Great Circle Associates Firewalls
(November 1996) 		 
Indexed By Date: [Previous] [Next] Indexed By Thread: [Previous] [Next]
Subject: Re: email addresses rewritten
From: Greg Ketell <gketell @ cisco . com>
Date: Fri, 15 Nov 1996 08:48:48 -0800
To: jsquire @ ljcrf . edu (Julie Squire)
Cc: firewalls @ greatcircle . com 
Yes, this can be done but it is not straight forward (at least not in
sendmail 8.6 and earlier).  

The way I have done similar things in the past was to create a file based
class  then then add a rule above where your existing rewrite occurs in the
sendmail.cf  file to check if it is a special user and if it is, exit the
ruleset before the re-write occurs.

For example:
   First: create a file of all your special user names, one per line.

   Then withing the sendmail.cf file define the File Class X to point to
the       
   file created above and ignore lines starting with a #
FX /etc/mail/special.users [!^#]

   Now find the rule set that is doing your existing rewrite (use sendmail
-bt for 
   this).  Just above the specific rule that does the rewrite add a line like

R$=X < @$+ > $*      $@ $1 < @$2 > $3        exit before rewrite for
special users

Now, this is all VERY generalized but someone who knows sendmail should be
able to do it fairly easily.  

There also might be a much easier way using a newer version of sendmail but
I am not familiar with the new enhancements.

GK

At 04:20 PM 11/14/96 -0800, you wrote:
>We have a SGI IRIX Gauntlet 3.1 firewall.  Here is our problem:
>
>Some of our users have several email accounts.  The domain name is
>ljcrf.edu for the email server.  In order to consolidate their mail, we
>forward the mail from our email server (ljcrf.edu) to another email account
>(e.g.
>johndoe @
 aol .
 com).  When email is sent through our firewall, the firewall
>changes the domain name of all email addresses from ***** @
 any .
 domain to
>***** @
 ljcrf .
 edu .
 
>
>For example, Dr. John Doe has an email account jdoe @
 ljcrf .
 edu .
   He also has
>an email account with AOL, jdoe @
 aol .
 com .
   All mail sent to jdoe @
 ljcrf .
 edu
>is aliased to jdoe @
 aol .
 com .
   When he checks his email with his AOL
>account, all originating addresses OUTSIDE ljcrf.edu are modified to
>***** @
 ljcrf .
 edu .
   Sending a reply is a big headache since it modifies all
>email addresses to ***** @
 ljcrf .
 edu
>
>I know that the firewall is doing what it is designed to do.  The sendmail
>on the firewall is setup to rewrite all the addresses to be of the form
>user @
 domain .
   This is to hide the internal hosts .  But is there a way to
>incorporate the original address in the header or body of emails of certain
>users?
>
>Julie Squire
>Systems Analyst
>The Burnham Institute
>(founded in 1976 as La Jolla Cancer Research Foundation)
>10901 N. Torrey Pines Road
>La Jolla, CA 92037
>(619) 646-3100 x3110
>(619) 646-3110
>
>
>
>
Indexed By Date Previous: RE: Digital Firewall for Unix, smtpxd problems
From: Brad Taylor <TAYLORB @ peninsula . org>
Next: Re: Microwave & Satelite
From: Ken Stephens <Ken_Stephens @ miconsulting . com>
Indexed By Thread Previous: Re: email addresses rewritten
From: Frederick M Avolio <avolio @ tis . com>
Next: Re: Ping of Death (fwd)
From: Carlos Francisco Tondreau Canas <ctondrea @ puc . cl>
Google
 
Search Internet Search www.greatcircle.com