was automatically closed 4 days after the last reply. New replies are no longer allowed.