I have a question about designing a failover for SMTP server between HQ site and DR site.
I have web servers failover using this CSS.
I have a one armed config and cannot change it, I am using
"add destination service" for the web servers and it works.
The problem is that on a Mail server, it can initiate connections to send mail from the inside and I am thinking I will have reverse lookup problems whne the connection to remote mail domains from my server will NAT from the PIX rather than the CSS.
I have looked into having all traffic route through the CSS from the PIX firewalls to the edge router.
I am also wondering about haveing PTR records in our hosted DNS from the 4 IP Addresses that traffic could originate from (two at HQ and two at DR).
I am not sure which way to go with this, but I need to get something set up for a DR test next month.
Does anyone have any input about this?
Is the PRT records an ok way to go?
What about forcing the traffic through the CSS, then from the CSS to the edge router?